43 lines
1.6 KiB
Markdown
43 lines
1.6 KiB
Markdown
---
|
||
title: "Evidence-Chain"
|
||
type: concept
|
||
tags: [audit, security, tamper-detection]
|
||
sources: [agentic-identity-trust.md]
|
||
last_updated: 2026-04-25
|
||
---
|
||
|
||
## Definition
|
||
|
||
Evidence-Chain(证据链)是一种仅追加(append-only)、链式哈希、防篡改的操作记录系统。每个证据记录包含:意图(intent)、决策(decision)、结果(outcome),并通过哈希链指向前一记录,形成完整操作审计链。
|
||
|
||
## Core Properties
|
||
|
||
- **仅追加**:历史记录不可修改,只能添加新记录
|
||
- **链式哈希**:每个记录包含前一条记录的哈希值,篡改任意记录都会破坏链的完整性
|
||
- **独立可验证**:任何第三方可以在不信任记录系统的前提下验证链的完整性
|
||
- **防篡改检测**:链中任意记录被修改,后续所有哈希校验将失败
|
||
|
||
## Structure
|
||
|
||
```python
|
||
{
|
||
"agent_id": "trading-agent-prod-7a3f",
|
||
"action_type": "trade.execute",
|
||
"intent": {"symbol": "AAPL", "quantity": 100, "side": "buy"},
|
||
"decision": "approved: scope verified, trust score 0.94",
|
||
"outcome": {"filled": true, "price": 182.50, "order_id": "ord-xyz"},
|
||
"timestamp_utc": "2026-03-01T14:30:00Z",
|
||
"prev_record_hash": "0"*64,
|
||
"record_hash": "sha256(...)",
|
||
"signature": "Ed25519(agent_private_key, record_hash)"
|
||
}
|
||
```
|
||
|
||
## Relationships
|
||
- [[Zero-Trust]]:Evidence-Chain 是 Zero-Trust 日志完整性的核心机制
|
||
- [[Trust-Scoring]]:Trust-Scoring 的评分依据来源于 Evidence-Chain 的可验证结果
|
||
- [[Algorithm-Agility]]:算法升级时需要保证历史证据链的可验证性
|
||
|
||
## Sources
|
||
- [[agentic-identity-trust.md]]
|