# Technical Overview

**TrustOriginality.ai** | June 2026

## Architecture

```
Marketing site (Razor)  →  Panel + API (panel.trustoriginality.ai)  →  SQL Server
                                    ↓
                    Sovereign Box (Docker/Helm, air-gapped)
                                    ↓
        WordPress / Drupal / Shopify / Canvas LTI / Browser extension
```

## Core components

| Component | Technology | Role |
|-----------|------------|------|
| Dashboard & API | .NET 8, Razor, REST, WebSocket | Customer panel, billing, analysis orchestration |
| Detectors | ONNX (text/image/audio/video) | On-prem inference, low latency |
| Marketing site | ASP.NET Core Razor | 10-language catalog, Stripe checkout |
| Sovereign Box | Docker, Helm, optional RTSP | Offline API and monitoring |
| Database | SQL Server | Tenants, analysis records, provenance |

## Security & trust

- **Secrets:** Environment variables / Azure Key Vault — no plaintext in repo
- **Attestation CA:** Internal root CA for C2PA leaf certificates; public root at `/.well-known/trustoriginality-ca-root.pem`
- **Provenance:** HMAC-signed registry, Merkle daily roots, OpenTimestamps, perceptual hash similarity
- **KVKK / GDPR:** Box data-flow documentation; EU hosting option for cloud tier

## API highlights

| Domain | Examples |
|--------|----------|
| Analysis | `POST /api/text/analyze`, `/api/image/analyze`, `/api/audio/analyze`, `/api/video/analyze` |
| Verification | `POST /api/verify/cross-check`, `POST /api/attestation/verify` |
| Compliance | `GET /Compliance/ExportAuditBundle`, compliance JSON-LD labels |
| Vertical | `/api/kyc/verify`, `/api/publish-gate/check`, `/api/agent/scan` |
| Real-time | `WebSocket /ws/live-analyze`, Call Guard `/ws/call-guard/{id}` |

Auth: API key (`X-Api-Key`) or panel JWT. Credit metering with HTTP 402 on quota exceeded.

## Integrations shipped

- Python SDK, JavaScript SDK, browser extension (MV3)
- WordPress & Drupal publish gate plugins
- Shopify OAuth app
- LTI 1.3 for Canvas/Moodle
- Call Guard connector tooling (Teams/Zoom)

## Deployment

| Target | Method |
|--------|--------|
| Cloud | Azure App Service / FTP publish |
| Box | Docker Compose or Kubernetes Helm |
| CI | Build + test pipelines per solution |

## IP & roadmap

- Proprietary detector ensemble and cross-check scoring
- C2PA manifest builder with attestation chain
- Q3–Q4 2026: expanded modality models, enterprise SSO, additional certifications

Full engineering brief available under NDA.