Developer Portal
Welcome to the VajraShield API reference. Use our REST API to seamlessly integrate Post-Quantum Cryptography (PQC), hardware attestation, and AI active defense into your enterprise applications.
All API endpoints are authenticated using a Zero-Trust session model. Responses are JSON-encoded and follow predictable RESTful standards.
Quickstart Downloads
ZERO-TRUST ARCHITECTURE
Deployment Architecture
VajraShield binds encryption to the physical Silicon DNA of the server executing the cryptographic core. To cater to different enterprise needs, we support two deployment models:
Model A: On-Premise / Sidecar
Recommended for Defense and Critical Infrastructure.
You deploy the VajraShield engine locally on your own hardware. Your application points to http://localhost:8080.
Model B: Cloud API Gateway
Recommended for rapid integration.
Connect over the internet to a centralized VAJRA API gateway (e.g., https://api.vajrashield.com).
SILICON DNA ANCHORING
Client Login
POST /api/auth/loginAuthenticate as a client using your 256-bit Sovereign Mnemonic. Returns a secure HTTP-only session cookie (vajra_session).
| Parameter | Type | Description |
|---|---|---|
mnemonic |
string | Your 24-word or 256-bit hex seed. |
Admin Login
POST /api/admin/loginAuthenticate as an administrator using the environment Admin Key. This is required for fetching metrics and generating attestations.
| Parameter | Type | Description |
|---|---|---|
admin_key |
string | The Master Admin Key (set via ENV). |
Generate Hybrid Key
GET /api/pqc/generate_hybridGenerates a new FIPS 203 compliant ML-KEM-768 keypair combined with a classical X25519 keypair for hybrid zero-downtime integration.
PQC Encrypt
POST /api/pqc/encryptEncrypt sensitive plaintext into a hybrid Post-Quantum envelope using the recipient's ML-KEM public key.
| Parameter | Type | Description |
|---|---|---|
data |
string | Sensitive plaintext to encrypt. |
public_key |
string | Recipient's ML-KEM-768 public key. |
x25519_pk |
string | Optional. Classical X25519 public key. |
PQC Decrypt
POST /api/pqc/decryptDecrypt a VAJRA envelope securely. The operation happens strictly inside the Rust Sovereign boundary.
| Parameter | Type | Description |
|---|---|---|
envelope |
string | The VAJRA ciphertext envelope. |
private_key |
string | Your ML-KEM-768 private key. |
x25519_sk |
string | Optional. Classical X25519 private key. |
TEE Attestation
GET /api/pqc/attestationReturns cryptographic proof that the VAJRA server is running within a secured Hardware Enclave (TPM 2.0 / Silicon DNA).
System Metrics
GET /api/admin/system/metricsRetrieve real-time telemetry from the Autonomous AI SOC and core Rust engine. Used for health dashboards.
Core Neutralization
POST /api/pqc/neutralizeFor Military or Sovereign applications, VAJRA features a Neutralize endpoint (God Mode).