Skip to content

external-artifacts.md

Latest commit

 

History

History
193 lines (137 loc) · 10.9 KB

external-artifacts.md

File metadata and controls

193 lines (137 loc) · 10.9 KB

External authenticity artifacts

Status: Release Candidate Type: Normative compatibility appendix Audience: implementers, auditors, interoperability tool authors, archive operators Scope: current acceptance and linkage rules for detached signatures, detached PQ public keys, and OpenTimestamps evidence Out of scope: full upstream signature-format specifications, archive-policy semantics, long-term evidence-renewal design

Role

This appendix is the compatibility reference for the detached authenticity artifacts accepted by Quantum Vault today. It supports format-spec.md for ingestion and linkage rules and trust-and-policy.md for policy meaning. It is the owner appendix for apparentlyComplete / completeProof reporting semantics and OTS linkage-vs-completeness boundaries.

Scope

This file documents how Quantum Vault currently accepts and links:

  • detached PQ signatures (.qsig)
  • Stellar/Ed25519 detached signatures (.sig)
  • detached PQ public keys (.pqpk)
  • OpenTimestamps proofs (.ots)

It does not restate the complete upstream formats for those artifacts.

Normative status

This appendix is normative for current external-artifact acceptance and linkage behavior. An implementation is conformant to this version if and only if it satisfies all MUST-level requirements defined in the current normative sections of this appendix and the owner documents format-spec.md and trust-and-policy.md. If an implementation deviates from this appendix, it MUST explicitly document the deviation and MUST declare itself non-conformant to this version. Statements explicitly labeled as future or recommended direction are non-normative until promoted into the current sections of this appendix. In case of ambiguity, this appendix MUST be interpreted conservatively and fail-closed.

Sources and references

Internal current-state grounding:

  • src/core/crypto/auth/qsig.js
  • src/core/crypto/auth/stellar-sig.js
  • src/core/crypto/auth/opentimestamps.js
  • src/core/crypto/auth/signature-identity.js
  • src/core/crypto/lifecycle/artifacts.js
  • src/core/crypto/qcont/restore.js
  • format-spec.md
  • trust-and-policy.md

External references already used elsewhere in the repository:

  • OpenTimestamps proof ecosystem as currently linked evidence
  • RFC 4648 for Base64 handling
  • RFC 3161 for contrasting TSA-style timestamp evidence
  • RFC 4998 for the renewable evidence-record model that current .ots linkage does not yet implement

Current implementation status

Implemented now:

  • detached PQ signature verification for the current .qsig wrapper and context
  • Stellar detached-signature verification for the current stellar-signature/v2 JSON profiles
  • detached PQ public-key wrapper parsing for user pinning and bundled signer references
  • OpenTimestamps linkage to detached signature bytes
  • proof-identity deduplication for policy counting
  • fail-closed rejection of ambiguous or incompatible references

Not yet first-class in the current implementation:

  • archive-wide evidence objects separate from detached signatures
  • frozen standalone interoperability corpus for every artifact combination
  • automatic long-term evidence renewal or RFC 4998 evidence-record chaining

Future work and non-normative notes

  • additional detached artifact families should receive explicit acceptance rules rather than being inferred by filename alone
  • broader evidence chaining may be added later, but must remain clearly labeled as future behavior until implemented

1. Accepted artifact families

Artifact family Current acceptance boundary Current linkage target
.qsig binary wrapper with magic PQSG, detached PQ signature major version 2, and context quantum-signer/v2 archive-state bytes for archive approval, or declared lifecycle target bytes for bundled lifecycle signatures
.sig JSON document accepted only when it matches the supported stellar-signature/v2 schema and profile combinations same target rule as .qsig
.pqpk binary wrapper with magic PQPK and detached PQ public-key major version 1 signer pinning and publicKeyRef resolution
.ots OpenTimestamps proof with the supported proof header and SHA-256 stamped digest operation detached signature bytes

Current detection rules:

  • external .qsig detection is byte-based by magic, not by filename alone
  • external .sig detection requires strict JSON decoding plus a supported Stellar signature profile
  • external .pqpk is parsed explicitly as a detached PQ public-key wrapper
  • .ots linkage is based on the stamped digest matching detached signature bytes, not on a filename convention

2. Signature linkage rules

Current detached-signature linkage rules are:

  • archive-approval signatures MUST target canonical archive-state descriptor bytes
  • bundled maintenance signatures MUST target canonical transition-record bytes
  • bundled source-evidence signatures MUST target canonical source-evidence bytes
  • bundled lifecycle signatures MUST declare signatureFamily, targetType, targetRef, and targetDigest consistent with the selected archive-state, transition-record, or source-evidence object
  • external signatures supplied at restore are verified directly against the selected archive-state bytes rather than against lifecycle-bundle bytes

Current acceptance limits:

  • Quantum Vault does not treat the mutable lifecycle bundle as the archive-approval signable payload
  • unsupported detached-signature major versions, contexts, or profile identifiers fail closed
  • target mismatches fail closed

3. Public-key attachment and pinning rules

Current signer-identity sources are layered:

  • a bundled attachments.publicKeys[] entry may act as the authoritative verification key for a bundled detached signature when referenced by publicKeyRef
  • a user-supplied .pqpk file may act as an external PQ pin
  • a user-supplied expected Stellar signer string may act as an external Ed25519 identity pin

Current publicKeyRef rules:

  • publicKeyRef is optional
  • if publicKeyRef is present on a bundled signature, it is authoritative for that bundled signature
  • unresolved, ambiguous, incompatible, or non-verifying publicKeyRef bindings fail closed
  • a bundled qsig publicKeyRef must reference a bundled PQ public key with encoding = "base64" and a matching PQ suite
  • a bundled stellar-sig publicKeyRef must reference a bundled Stellar signer with encoding = "stellar-address" and suite ed25519

Current pinning consequences:

  • bundled-signature verification against a bundled key contributes to bundlePinned
  • verification against user-supplied pin material contributes to userPinned
  • a valid signature does not become policy-satisfying solely because a pin is present
  • self-verified PQ signatures that verified only with the key embedded in the .qsig itself do not count toward trust or policy when bundled or user-supplied signer material did not verify; an embedded-key-only .qsig may still be cryptographically valid, but it does not establish signer identity external to the artifact itself; normative counting and trust semantics are defined in trust-and-policy.md#64-counting-rules

4. Proof identity deduplication and ambiguity handling

Current policy counting deduplicates detached signatures by proof identity, not by filename.

Current proof-identity rules:

  • qsig proofs are deduplicated by SHA3-512 of the detached signature bytes
  • Stellar proofs are deduplicated by a normalized semantic payload, not raw JSON formatting alone
  • semantically duplicate signatures across bundled and external inputs count once for policy purposes

Current ambiguity handling:

  • duplicate bundle signature ids are rejected
  • duplicate detached signature proofs under different bundle ids are rejected
  • multiple provided .pqpk pins that all match the same detached PQ signature fail closed as ambiguous
  • an .ots proof must match exactly one detached signature; zero matches or multiple matches fail closed

5. OpenTimestamps linkage and completion reporting

Current .ots rules are intentionally narrow:

  • the stamped digest is the SHA-256 digest of detached signature bytes
  • bundled timestamps link to detached signatures through targetRef
  • external timestamps resolve by matching the stamped digest against the detached signature bytes seen during verification
  • .ots evidence does not satisfy archive signature policy by itself
  • acceptance and linkage do not require apparentlyComplete / completeProof to be true; those fields are reporting outputs, not acceptance preconditions

Current shipped-path distinction:

  • browser Attach imports .ots by calling the detached-signature resolver over the currently known signature bytes and fails closed if a proof matches zero or multiple signatures
  • restore uses the same detached-signature linkage rule for timestamp evidence, but bad linkage is reported as warning material on the timestamp-evidence channel instead of blocking an otherwise policy-satisfied restore

Current completeness reporting is heuristic:

  • apparentlyComplete / completeProof is inferred from proof-name keywords first
  • names containing initial, pending, or incomplete are reported as incomplete
  • names containing complete, completed, confirmed, or upgraded are reported as complete
  • the current implementation treats proof size >= 1024 bytes as appearing complete only when no keyword match was found
  • apparentlyComplete and completeProof are aliases for the same heuristic outcome in the current implementation
  • this is reporting convenience, not full long-horizon evidence validation
  • the current implementation does not independently verify Bitcoin inclusion, confirmation depth, or an RFC 3161-style TSA chain
  • the current implementation does not validate a full Bitcoin attestation chain merely because apparentlyComplete / completeProof is true

Current OTS deduplication:

  • evidence is deduplicated per stamped detached-signature digest
  • when duplicate evidence exists for one detached signature, the implementation prefers apparently complete proofs over incomplete ones
  • when completeness is tied, embedded evidence is preferred over otherwise equivalent external evidence

6. Current fail-closed cases

Quantum Vault currently rejects at least the following cases:

  • unsupported .qsig major version or context
  • unsupported .pqpk major version or CRC failure
  • unsupported Stellar signature schema or profile
  • bundled signature target digest mismatch
  • incompatible, unresolved, ambiguous, or non-verifying publicKeyRef
  • multiple provided .pqpk pins matching the same detached PQ signature
  • unrelated .ots proof that matches no detached signature
  • .ots proof that matches multiple detached signatures

These rules are part of the current interoperability contract, not optional hardening advice.