@rickydata/security-kernel
v1.1.5
Published
Security kernel for Rickydata - TPM sealing, encryption, and sign-to-derive key derivation
Maintainers
rickydataReadme
@rickydata/security-kernel
A publicly auditable security kernel providing cryptographic primitives for user-controlled encryption. This package supports zero-knowledge architecture: user data is encrypted with user-controlled signatures or TPM-bound keys, and production services are expected to fail closed instead of falling back to operator-readable keys.
This is NOT permissive open source. See LICENSE for usage terms.
Table of Contents
Why This Matters
The Problem
Traditional SaaS platforms store user secrets (API keys, credentials) in ways that the operator can access. Even with encryption at rest:
- The operator holds the encryption keys
- Insider threats or legal requests can expose secrets
- Users must trust the operator's security claims
Our Solution
Sign-to-Derive architecture gives users cryptographic control over their secrets:
┌─────────────────────────────────────────────────────────────────────┐
│ SIGN-TO-DERIVE PROTOCOL │
├─────────────────────────────────────────────────────────────────────┤
│ │
│ 1. USER SIGNS ENCRYPTION CHALLENGE │
│ ┌──────────────┐ ┌──────────────┐ │
│ │ User Wallet │ ───► │ Signature │ │
│ │ (keys held │ │ r, s, v │ │
│ │ by user) │ └──────────────┘ │
│ └──────────────┘ │ │
│ ▼ │
│ 2. SERVER DERIVES A TRANSIENT KEY │
│ ┌──────────────┐ ┌──────────────┐ │
│ │ SHA-256(sig) │ ───► │ 32-byte Key │ ◄── Key is wiped │
│ │ │ │ (not stored) │ after use │
│ └──────────────┘ └──────────────┘ │
│ │ │
│ ▼ │
│ 3. USER DATA IS ENCRYPTED │
│ ┌──────────────┐ ┌──────────────┐ │
│ │ AES-256-GCM │ │ Encrypted │ │
│ │ (user key) │ ───► │ data stored │ │
│ └──────────────┘ │ on server │ │
│ └──────────────┘ │
│ │
│ RESULT: Server can encrypt/decrypt ONLY when user provides │
│ a fresh signature. Without it, secrets are forever │
│ inaccessible. │
└─────────────────────────────────────────────────────────────────────┘Security Guarantees
What We Cannot Do (Even If We Wanted To)
| Capability | With Sign-to-Derive | Without | |------------|---------------------|---------| | Read user's API keys at rest | Not without the user signature or TPM policy | Possible with operator-held key | | Read user's encrypted data at rest | Not without the user signature or TPM policy | Possible with operator-held key | | Decrypt past sign-to-derive sessions | Not without the same signature | Possible with stored key | | Extract useful secrets from disk | Encrypted blobs only | Plaintext or operator-decryptable blobs | | Respond to legal requests for plaintext | No stored plaintext key to hand over | Operator key could be compelled |
What We CAN Do
- Encrypt data when user provides a signature
- Verify signatures are valid (but never derive the key)
- Store encrypted blobs that we cannot decrypt
- Delete user data on request
How It Works
1. Encryption Layer (AES-256-GCM)
import { encrypt, decrypt } from '@rickydata/security-kernel';
const key = crypto.randomBytes(32);
const { encrypted, iv, authTag } = encrypt('my secret', key);
const decrypted = decrypt(encrypted, iv, authTag, key);- AES-256-GCM: Industry-standard authenticated encryption
- 12-byte IV: Prevents pattern analysis
- 16-byte Auth Tag: Detects tampering
2. Sign-to-Derive Key Derivation
import { deriveKeyFromSignature, encryptWithSignature, decryptWithSignature } from '@rickydata/security-kernel';
// User signs with their wallet
const signature = await wallet.signMessage('Encrypt my data');
// Server encrypts with a transient derived key; helper wipes it after use.
const encrypted = encryptWithSignature('my-api-key', signature);
// User decrypts with same signature
const decrypted = decryptWithSignature(
encrypted.encrypted,
encrypted.iv,
encrypted.authTag,
signature
);The derivation: SHA-256(signature) -> 32-byte key
- The server receives the signature, not the wallet private key
- Every signature produces a unique key
- Helper APIs validate signature hex encoding and wipe the derived key buffer after use
- Without the signature, the data is cryptographically inaccessible
3. TPM-Backed Master Key
For non-sign-to-derive encryption (system-level secrets):
import { sealMasterKey, unsealMasterKey } from '@rickydata/security-kernel';
import { randomBytes } from 'crypto';
const storagePath = '/var/lib/agent-gateway/secrets/master-key.sealed';
const masterKey = randomBytes(32);
// Production: requires a TPM 2.0 device and tpm2-tools; fails closed otherwise.
sealMasterKey(masterKey, storagePath);
// On restart: TPM policy session unseals the master key if PCR state matches.
const key = unsealMasterKey(storagePath);- TPM 2.0: Hardware-backed key protection through
tpm2_create,tpm2_load, andtpm2_unseal - PCR Binding: Default policy
sha256:0,1,2,3,4,5,7, overrideable viaTPM_PCR_LIST - Fail Closed: The production path does not use a software TPM simulation
- Bounded Memory Lifetime: Keys exist only while being sealed, unsealed, or used; callers should wipe buffers after use
Verification
Option 1: Security Dashboard
Visit https://mcpmarketplace.rickydata.org/security
This page provides:
- TEE Attestation Report: Cryptographic proof that code runs in AMD SEV-SNP
- Runtime Code Hash: SHA-256 of the deployed private gateway build
- Live Status: Current trust state, PCR measurements, key status
Option 2: Verify the Code Yourself
Inspect this repository:
git clone https://github.com/rickycambrian/rickydata_security_kernel.git cd rickydata_security_kernelReview the implementation:
src/encryption.ts: AES-256-GCM implementationsrc/sign-to-derive.ts: Key derivation from signaturessrc/tpm-sealer.ts: TPM sealing with PCR binding
Compute the code hash:
npm install npm run build # Hash the dist/ folder contentsCompare with deployment metadata:
- The live gateway attestation proves the private production image currently running
- The public kernel package proves the auditable crypto primitives shipped for review
- Customer-facing provenance should bind package version/integrity to the deployed image before treating the public package as an exact runtime proof
Option 3: Verify TEE Attestation
# Fetch attestation from Agent Gateway
curl -s https://agents.rickydata.org/health | jq '.securityPosture'
# This returns:
# {
# "tee": "SEV-SNP",
# "attestation": "verified",
# "codeHash": "sha256:...",
# "pcrs": { "0": "...", "1": "...", ... }
# }Compare the codeHash against the deployed image provenance. The security kernel package is the public audit surface for the crypto primitives; it is not by itself a complete hash of the production runtime image.
Architecture
┌─────────────────────────────────────────────────────────────────┐
│ RICKYDATA PLATFORM │
├─────────────────────────────────────────────────────────────────┤
│ │
│ ┌─────────────────┐ ┌─────────────────────────────────┐ │
│ │ Your Browser │ │ Agent Gateway (TEE) │ │
│ │ │ │ ┌─────────────────────────────┐ │ │
│ │ ┌─────────────┐ │ │ │ Security Kernel (this) │ │ │
│ │ │ Wallet │ │───►│ │ │ │ │
│ │ │ (keys local) │ │ │ │ • AES-256-GCM encryption │ │ │
│ │ └─────────────┘ │ │ │ • Sign-to-derive (S2D) │ │ │
│ │ │ │ │ • TPM sealing/unsealing │ │ │
│ │ ┌─────────────┐ │ │ │ • Secure wipe primitives │ │ │
│ │ │ Signature │ │───►│ │ │ │ │
│ │ │ (sent only) │ │ │ └─────────────────────────────┘ │ │
│ │ └─────────────┘ │ │ │ │ │
│ │ │ │ ▼ │ │
│ │ ┌─────────────┐ │ │ ┌───────────────────────┐ │ │
│ │ │ Encrypted │◄────│───│─ │ TPM 2.0 (hardware) │ │ │
│ │ │ Data │ │ │ │ • PCR-bound sealing │ │ │
│ │ └─────────────┘ │ │ │ • Key never exported │ │ │
│ └─────────────────┘ │ └───────────────────────┘ │ │
│ └─────────────────────────────────┘ │
│ │ │
│ ▼ │
│ ┌─────────────────────────────────┐ │
│ │ AMD SEV-SNP Confidential │ │
│ │ VM (attestation verified) │ │
│ └─────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘Defense Layers
| Layer | Protection | |-------|------------| | Sign-to-Derive | Operator cannot derive encryption keys | | TPM Sealing | Master key requires hardware to unseal | | SEV-SNP TEE | Code runs in confidential VM | | Attestation | Cryptographic proof of what code runs | | Secure Wipe | Keys cleared from memory after use |
API Reference
Encryption
import { encrypt, decrypt, secureWipe } from '@rickydata/security-kernel';
// Encrypt
const result = encrypt(plaintext: string, key: Buffer): EncryptedData
// Returns: { encrypted: Buffer, iv: Buffer, authTag: Buffer }
// Decrypt
const plaintext = decrypt(encrypted: Buffer, iv: Buffer, authTag: Buffer, key: Buffer): string
// Secure wipe (always call after working with sensitive data!)
secureWipe(buffer: Buffer): voidSign-to-Derive
import { deriveKeyFromSignature, encryptWithSignature, decryptWithSignature } from '@rickydata/security-kernel';
// Derive key from Ethereum signature
const key = deriveKeyFromSignature(signature: string): Buffer
// Encrypt with signature-derived key
const result = encryptWithSignature(plaintext: string, signature: string): SignToDeriveResult
// Returns: { encrypted: string, iv: string, authTag: string } (base64 encoded)
// Decrypt with signature
const plaintext = decryptWithSignature(
encryptedBase64: string,
ivBase64: string,
authTagBase64: string,
signature: string
): stringTPM Sealing
import { checkTpmAvailability, tpmSeal, tpmUnseal, sealMasterKey, unsealMasterKey } from '@rickydata/security-kernel';
// Check TPM availability
const status = checkTpmAvailability(): TpmAvailability
// Returns: { available: boolean, reason?: string, devicePath?: string }
// Seal data to TPM
const sealed = tpmSeal(data: Buffer): TpmSealedData
// Unseal TPM data
const data = tpmUnseal(sealedData: TpmSealedData): Buffer
// Persist sealed master key
sealMasterKey(masterKey: Buffer, storagePath: string): void
const key = unsealMasterKey(storagePath: string): Buffer
// Check if sealed key exists
const exists = hasSealedMasterKey(storagePath: string): booleanTesting
import { enableTpmMock, disableTpmMock } from '@rickydata/security-kernel';
// Enable TPM mock for testing (no hardware required)
enableTpmMock(seedData: Buffer): void
// Disable mock and use real TPM
disableTpmMock(): voidInstallation
npm install @rickydata/security-kernelRequirements
- Node.js 18+
- TypeScript 5.3+ (if using TypeScript)
- TPM 2.0 plus
tpm2-toolsfor production sealing; mock mode is for unit tests only
Development
# Install dependencies
npm install
# Run tests
npm test
# Build
npm run buildSecurity Considerations
For Users
- Your wallet holds the keys: Never share your private keys
- Signatures are scoped: Each signature can only encrypt/decrypt data
- Session signatures: You may need to re-sign periodically
For Operators
- Always use real TPM in production: production sealing requires TPM 2.0 and
tpm2-tools - Call secureWipe(): After encrypt/decrypt operations
- Handle key rotation: Use persistent store with multiple keys
License
This is NOT open source software.
This software is provided under a Source-Available license. See LICENSE for:
- ✅ What you CAN do (audit, verify, use with Rickydata services)
- ❌ What you CANNOT do (fork, build competing products, redistribute)
Related Links
- Security Dashboard: https://mcpmarketplace.rickydata.org/security
- Agent Gateway: https://agents.rickydata.org
- MCP Gateway: https://mcp.rickydata.org
- TEE Attestation: https://agents.rickydata.org/health
Questions?
- Security / Inquiries: https://x.com/rickydata42