A sandbox for exploring authentication and identity protocols. Run real flows against a local MockIdP, inspect HTTP traffic, decode tokens.

AegisSovereignAI: The Cross-Ecosystem Trust Layer for the Distributed Enterprise. Verifiable Identity, Hardware-Rooted Integrity, and Sovereign AI Governance - from Silicon to Prompt. Unifying AI, Cloud-Native, and Decentralized architectures.

Caddy plugin implementing various Authentication mechanisms

Zero-trust security and governance framework for autonomous multi-agent AI networks. Implements the CSA Agentic Trust Framework to mitigate OWASP Top 10 Agentic Risks using SPIFFE/SPIRE identities, OPA/Rego policy-as-code, and semantic guardrail gateways.

SecurePay is a demonstration of a production-grade microservices architecture, featuring mutual TLS (mTLS) via SPIFFE/SPIRE, event-driven communication with Kafka, distributed tracing with OpenTelemetry.

Attested Auto Unseal for OpenBao: brokered wrap/unwrap authorization using TPM, Kubernetes, SPIFFE/SPIRE, and platform identity evidence.

A SPIFFE-native zero-trust platform built with Go, OPA, and Kubernetes for workload identity, behavioral risk detection, automated quarantine, secure release, and incident auditing.

🔒 Secure AI at the edge by binding user, device, and workload identities to ensure integrity, compliance, and trusted operations in real-time.