Each time a machine receives an edition of QuaricOS, a handshake takes place between the machine and the system. This public, tamper-evident registry keeps a record of it. No identity, no personal data, no telemetry: only an anonymous cryptographic fingerprint.
This registry never compromises your identity. It injects no telemetry, and neither asks nor knows who you are. It only attests, transparently, that a handshake took place between your machine and your operating system. Thank you for trusting QuaricOS. This registry serves as a legal record, and as a legal record only.
A new handshake has been sealed. Thank you, and no identity is compromised.
A new handshake has been sealed. Thank you, and no identity is compromised.
A new handshake has been sealed. Thank you, and no identity is compromised.
Building a sovereign operating system with no telemetry whatsoever is the founding idea of QuaricOS. But letting users do anything and everything while remaining nearly undetectable is not. The transparency log is that balance point: it publicly seals each handshake between a machine and an edition, without revealing anything more.
The sealed fingerprint is anonymous and non-reversible: it contains no name, no address, no personal identifier, no IP address. No one, not even us, can know who owns a machine from this registry. We protect you, and we do not watch you.
The sole purpose of this registry is legal: upon judicial request, and only in that case, it can attest that a specific edition was indeed put into service on a specific machine, without ever naming a person. Blind by design.
Each entry is chained to the previous one by a SHA-3 (SHAKE) fingerprint. The slightest alteration of a past entry breaks the whole chain and becomes immediately detectable. The head of the registry is sealed with a sovereign post-quantum SLH-DSA signature (FIPS 205, NIST level 5). The full registry is downloadable and verifiable by anyone, offline.
The handshake and the sealing rely on sovereign post-quantum cryptography at NIST level 5, resistant to quantum computers: SLH-DSA signatures (FIPS 205) and ML-KEM encryption (FIPS 203). These primitives are reappropriated from public references, recompiled and maintained by us, with no third-party dependency or update. The per-machine key is generated locally and never leaves the device: the machine signs its own fingerprint, and we only ever receive an anonymous hash of it.
