Recently created 'veripy' utilizing gemini to test out how a verification server might look like and act to verify modular, dynamic code being loaded and unloaded.

While not Zero Trust Architecture, it was a first attempt at seeing how cryptography can fit in to the mix with dynamic code.

If ever achieving some AGI, or ASI in the future it would need to programatically update, load and unload its own code.

Think:
- Systems Analaysis Service Updated, Reloading
- Network Monitor Systems Updated, Reloading

VeriPy

A Secure, Dynamic, and Verifiable Python Client-Server Framework.

VeriPy is a robust, asynchronous client-server framework built with Python's asyncio. It provides a secure communication channel using mutual TLS (mTLS) with Elliptic Curve cryptography and a powerful, dynamic plugin system for extending server functionality in real-time without restarts.

The core philosophy of VeriPy is "verify, then trust." The server verifies clients by their public key fingerprints, and the client actively verifies the integrity of server-side modules via cryptographic hashes, ensuring a secure and synchronized state.

## Core Features

- Secure by Default: Implements mutual TLS (mTLS) where both the server and client must present valid, trusted certificates to communicate.
- Fingerprint Authentication: The server authenticates clients based on a trusted list of public key SHA256 fingerprints, not just a shared Certificate Authority.
- Fully Asynchronous: Built entirely on Python's asyncio for high-performance, concurrent handling of multiple clients.
- Dynamic Module System: The server features a hot-pluggable module system. Simply drop a Python file into the ./mods directory to add new API commands.
- Live Reloading: The server uses watchdog to monitor the ./mods directory. Any changes to a module file are detected and the module is reloaded in real-time, without any server downtime.
- State Synchronization & Broadcasting: The server broadcasts critical events (module load, reload, unload) to all connected clients, allowing them to stay in sync.
- Client-Side Integrity Verification: The client doesn't blindly trust broadcasts. Upon notification of a module change, it automatically requests the module's source code and verifies its SHA256 hash against the server's reported hash.
- Configurable: The server's listening interface and port can be easily configured via command-line arguments.
- Modern Tooling: Uses uv for fast and efficient project environment and dependency management.

PGP Key Manager

To test the verification process and learning the (fun) things of GPG (PGP) is a fundamental.
Here's a client-side (all javascript) PGP Key Manager for fun.

This
- Generates a public and private key pair.
- Allows you to encrypt text with the keys.
- Allows you to verify with your public key, that the encrypted text is signed by your key.

I'll add more to it later or completely re-do it.

PGP Key Manager

Welcome to cyphrix
zero trust technologies
sys-admin tools
cool things friends make and share.