Cryptographic Warrant Canary

Integrity and independence declaration of the ITYLOS infrastructure.

STATUS: VALID Last update: May 27, 2026 | Recommended expiration: June 26, 2026
Signature generated offline via PGP key stored on a secure hardware device.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 KOPERATEUR WARRANT CANARY — itylos.com - --------------------------------------- Date: 2026-05-27 Signature: Koperateur Consulting (Automated GPG) Signer: [email protected] Master Key Fingerprint: 1324E85AA4DB6ED097FD70A8F115D6AD961118E7 STATEMENT: 1. We have NOT received any National Security Letter. 2. We have NOT been served with any secret court order. 3. We have NOT placed any backdoors in our hardware or software. 4. We have NOT received any gag order. 5. We have NOT been compelled to disclose any user data outside of public legal process. If this file is not updated within 40 days, please assume the service is compromised or seized. Next scheduled signature: 2026-06-01 Previous Block Hash (SHA-256): c5cc3b4658a1d922f20cc5e2726bdfc9fa79f92749bd3f72ed690a448b344ca7 -----BEGIN PGP SIGNATURE----- iIgEARYKADAWIQQTJOhapNtu0Jf9cKjxFdatlhEY5wUCahbhkBIcY2FuYXJ5QGl0 eWxvcy5jb20ACgkQ8RXWrZYRGOcUEgEA/SGrt15txf8WJhSzNW/2Fmks0XZSMtzO zsTl3Oaj+6gBAJClNFpOUEJn4g0i9oRpqLXkZW0MRYxIqVotxxb4vp8L =/xcY -----END PGP SIGNATURE-----
Download Canary (.txt) Download PGP Key
SHA-256 document fingerprint
104eb2299a61a584ba0642c28f02e6cb9d6a64a7a9c68badb683e7ca8f5415d9
PGP key fingerprint
B0F9 E2E0 014F FC93 17A9 2B10 5007 11F0 96D7 0E08

Monitored threats

The Canary publicly signals the absence of:

  • Secret injunction (Gag order)
  • De National Security Letter
  • Confidential court order
  • Known compromise of hardware or software infrastructure

Verification with GPG (CLI)

To verify the cryptographic signature of the document from your terminal:

# 1. Import the ITYLOS public key gpg --import itylos-pubkey.asc # 2. Verify the document gpg --verify warrant_canary.txt

Canary Limitations

A Warrant Canary is a powerful transparency mechanism.

It does not guarantee the absolute absence of surveillance, but allows publicly signaling the integrity of the service at a given point in time. True security relies on our client-side encryption model.

Public Archival & History

Previous versions of the Warrant Canary can be publicly archived to allow historical verification of service integrity.

  • May 27, 2026 (Current)
  • April 1, 2026
  • March 1, 2026

Independence and sovereignty

ITYLOS adopts a strict approach to cryptographic sovereignty.

Data is encrypted locally and decryption keys never pass through our servers. The Canary complements this model by providing a continuous integrity declaration.

Cryptographic transparency

ITYLOS publishes a set of transparency mechanisms for independent audit:

  • Public cryptographic registry (Append-only)
  • Verifiable destruction proofs (Ed25519)
  • This signed Warrant Canary

Frequently Asked Questions

Understanding the security monitoring mechanism

What is a Warrant Canary?
A Warrant Canary is a public declaration confirming that no secret request for access to data or infrastructure has been received by our technical team.
How to verify this Canary?
The embedded PGP signature allows mathematically verifying that the document originates from the ITYLOS infrastructure and has not been altered in any way.
What happens if the Canary disappears?
The absence, removal, or failure to renew the Canary beyond the recommended expiration date may indicate that an external legal constraint (gag order) is preventing our team from publishing it. You should then consider the infrastructure as potentially compromised.
Why use PGP?
PGP (Pretty Good Privacy) is a robust cryptographic standard that allows publicly signing a document and verifying its authenticity offline, without ever relying on a third-party server or centralized certificate authority.