Controls You Can Defend In Audit Reviews
This center summarizes how Fattoreum secures hash + attestation workflows: key handling, runtime trust checks, artifact integrity, and operator-visible evidence paths.
This center summarizes how Fattoreum secures hash + attestation workflows: key handling, runtime trust checks, artifact integrity, and operator-visible evidence paths.
Customer-facing exact-match verification uses SHA-384 canonical integrity values. SHA-256 entries are secondary internal digests only.
SimHash (`simhash_64`) is a probabilistic candidate signal for closely related content and does not replace exact integrity verification.
Optional OCR anti-evasion checks are confidence-scored and non-authoritative. OCR-derived similarity is never exact textual equivalence.
Per-job JSON/PDF bundle outputs support external review and long-horizon retention narratives.
Timestamp + nonce + signature controls help downstream systems reject replayed delivery.
Hash-chained export output supports defensible evidence lineage in governance reviews.
This architecture trace maps each control boundary in sequence, including transport protection, confidential runtime checks, SHA-384 (384-bit) hashing, signing policy, and optional public anchoring for external timestamp references.
By default, evidence is anchored in Oracle-hosted storage for operational retrieval. A second public-chain anchor can be added when the external anchoring lane is enabled.