Skip to main content

Evidence and Trust

Status: PUBLIC_CONTRACT_DRAFT. This guide describes the evidence and trust model. Not a production-live claim. Evidence is sandbox/local validated, not production cloud proof.

What Evidence Means in Zen Mesh

Evidence is cryptographic proof that a delivery event occurred and was recorded with integrity. Zen Mesh produces evidence as part of every successful delivery attempt. Evidence includes integrity receipts that can be independently verified — proving that a delivery happened and that the record has not been tampered with.

What evidence is NOT:

  • Not authentication or identity proof (the evidence proves delivery happened, not who sent it)
  • Not encryption proof (the evidence channel is integrity-only)
  • Not a compliance certification (PCI, SOC 2, HIPAA, FedRAMP not claimed)
  • Not a replacement for your own delivery audit logs

Trace / Evidence Relationship

Every event produces a trace — a delivery and evidence spine. The trace follows the event from ingestion through each delivery attempt to its evidence receipt. Traces are not full distributed tracing.

Event → Attempt → Evidence Receipt → Trace
ComponentWhat it recordsStatus
TraceEnd-to-end delivery spine across all attemptsWIRED_SANDBOX
Delivery AttemptOne execution to one targetWIRED_SANDBOX
EvidenceIntegrity receipt for a successful deliveryWIRED_SANDBOX

See: Traces API, Evidence API

Local/Sandbox Evidence vs Production Evidence

AspectLocal/SandboxProduction
Proof scopeVerified in local or sandbox runtimeNot claimed — production-live proof does not exist
Evidence integrityProven in sandbox testsNot production-validated
Delivery guaranteeScenario-specific, local/mockNot production-claimed
ComplianceInternal readiness mappings onlyNot certified

Evidence Integrity

Evidence uses integrity receipts to provide tamper-evident delivery records. These receipts let you verify that a delivery record has not been altered since it was written.

Status: WIRED_SANDBOX — Integrity verification is implemented in local/sandbox runtime. Not production-live proof.

See: Evidence API for integrity verification steps.

Where to See Evidence

SurfaceLocation
UITrust → Evidence in the dashboard
APIEvidence API — GET evidence by delivery or source
MCPEvidence read tools (default-on)

Non-Claims

  • API docs are not production-live proof
  • Local/sandbox proof is not production cloud proof
  • Public docs are contract documentation, not an SLA
  • Billing/Stripe live is not claimed
  • Provider production validation is not claimed unless specific evidence exists
  • Replay requires retained context — not all deliveries are replayable
  • Integrity verification is for evidence integrity only — see Non-Claims for scope
  • No compliance certification is claimed
  • No delivery guarantee beyond scenario-specific local/mock/cloud-demo proofs