Skip to main content

Security

Security at RANKIGI

RANKIGI is an attestation layer. The integrity of every record we produce depends on the integrity of the systems that produce them. This page describes how we operate.

Section 1

Infrastructure

  • Application workloads run on Railway containers.
  • PostgreSQL with row-level security on all tables.
  • TLS 1.3 in transit for all client and service traffic.
  • AES-256 at rest for stored data.

Section 2

Cryptography

  • Ed25519 signatures for agent passports.
  • SHA-256 hash chains for tamper-evident event linkage.
  • Sigstore Rekor for public anchoring of snapshot hashes.
  • Post-quantum on the roadmap: ML-DSA-65 and SPHINCS+-SHAKE-128s.

Section 3

Access Controls

  • API key authentication required on all ingest endpoints.
  • Row-level security applied on all database tables.
  • Rate limiting on all public endpoints, with fail-closed degradation under load.

Section 4

Responsible Disclosure

  • Report suspected vulnerabilities to security@rankigi.com.
  • We target acknowledgement of new reports within 48 hours.
  • Please do not publicly disclose issues before we have had a chance to investigate and respond.

For audit support, evidence packages, or security questionnaire requests, contact security@rankigi.com.

RANKIGI

The receipt layer for AI agents acting in the real world. Tamper-evident. Hash-chain verified. Framework agnostic.

The execution proof layer for autonomous AI.

Ed25519 · SHA-256 · Sigstore Rekor

© 2026 RANKIGI Inc. Delaware C-Corp. Established February 2026.