WINDI VERIFY
Master Specification v1.0
Document Overview
| Document ID | WINDI-VERIFY-MASTER-SPEC-20260305 |
|---|---|
| Version | 1.0.0 |
| Status | ACTIVE — SEALED |
| Classification | INTERNAL / ARCHITECTURAL |
| Author | Three Dragons Protocol (Human Dragon + Architect) |
| Date | 05 March 2026 |
| Related Invariant | I11 — Public Verifiability (IRREMEDIABLE) |
| Genesis Record | WINDI-VERIFY-GENESIS-20260305 |
Constitutional Basis
Invariant I11 — Public Verifiability
"Every sealed document must be publicly verifiable. Forever."
Invariant I11 is irremediable. It cannot be revoked, suspended, or modified by any operator, administrator, or system update. Its activation on 05 March 2026 permanently commits the WINDI infrastructure to maintaining public verifiability for all sealed documents.
Infrastructure
| Service Port | :8114 |
|---|---|
| Public URL | windi-domain.com/verify-public/ |
| Direct Verify URL | windi-domain.com/verify/{hash} |
| Nginx Path | /verify-public/ → proxy_pass :8114 |
| Process Manager | systemd |
| Database Source | Forensic Ledger :8101 (SQLite + SHA-256) |
| API: verify | GET /api/verify/{id} |
| API: receipts | POST /api/receipts |
| Total Receipts | 39,711+ (05.03.26) |
Verification Pipeline
Verification Modes
Mode 1 — WINDI Verification (Primary)
The authoritative mode. Used for all documents produced and sealed within the WINDI ecosystem.
- Input: WINDI document (PDF with embedded hash and QR code)
- Process: SHA-256 hash extracted → queried against Forensic Ledger
- Output: VERIFIED ✔ with full metadata, or NOT FOUND ✗
- Authority: Maximum — backed by constitutional I11 guarantee
This mode is the sole basis for legal and institutional claims of document authenticity.
Mode 2 — Generic Analysis (Secondary) — Planned
An analytical mode for documents not produced by WINDI. Provides structural analysis without making authenticity claims.
- Input: Any document file
- Process: Detect cryptographic elements (hash, QR, PGP, OpenTimestamp)
- Output: Analysis report — no WINDI verification claim
- Status: Medium-term roadmap
Mode 3 — Constitutional Scanner — Future
The long-term vision: WINDI Verify as an authenticity antivirus. Any document enters. The system answers one question:
"Does this document have cryptographic proof of existence?"
FREMDE Data Policy
FREMDE (external/foreign) data refers to documents and cryptographic elements not originating from WINDI.
| Phase | Policy | Rationale |
|---|---|---|
| NOW (v1.x) | Zero FREMDE. WINDI documents only. | Authority-building phase. No ambiguity. |
| MEDIUM (v2.x) | FREMDE read, not certified. | WINDI still = superior standard. |
| FUTURE (v3.x) | Constitutional scanner. Any document. | WINDI = authenticity infrastructure. |
Principle: WINDI Verify first builds authority, then expands jurisdiction. FREMDE analysis never dilutes WINDI certification.
Liveness Detection (Planned)
Camera capture for liveness detection is a planned capability for HIGH-tier document signing and DID creation.
Use Cases
- DID creation — PF (natural person) identity establishment
- HIGH-tier document signing — contracts, procurations, notarial acts
- War Room access — re-authentication for sensitive sessions
Technical Approach
| Passive liveness | Micro-movement analysis — blink, breath, natural motion |
|---|---|
| Active liveness | User prompted — turn, blink, smile, finger count |
| Storage policy | NO face image or video stored — constitutional requirement |
| Ledger record | liveness_confirmed=true + timestamp + event_hash ONLY |
| GDPR basis | Explicit consent required — biometric data category |
| I9 compliance | Camera does not escalate AI autonomy — human confirms presence |
Roadmap
Document Sealing Record
| Document type | ARCHITECTURAL_SPEC |
|---|---|
| Impact level | CRITICAL |
| Risk level | R5 — Institutional |
| Seal requirement | Mandatory — Three Dragons Protocol |
| Retention | Permanent — I11 scope |
| Distribution | Internal — WINDI Architecture team |
| Sealed hash | [TO BE FILLED ON SEALING] |
| Serial | [WINDI-2026-XXXX] |