Trust Anchor Core — Capability-Based MCP Server for Supply Chain Defense

Perry, Thomas Jr.

doi:10.5281/zenodo.18209328

otherZenodo (CERN European Organization for Nuclear Research)Jan 10, 2026GREEN OA

Trust Anchor Core — Capability-Based MCP Server for Supply Chain Defense

TJThomas Jr. Perry

Indexed indatacite

Abstract

Trust_anchor.py is the core MCP server implementing capability-based security for build infrastructure defense. Key Components Cryptographically-enforced state machine (forward-only transitions) Capability store (job-scoped, hash-bound, single-use tokens) Artifact verifier (hash matching, provenance tracking) Signature guard (local-only signing, no HTTP exposure) WORM audit log (hash-chained, append-only) Policy engine (static rules, auditable) Part of the Trust Anchor framework for persistent threat environments.

Citation impact

40

total citations

FWCI: —
Percentile: —
References: 0

Too recent for citation history.

Authors

1

TJ
Thomas Jr. PerryCorresponding

Topics & keywords

Keywords

Guard (computer science)
Key (lock)
Core (optical fiber)
Digital signature
State (computer science)
Audit
Outsourcing
Server

No related works found for this paper.