
########################################################################
# Trust Gate MCP — Quantum-Resistant Receipt Demo
# NIST FIPS 204 ML-DSA-65 + Ed25519 hybrid signing
########################################################################

========================================================================
DEMO 1 — Hybrid Signing (Ed25519 + ML-DSA-65)
========================================================================
Payload: {
  "decision_id": "dec_demo_00001",
  "action": "DEPLOY",
  "agent_id": "ci-agent-alpha",
  "resource_id": "prod-cluster-01",
  "decision": "allow",
  "tenant_id": "acme",
  "env": "PRODUCTION",
  "human_approved": true,
  "policy_version": "v1"
}

Mint time: 193.32 ms

evidence_hash:          68c99db50bd90251353e1cfab43004434076296b2d4c253278bad53e3a79edfa
ed25519 sig length:     64 bytes
ml_dsa_65 sig length:   3309 bytes
ml_dsa_65 pk length:    1952 bytes
signature_alg:          Ed25519+ML-DSA-65

========================================================================
DEMO 2 — Offline ML-DSA-65 Verification (no network, no server)
========================================================================

Ed25519 verify (classical):   valid=True   latency=0.14 ms
ML-DSA-65 verify (post-quantum, offline): valid=True   latency=6.88 ms

ML-DSA-65 properties:
  valid: True
  algorithm: ML-DSA-65 (NIST FIPS 204)
  security_level: NIST Level 3 (~AES-192 equivalent)
  quantum_resistant: True
  offline: True
  network_required: False

========================================================================
DEMO 3 — Tamper Detection (flip one bit → both signatures fail)
========================================================================

Original evidence_hash:  68c99db50bd90251353e1cfab43004434076296b2d4c253278bad53e3a79edfa
Tampered evidence_hash:  68c990b50bd90251353e1cfab43004434076296b2d4c253278bad53e3a79edfa

Ed25519 verify:    valid=False   (expected: False — tamper detected)
ML-DSA-65 verify:  valid=False   (expected: False — tamper detected)

========================================================================
DEMO 4 — Performance Benchmark (100 iterations)
========================================================================

Operation                         Ed25519 (µs)     ML-DSA-65 (µs)
-----------------------------------------------------------------
Sign                                      21.8            35254.0
Verify                                    56.3             6723.8

Hybrid sign total (est):        35275.8 µs / receipt
Hybrid verify total (est):      6780.1 µs / receipt

========================================================================
Done. Hybrid receipts are cryptographically committed under both
algorithms. If Ed25519 breaks (quantum), ML-DSA-65 holds. If
ML-DSA-65 has a flaw, Ed25519 holds. Receipts verify offline.
========================================================================

