wifi-ruview

awesome-bookmarks/wifi-ruview

Fork 0

mirror of https://github.com/ruvnet/RuView.git synced 2026-06-02 00:58:56 +02:00

Commit Graph

Author	SHA1	Message	Date
ruv	29233db6d5	docs(adr-118): BFLD — Beamforming Feedback Layer for Detection (6 ADRs + research bundle) Introduce the Beamforming Feedback Layer for Detection: the RuView safety layer that ingests WiFi BFI, measures identity-leakage risk, and structurally prevents identity-correlated data from leaving the node by default. ADRs (6): - ADR-118: umbrella decision, crate scaffolding, 6-phase rollout (~10.5 wk) - ADR-119: BfldFrame wire format, magic 0xBF1D_0001, deterministic serialization - ADR-120: 4 privacy classes, BLAKE3 keyed-hash rotation, #[must_classify] default-deny - ADR-121: 9-feature identity-risk scoring, coherence gate with hysteresis - ADR-122: 6 HA entities, 3 Matter clusters, mosquitto ACL, cognitum-v0 federation - ADR-123: Pi 5 / Nexmon production capture, AX210 dev path, ESP32-S3 self-only fallback Research bundle (docs/research/BFLD/, 13,544 words): - SOTA survey covering BFId (KIT, ACM CCS 2025) and LeakyBeam (NDSS 2025) - Architectural soul: defensive sensing primitive, not surveillance lens - Six-adversary threat model with attack trees and mitigations - Privacy-gating mechanics with structural cross-site isolation proof - Automation/integration surface (HA, Matter, MQTT, federation) - Concrete implementation plan with reuse map - Evaluation strategy with red-team protocol on KIT BFId dataset - Draft ADR, GitHub issue, and public gist Three structural invariants enforced by the type system, not policy: I1 — Raw BFI never exits the node I2 — Identity embedding is in-RAM-only (no Serialize impl) I3 — Cross-site identity correlation is cryptographically impossible (per-site BLAKE3 keyed-hash with daily epoch rotation) References: https://publikationen.bibliothek.kit.edu/1000185756 (BFId) https://www.ndss-symposium.org/wp-content/uploads/2025-5-paper.pdf (LeakyBeam) Co-Authored-By: claude-flow <ruv@ruv.net>	2026-05-24 12:20:52 -04:00

Author

SHA1

Message

Date

ruv

29233db6d5

docs(adr-118): BFLD — Beamforming Feedback Layer for Detection (6 ADRs + research bundle)

Introduce the Beamforming Feedback Layer for Detection: the RuView safety layer
that ingests WiFi BFI, measures identity-leakage risk, and structurally prevents
identity-correlated data from leaving the node by default.

ADRs (6):
- ADR-118: umbrella decision, crate scaffolding, 6-phase rollout (~10.5 wk)
- ADR-119: BfldFrame wire format, magic 0xBF1D_0001, deterministic serialization
- ADR-120: 4 privacy classes, BLAKE3 keyed-hash rotation, #[must_classify] default-deny
- ADR-121: 9-feature identity-risk scoring, coherence gate with hysteresis
- ADR-122: 6 HA entities, 3 Matter clusters, mosquitto ACL, cognitum-v0 federation
- ADR-123: Pi 5 / Nexmon production capture, AX210 dev path, ESP32-S3 self-only fallback

Research bundle (docs/research/BFLD/, 13,544 words):
- SOTA survey covering BFId (KIT, ACM CCS 2025) and LeakyBeam (NDSS 2025)
- Architectural soul: defensive sensing primitive, not surveillance lens
- Six-adversary threat model with attack trees and mitigations
- Privacy-gating mechanics with structural cross-site isolation proof
- Automation/integration surface (HA, Matter, MQTT, federation)
- Concrete implementation plan with reuse map
- Evaluation strategy with red-team protocol on KIT BFId dataset
- Draft ADR, GitHub issue, and public gist

Three structural invariants enforced by the type system, not policy:
  I1 — Raw BFI never exits the node
  I2 — Identity embedding is in-RAM-only (no Serialize impl)
  I3 — Cross-site identity correlation is cryptographically impossible
       (per-site BLAKE3 keyed-hash with daily epoch rotation)

References:
  https://publikationen.bibliothek.kit.edu/1000185756 (BFId)
  https://www.ndss-symposium.org/wp-content/uploads/2025-5-paper.pdf (LeakyBeam)

Co-Authored-By: claude-flow <ruv@ruv.net>

2026-05-24 12:20:52 -04:00

1 Commits