26 lines
1.5 KiB
Markdown
26 lines
1.5 KiB
Markdown
# Deterministic Replay and Verification in Air-Gap Mode
|
|
|
|
## Module
|
|
AirGap
|
|
|
|
## Status
|
|
IMPLEMENTED
|
|
|
|
## Description
|
|
Replay manifests capturing input artifacts, verification results, and media types for deterministic reproducibility. Replay verification service for air-gapped environments. Covers offline cryptography plugins and importer validation.
|
|
|
|
## Implementation Details
|
|
- **Replay verification service**: `src/AirGap/StellaOps.AirGap.Controller/Services/ReplayVerificationService.cs`
|
|
- **Replay contracts**: `src/AirGap/StellaOps.AirGap.Importer/Contracts/ReplayVerificationRequest.cs`, `ReplayDepth.cs`
|
|
- **Attestor replay**: `src/Attestor/__Libraries/StellaOps.Attestor.ProofChain/Replay/ReplayInputArtifact.cs`, `ReplayResult.cs`, `ReplayStatus.cs`, `ReplayVerificationResult.cs`, `ReplayPromptTemplate.cs`
|
|
- **Offline crypto**: `src/Cryptography/StellaOps.Cryptography.Plugin/CryptoPluginBase.cs` and plugin implementations (GOST, eIDAS, SM, FIPS, HSM)
|
|
- **Evidence reconciliation**: `src/AirGap/StellaOps.AirGap.Importer/Reconciliation/` -- EvidenceReconciler, EvidenceGraph, JSON normalizer, attestation/SBOM parsers
|
|
- **Importer validation**: `src/AirGap/StellaOps.AirGap.Importer/Validation/` -- bundle validation
|
|
- **Source**: Feature matrix scan
|
|
|
|
## E2E Test Plan
|
|
- [ ] Verify replay manifests capture all input artifacts with media types
|
|
- [ ] Test replay verification produces identical results from same inputs
|
|
- [ ] Test evidence reconciliation correctly builds evidence graph
|
|
- [ ] Verify offline crypto plugin signing/verification works without network
|