The Security Tab provides comprehensive security monitoring including cryptographic identity verification, threat detection, access control management, and security posture assessment for the mindX platform.
Status: ✅ DEPLOYED & OPERATIONAL Features: Identity verification, threat detection, access control, compliance monitoring Framework: Enterprise security with cryptographic identity management
{
"agent_id": "mastermind_prime",
"public_key": "0xb9B46126551652eb58598F1285aC5E86E5CcfB43",
"key_type": "ed25519",
"created_at": "2025-09-14T10:30:00Z",
"last_verified": "2026-01-23T14:30:00Z",
"status": "VERIFIED",
"blockchain_registered": true
}
1. Guardian initiates challenge
├── Generate random nonce
└── Send to target agent
↓
Agent signs challenge
├── Sign nonce with private key
└── Return signature
↓
Guardian verifies signature
├── Verify against public key
└── Update verification status
↓
Result: VERIFIED or FAILED
🔴 CRITICAL THREATS
├── Unauthorized Access Attempts
├── Identity Spoofing
├── Data Exfiltration Attempts
└── System Compromise Indicators
🟡 WARNING THREATS
├── Unusual Access Patterns
├── Permission Escalation Requests
├── Anomalous Network Traffic
└── Configuration Changes
🟢 INFORMATIONAL
├── Failed Authentication Attempts
├── Resource Access Outside Hours
├── New Device/Location Access
└── Policy Compliance Warnings
# Behavioral anomaly detection
def detect_anomaly(agent_activity: AgentActivity) -> ThreatLevel:
# Compare against baseline behavior
baseline = get_agent_baseline(agent_activity.agent_id)
deviation_score = calculate_deviation(
current=agent_activity,
baseline=baseline
)
if deviation_score > 0.9:
return ThreatLevel.CRITICAL
elif deviation_score > 0.7:
return ThreatLevel.WARNING
elif deviation_score > 0.5:
return ThreatLevel.INFORMATIONAL
else:
return ThreatLevel.NORMAL
Agent | Memory | Tools | Network | System
─────────────────────────────────────────────────────────
Mastermind | R/W | ALL | R/W | R
Coordinator | R/W | ALL | R/W | R
Guardian | R | SEC | R | R/W
SimpleCoder | R/W | CODE | R | R
Memory Agent | R/W | MEM | - | R
Tool | Required Permission | Security Level
───────────────────────────────────────────────────────────
shell_command | SYSTEM_EXEC | HIGH
file_modify | FILE_WRITE | MEDIUM
web_search | NETWORK_READ | LOW
memory_read | MEMORY_READ | LOW
registry_modify | ADMIN | CRITICAL
{
"timestamp": "2026-01-23T14:35:22Z",
"agent_id": "simplecoder_agent",
"resource": "/src/main.py",
"action": "FILE_WRITE",
"result": "ALLOWED",
"authorization": "ROLE_BASED",
"context": {
"task_id": "task_001",
"approved_by": "mastermind"
}
}
Security Score Calculation:
├── Identity Verification: 95/100 (weight: 0.25)
├── Access Control: 92/100 (weight: 0.20)
├── Threat Detection: 88/100 (weight: 0.25)
├── Compliance: 97/100 (weight: 0.15)
└── Incident Response: 90/100 (weight: 0.15)
─────────────────────────────────────────────────────
OVERALL SECURITY SCORE: 92.35/100
Security KPIs (Last 30 Days):
├── Mean Time to Detect (MTTD): < 5 minutes
├── Mean Time to Respond (MTTR): < 15 minutes
├── False Positive Rate: 2.3%
├── Identity Verification Rate: 99.2%
├── Policy Compliance Rate: 97.8%
└── Successful Attack Prevention: 100%
class SecurityTab extends TabComponent {
constructor(config) {
super({
id: 'security',
label: 'Security',
refreshInterval: 5000, // 5-second updates for real-time monitoring
autoRefresh: true
});
}
async loadSecurityMetrics() {
const [identity, threats, access] = await Promise.all([
this.apiRequest('/security/identity'),
this.apiRequest('/security/threats'),
this.apiRequest('/security/access')
]);
this.renderIdentityVerification(identity);
this.renderThreatDetection(threats);
this.updateAccessControl(access);
}
}
GET /security/overview
Response: {
"security_score": 92.35,
"active_threats": 0,
"identity_verified_percentage": 99.2,
"compliance_status": "compliant",
"last_scan": "2026-01-23T14:30:00Z"
}
GET /security/identity
Response: {
"verified_agents": 9,
"pending_verification": 2,
"total_agents": 11,
"recent_challenges": [
{
"agent_id": "mastermind_prime",
"timestamp": "2026-01-23T14:30:00Z",
"result": "PASSED"
}
]
}
GET /security/threats
Response: {
"active_threats": [],
"recent_alerts": [
{
"threat_id": "threat_001",
"severity": "LOW",
"type": "failed_auth",
"timestamp": "2026-01-23T14:25:00Z",
"resolved": true
}
],
"threat_trend": "decreasing"
}
POST /security/verify
Request: {
"agent_id": "new_agent",
"challenge_type": "signature"
}
Response: {
"challenge_id": "challenge_001",
"nonce": "abc123...",
"expires_at": "2026-01-23T14:35:00Z"
}
1. DETECTION
├── Automated monitoring detects anomaly
└── Alert generated with severity classification
↓
ASSESSMENT
├── Guardian Agent evaluates threat
└── Determine response level required
↓
CONTAINMENT
├── Isolate affected components
└── Preserve evidence for analysis
↓
ERADICATION
├── Remove threat vector
└── Patch vulnerability if applicable
↓
RECOVERY
├── Restore normal operations
└── Verify system integrity
↓
POST-INCIDENT
├── Document lessons learned
└── Update security policies
Severity | Response Time | Responder | Notification
────────────────────────────────────────────────────────────────
CRITICAL | < 1 minute | Guardian + Human | Immediate
HIGH | < 5 minutes | Guardian | Alert
MEDIUM | < 15 minutes | Automated | Log
LOW | < 1 hour | Automated | Log
The Security Tab provides comprehensive visibility into the mindX security posture, enabling proactive threat management and robust identity verification for autonomous AI operations.