FieldHash:

Offline-Verifiable Evidence for
Long-Horizon Data Integrity

Quantum-derived fingerprints + post-quantum signatures. Verify locally, even when networks or vendors are down.

The Problem: Why Crypto Alone Isn't Enough

Long-horizon data (5–100+ years) can outlive today's cryptography.

Harvest-Now/Decrypt-Later (HNDL) makes archives captured today exploitable tomorrow when quantum computers mature.

Insider abuse and supply-chain compromise mean that—even when signatures verify—provenance can be manipulated at the source. Signatures prove possession of a key, not how content was produced.

Dependency outages leave verification systems unavailable precisely when trust checks matter most.

The consequence (why it matters now)

Auditors increasingly ask, "Can you still prove this exact artifact in 10–30 years?"

HNDL risk means encrypted data exfiltrated now may be readable later.

When signers or build pipelines are compromised, "valid" certificates can still represent untrue data—and long retention requirements amplify every vulnerability.


Two Pillars (Why Teams Choose FieldHash)

Operational continuity (offline): Verify locally on endpoints with no external calls—workflows keep moving during outages, maintenance windows, or in air-gapped networks.

Cryptographic assurance (future-proof): Post-quantum signatures (NIST ML-DSA/Dilithium) plus optional physics-anchored evidence when hardware is used; clear, policy-labeled trust tiers (Strict / Standard / Offline).

FieldHash Solves This by Adding Physics-Anchored Evidence That Complements Cryptography

When you issue certificates, FieldHash captures quantum-execution fingerprints (when hardware is used) with device provenance and calibration context. Verification remains fast, local/offline, and policy-aware, backed by evidence that's impractical to reproduce without equivalent quantum hardware, parameters, and conditions. Simulation fallback is supported and clearly labeled as a lower-trust tier.

Where verification runs: On your endpoints (Windows/macOS/Linux), offline, using the signed evidence bundle and local policy—no quantum access or third-party validators required.


What FieldHash Delivers

How it works (at a glance)

  1. Hash — Bind content with SHA-256 (primary) and SHA-512 (audit trail).

  2. Execute — Run a parameterized circuit on IBM Quantum or Quantum Inspire (when configured), or simulation (clearly labeled).

  3. Fingerprint — Derive distribution digest + noise statistics; capture calibration snapshots when hardware is used.

  4. Sign — Seal evidence with NIST ML-DSA (Dilithium) via Vault/HSM; optional NIST ML-KEM (Kyber) for encrypted attachments.

  5. Verify — Anyone can verify locally; profiles enforce minimum shots, drift windows, and hardware/simulation mode policy.

    Distribution efficiency: Evidence is content-addressed and supports ETag/304 revalidation to avoid redundant downloads.

Where it fits

Healthcare & Life Sciences

Clinical trial integrity and consent management for long-term compliance.

Why FieldHash: Quantum-anchored certificates (when hardware is used), vault/KMS/HSM signing, offline verification, and PII-aware observability.

Why it matters: Offline verification satisfies audit checks during outages; no new inline dependencies on EHR workflows.

Deployments: Managed or on-prem; air-gapped simulation for enclaves; transparency optional and off by default.

View healthcare use case

Finance & Public Sector

Long-horizon records that must outlast multiple crypto generations while meeting evolving audits.

Why FieldHash: Physics-anchored evidence + post-quantum signatures; local/offline verification; posture flags for auditors (mTLS/JWT/Vault).

Why it matters: Trade continuity during verifier outages; HNDL mitigation with NIST-selected PQC; provenance checks that resist supply-chain compromise.

Deployments: Multi-region, on-prem, or hybrid; ETag/304 for efficient evidence distribution; optional transparency where required.

View finance & public sector use case


Legal & Compliance

Evidence packages that withstand courtroom scrutiny with offline verification and clear trust tiers.

Why FieldHash: Signed evidence (distribution digest, noise fingerprint, calibration snapshots when hardware is used) plus deterministic profiles (Strict / Standard / Offline).

Why it matters: Trust checks remain enforceable offline; no vendor dependency for long-term validation.

Deployments: Enterprise or air-gapped verification; package formats compatible with review workflows.

View legal & compliance use case

Defense & Critical Infrastructure

Strict profiles; on-prem/air-gapped deployments when quantum access is restricted.

Why FieldHash: Hardware-backed evidence for high-assurance profiles; simulation fallback clearly labeled for development/training.

Why it matters: Zero key egress; fail-open design preserves mission continuity; provenance checks resist insider/supply-chain threats.

Deployments: IL/Fed environments, enclave installs; evidence distribution via controlled channels; posture flags for operations.

View defense & critical infrastructure whitepaper

AI & Content Provenance

Prove synthetic content authenticity with quantum-anchored evidence.

Bind an artifact's digest to a hardware-measured fingerprint plus device provenance and calibration context.

Minimal metadata, maximum privacy: use digests (prompt/parameters), model/process IDs, and timestamps. Optional C2PA assertion; COSE/CBOR or VC packaging.

AI provenance quickstart

Key Custody & Trust Distribution

Vault/KMS/HSM custody: Signatures are created inside your security boundary; no key egress to application memory.

Trust bundle / JWKS: Public keys + policy delivered via a signed trust bundle (GPO/Intune) or internal JWKS endpoint for connected enclaves.

Trust tiers (policy-labeled): Strict typically requires hardware; Standard/Offline allows simulation, always clearly labeled.

What's Live in v2.5

Quantum backends: IBM Quantum® & Quantum Inspire; policy-driven failover with clearly labeled simulation fallback and hardware-first profiles.

APIs (v2): Issue, verify, revoke; fetch evidence/metadata with ETag/304 caching for efficient distribution.

Security: Client mTLS, JWT, RBAC, tenant quotas, rate limiting, and Vault-only signing/unwrap to keep private keys out of application memory.

Validation: 636 automated unit tests + 56 integration tests covering certificate lifecycle, disaster recovery, observability, and multi-tenant isolation.

Observability: Prometheus metrics (including PQC posture counters), OpenTelemetry tracing, and structured logs with PII controls.

Deployment: Containers + Helm charts; cloud, on-prem (air-gapped via simulation), or hybrid topologies with documented SLOs and DR drills.

Threat Model (Summary)

  • HNDL (Harvest-Now/Decrypt-Later): Adversaries capture encrypted data today to decrypt later when quantum computers mature. FieldHash mitigation: NIST ML-DSA (Dilithium) signatures resist quantum attacks; evidence remains verifiable without re-encryption.

  • Insider/Supply-Chain Compromise: Valid signatures can attest to untrue provenance when signers or build pipelines are compromised. FieldHash mitigation: Acceptance is bound to measured execution (distribution + noise fingerprint); forgery requires equivalent hardware, parameters, and conditions.

  • Dependency Outages: Verification must succeed offline to preserve continuity during network or vendor failures. FieldHash mitigation: Evidence packages are self-contained; verifiers operate locally without network calls.

Why Teams Choose FieldHash

Physics-anchored evidence complements post-quantum cryptography—raising the cost to forge provenance beyond practical limits.

Local, offline verification—no vendor lock-in for long-term validation; evidence bundles are self-contained.

Non-exportable key custody—signing inside Vault/KMS/HSM boundaries; zero key egress to application memory.

Clear trust tiers—Strict requires hardware evidence; Standard allows simulation (clearly labeled); Offline optimizes for air-gapped review.

Fail-open design—if FieldHash is unavailable, workflows continue unchanged; verification can occur later with cached evidence.

FAQ

Get Started


Schedule a Demo →

Read the v2.5 Public Whitepaper →


Production deployments • IBM Quantum and Quantum Inspire integration • NIST-selected post-quantum cryptography • Designed for decades-long data integrity