Hi everyone,

I've just open-sourced icl_system, a Byzantine-fault-tolerant consensus kernel in Rust.

What it is

A research prototype combining a BFT threshold consensus engine with a lock-free Q32.32 fixed-point observability layer. The core architectural decision: strict one-way boundary between Security Layer and Observability Layer — metrics are never used as security signals.

Key components

• MLROQuorumGate — BFT threshold consensus, one vote per node per block
• InsurancePoolV2Monitor — Ed25519 multisig with nonce protection
• ICLEventBus — deadlock-safe COW Arc + RwLock publish/subscribe
• EntropyDivergenceMonitor — Welford online stats, O(1) median via DualHeap
• PressureField<N> — Q32.32 fixed-point EMA, cache-line aligned, zero-float

Security work

6 rounds of white-box audit, 18 P0/P1 findings closed including vote stuffing, TOCTOU in nonce handling, replay via auto-pruning, future-block DoS, timing side-channel in Ed25519 loop, and QuorumVersion isolation.

Status

Research prototype (alpha). No formal verification (TLA+) or independent audit yet — both planned.

• GitHub: GitHub - kupreano/liquidcrystal-core · GitHub
• crates.io: crates.io: Rust Package Registry

Happy to discuss architecture or security decisions.

1 post - 1 participant

Read full topic