TrustEdge — Trustable Edge AI (Rust)¶
TrustEdge is a public learning journey in Rust, focused on building privacy-preserving, trustable edge AI pipelines. Unlike typical CRUD web apps, TrustEdge explores IoT, security/PKI, and edge systems, with a strong emphasis on privacy by design—encrypting at the edge, not just in transit.
Key Features¶
- Language: Rust (stable)
- Privacy by design: Encrypts data at the edge using AES-256-GCM (AEAD)
- Streaming workloads: Chunked file read, per-chunk encryption/decryption
- Immediate verification: Each chunk is decrypted and verified locally
- CLI Demo: Reads an audio file, encrypts/decrypts in chunks, verifies round-trip integrity
- Learning in public: Honest, incremental milestones
Tech Stack¶
- Rust
- Crypto:
aes-gcm(256-bit keys, 96-bit nonces) - CLI:
clap - Error handling:
anyhow
Quick Start¶
# Install Rust
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
# Clone the repo
git clone https://github.com/johnzilla/trustedge.git
cd trustedge/trustedge-audio
# Build
cargo build --release
# Run (any audio file is fine)
./target/release/trustedge-audio -i ./sample.wav -o ./roundtrip.wav --chunk 8192
# Verify round trip
sha256sum ./sample.wav ./roundtrip.wav
# Hashes should match
Roadmap¶
- Replace random per-chunk nonces with
random_prefix || counter - Add envelope struct for chunk metadata
- Split into producer/consumer tasks (tokio)
- Add basic observability/logging
License¶
Mozilla Public License 2.0 (MPL-2.0)