Agent-007 — Agent GovernanceHATS — Cyber InsuranceH33-74 — Portable ProofPQ Verified — PQ ValidationCryptographic APIs
The Cryptographic Lifecycle
How It WorksWatch DemoThe MapPatent Portfolio
Architecture
H33-RootAgent-ZeroQ-SignReplayTruth
Cryptographic Services
UpstreamFHE-IQBFVCKKSTFHE
Open Standards
HATSHICSPQ-Verified (New)CRVOISQ-Key
Verification
Conformance SuiteVerification GuaranteesHATS SpecificationArchitectureProtocol Stability
AI Agent (New)Q-SignInsurance Proof LabAvalanche EvidenceH33 SessionVerifyDemos
Cyber Insurance (HATS)BankingGovernmentHealthcareLaw FirmsPayments (WireProof)AI Companies
SDKs & Tools
SDKs HubTypeScript SDKMCP SDKVerifier CLIGitHub
References
DocumentationAPI ReferenceConformance VectorsSchemasBenchmarks
AboutPressPartnersPricingContactLegal
Explore (579)Live Systems (52)Pricing
Log InGet API Key✓ Verify It Yourself
H33 H33 · DAO Reputation ← All Demos
● Live Demo · Real WASM Verification

Reputation no one can see.
Authority anyone can verify.

Five primitives composed into one replayable attestation: biometric anti-sybil, encrypted activity, FHE-aggregated score, selective ZK disclosure (prove rep ≥ X without revealing the score), and post-quantum receipts that any third party can independently replay offline. This page runs real cryptographic verification in your browser.

Step 01 · Anti-Sybil Enrollment

One human. One reputation.

H33 hashes a fresh device-bound credential into a 32-byte enrollment commitment. The credential never leaves the device; only the commitment is observable. In production this commitment is bound to a platform authenticator (Face ID, Touch ID, Windows Hello, or hardware security key); this demo uses a deterministic per-session credential to exercise the same SHA3-256 primitive in WASM.

Step 02 · Encrypted Activity

Every event becomes a private receipt.

Each DAO event (vote, proposal, contribution, attendance) is encrypted at the source and gets its own H33-74 receipt: 32 bytes of canonical commitment + 42 bytes of post-quantum signature material. The raw event content is never observable; only the receipt commitment is.

Step 03 · FHE Aggregation

The server runs the math. It cannot read it.

The server combines your encrypted contributions under Fully Homomorphic Encryption (BFV / CKKS). It never decrypts. The output is an encrypted score envelope — a ciphertext only you (or a ZK proof) can interpret.

Enc(score)
Encrypted Score · Server Cannot Decrypt
Step 04 · Selective ZK Disclosure

Prove your rep clears a threshold. Reveal nothing else.

Set a threshold X. The server emits a ZK-STARK proof that your encrypted score satisfies rep ≥ X. The proof is verified in your browser with no further server contact — and reveals nothing about the actual score, contribution history, or the operations that produced it.

60
Step 05 · Independent Replay

Same bytes. No operator. No trust.

Download the replay bundle and verify it offline. The h33-verifier (Apache-2.0, public on GitHub) reconstructs the entire reputation lineage from the bytes alone. No call to H33 required. This is what makes the score independently auditable by a DAO, a regulator, or your customer's forensic team — without trusting us.

Verify Offline → Verifier Source ↗
Bundle formath33-replay-bundle v0.2 · signed-verify-report v0.1
Verifierh33-verifier v0.2.0 · Rust → WASM · Apache-2.0
CryptoML-DSA-65 · FALCON-512 · SLH-DSA · SHA3-256
What this provesBytes-identical replay across any verifier instance, anywhere, forever.
The Invention
Five primitives — biometric, FHE, ZK-STARK, post-quantum signing, replayable attestation — composed into one PQ-attested receipt under US Patent Application #19/693,384 (Agent-Zero, Layer 5 Composite Attestation). Not a new crypto invention. The first production composition covering the full stack — UniRep, World ID, Holonym, Gitcoin Passport, MACI, and Zama fhEVM each cover a subset.