Serial Alice turns every AI workload into a signed, anchored, hardware-attested record — verifiable by auditors, regulators and machines, without trusting us.
Seven connected layers. Energy enters at the silicon and exits as evidence anyone on Earth can verify — watch it flow.
A training run. An inference fleet. A fine-tune at 2am. The agent wraps your job with one command — no code changes, no SDK lock-in — and the measurement window opens the instant the workload does.
Power is sampled at the source: NVML from the GPU, RAPL from CPU and DRAM, PSU telemetry over Redfish, a machine fingerprint, and — inside confidential VMs — an Intel TDX quote bound to the samples. Raw readings are hashed at capture: samples_hash.
Independent sources are cross-checked against each other — GPU vs wall, fingerprint vs machine, TEE quote vs samples hash. Agreement earns a trust score; the posture is upgrade-only. hardware_attested must be earned, at 0.80 or above.
The measurement is canonicalised, hashed with SHA-256 and signed with Ed25519 + ML-DSA — classical and post-quantum, in under 10ms. Every certificate carries its claim_type and its caveats. It says exactly what it proves, and nothing more.
Certificates are leaves in a SHA-256 Merkle tree. Each one receives an inclusion proof; the whole batch compresses into a single 32-byte root. Tamper with any certificate, anywhere, and the root stops matching. Mathematics does the auditing.
Only the root touches the chain — 32 bytes that reveal nothing about your workloads, anchored on Polygon mainnet for fractions of a cent per certificate. From that block on, not even Serial Alice can rewrite history.
One GET request — or an offline bundle that verifies in ~30 lines of Python, with no API call and no account. Verification is free, forever. If Serial Alice disappeared tomorrow, every certificate would still verify. That is the point.
This is a real certificate, issued by this API, anchored on Polygon mainnet. Open it. Check the signature against /v2/issuers. We can't fake it — that's the product.
Per-training-run and per-inference certificates from NVML, attributed to the exact workload that burned the watts.
Meter and BMS readings become signed records — site-level truth for portfolios that report energy performance.
Line-level consumption attested at capture — evidence that survives a customs border or a supplier audit.
CSRD, EU AI Act, Scope 3 — primary evidence with cryptographic provenance, exported in the format auditors sample.
Attested consumption curves under PPAs and flexibility contracts — settle on proof, not on estimates.
Suppliers issue with their own keys; you re-derive Scope 3 from primary evidence instead of spreadsheets.
All tools, documentation and dashboards — no extra login required.
Also recognized by F6S as #2 in Energy Intelligence in Portugal.
Seven layers between a running GPU and a proof no one can deny. The first certificate takes minutes.