SealTrustSealTrust
Back to Home

About SealTrust

Cryptographic Verification and Encrypted Storage for AI Training Datasets

Trust. Encrypt. Verify.

Our Mission

AI teams need secure storage for training datasets. Unauthorized access, data tampering, and lack of access control put valuable data at risk.

SealTrust encrypts your datasets with Seal before storing them on Walrus. Only wallet addresses you authorize can decrypt and download the data. The Nautilus TEE verifies metadata with hardware-backed signatures, and Sui blockchain records an immutable proof of integrity.

The result: encrypted storage with on-chain access control. Your data stays private and tamper-proof, and you decide who gets access.

Technical Architecture

Nautilus TEE Verification

  • • AWS Nitro Enclave isolation
  • • Hardware-backed hash computation
  • • Cryptographic signature generation
  • • Attestation document validation

Sui Blockchain Registry

  • • Immutable timestamp records
  • • On-chain signature verification
  • • Complete audit trail
  • • Sub-second finality

Walrus Decentralized Storage

  • • Censorship-resistant metadata
  • • Distributed blob storage
  • • Efficient erasure coding
  • • No single point of failure

Seal Encryption

  • • Encrypt before storage
  • • On-chain allowlist access control
  • • Only authorized wallets decrypt
  • • Session keys for UX

How It Works

1

Upload & Hash

Upload your dataset. SHA-256 hash is computed on the original file before encryption.

2

Encrypt with Seal

Dataset is encrypted using Seal. An allowlist is created on-chain to control who can decrypt.

3

Store on Walrus

Encrypted blob is uploaded to Walrus decentralized storage. No single point of failure.

4

TEE Verification

Nautilus (AWS Nitro Enclave) verifies metadata and signs it with hardware-backed keys.

5

Record on Sui

DatasetNFT minted on Sui with hash, blob ID, and access control info. Immutable proof of integrity.

6

Authorized Users Decrypt

Users on your allowlist can download and decrypt with Session Keys. Others cannot access.

Use Cases

Secure Dataset Sharing

Share training data with specific teams or partners. Add their wallets to your allowlist. They can decrypt. Others cannot.

Integrity Verification

Prove your dataset has not been tampered with. Hash is computed before encryption and recorded on-chain.

Access Control

Manage who can download your datasets. Add or remove wallets from allowlist at any time.

Audit Trail

Every registration is recorded on Sui blockchain. Immutable proof of what data existed and when.

Security Model

Encryption: All datasets are encrypted with Seal before upload. Only wallets on your allowlist can decrypt and download the original data.

Access Control: You create an on-chain allowlist during registration. Add or remove wallets anytime. Decryption keys are only released to authorized addresses.

Integrity: Hash computed on original file before encryption. TEE signs metadata with hardware-backed keys. On-chain record is immutable.

Decentralization: Encrypted data stored on Walrus (no single point of failure). Records on Sui blockchain. No trust in SealTrust operators.

Platform Stats

Seal
Encrypted Storage
Walrus
Decentralized
TEE
Hardware Verified
Sui
On-chain Records