Security built for verifiable integrity
Fattoreum is designed so records are easy to issue, hard to tamper with, and practical for outside teams to verify when stakes are high.
Core security choices
SHA-384 integrity hashing
Exact-match integrity checks use SHA-384 to provide strong, modern cryptographic assurance.
Ed25519 signed attestations
Signed attestations bind issuer identity to evidence fields and processing context.
Post-quantum migration path
Algorithm agility is built in so hybrid signature lanes can be introduced without breaking verification workflows.
Security architecture themes
Private-by-default intakeUpload handling enforces strict file policy, bounded processing, and controlled storage behavior.
Strong signing semanticsAttestation records include issuer and trust metadata fields for later checks.
Boundary-aware authorizationWorkspace and team scoping controls govern job and artifact access.
Replay-aware eventingWebhook signatures use timestamp and nonce protections.
Data + Evidence Handling
Stored records
Job metadata, canonical hashes, attestation payloads, and evidence-bundle artifacts.
Audit surfaces
Tamper-evident export models and runtime trust status visibility for operators.
Operational logging
Reliability and incident telemetry without relying on raw document body logging.
Platform context
Cloud footprintBackend services run on Oracle Cloud Infrastructure with policy-driven access boundaries.
Control overlaysTLS, security headers, scoped keys, and runtime guardrails are validated in readiness gates.
Optional anchor extensionPublic-chain anchoring is additive and does not replace storage-side evidence controls.