Self-Hosted, Zero-Trust Video & Data Streaming SDK for High-Security Enterprise Environments
CODEX FABRIC is a self-hosted, end-to-end encrypted (E2EE) streaming infrastructure built for high-security enterprise environments across Healthcare, FinTech, Defense, and regulated Education.
Today’s real-time collaboration platforms force sensitive audio, video, and data through third-party cloud services. That creates unacceptable risk for hospitals, financial institutions, defense teams, and secure education providers, exposing protected health information, financial intelligence, classified communications, and private learning environments.
CODEX FABRIC gives enterprises full ownership of their streaming stack with a zero-trust architecture that keeps media, signaling, and metadata inside customer infrastructure.
- 100% Data Sovereignty - All traffic stays within your private environment
- True End-to-End Encryption - Keys are created and managed on client devices only
- Compliance-Ready by Design - Supports HIPAA, SOC 2, GDPR, FedRAMP, and other regulated standards
- Resilient Performance - Optimized for secure low-latency WebRTC in constrained or mission-critical networks
┌─────────────────┐ ┌─────────────────┐ ┌─────────────────┐
│ Client App │ │ Client App │ │ Client App │
│ (iOS/Android) │ │ (Web) │ │ (Desktop) │
│ │ │ │ │ │
│ ┌───────────┐ │ │ ┌───────────┐ │ │ ┌───────────┐ │
│ │ Flutter │ │ │ │ Flutter │ │ │ │ Flutter │ │
│ │ SDK │ │ │ │ SDK │ │ │ │ SDK │ │
│ └─────┬─────┘ │ │ └─────┬─────┘ │ │ └─────┬─────┘ │
└────────┼────────┘ └────────┼────────┘ └────────┼────────┘
│ │ │
│ E2EE │ E2EE │
│ │ │
▼ ▼ ▼
┌─────────────────────────────────────────────────────────────────┐
│ CODEX FABRIC │
│ Signaling Server (Go) │
│ │
│ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ │
│ │ WebRTC │ │ Auth │ │ Anomaly │ │
│ │ Signaling │ │ Layer │ │ Detection │ │
│ └─────────────┘ └─────────────┘ └─────────────┘ │
└─────────────────────────────────────────────────────────────────┘
codex-fabric/
├── backend/ # Go signaling server
│ ├── cmd/server/ # Application entry point
│ ├── internal/signaling/ # WebSocket signaling + E2EE relay
│ ├── internal/webrtc/ # WebRTC connection management
│ ├── internal/auth/ # JWT authentication
│ ├── pkg/crypto/ # Server-side crypto (AES-GCM, Ed25519, X25519, HKDF)
│ └── config.yaml # Server configuration
├── sdk/ # Flutter/Dart SDK (iOS, Android, Web, Desktop)
│ ├── lib/src/crypto/ # E2EE key management + handshake
│ ├── lib/src/signaling/ # WebSocket signaling client
│ ├── lib/src/webrtc/ # WebRTC peer connections
│ └── test/crypto/ # E2EE integration tests
├── sdk-js/ # JavaScript/TypeScript SDK (React, React Native, Node.js)
│ └── src/ # Crypto, signaling, and handshake modules
├── poc-app/ # White-labeled telemedicine demo app
├── tests/
│ ├── load/ # Python load testing suite
│ └── security/ # Security audit / penetration tests
├── docs/ # Documentation
│ ├── QUICKSTART.md # < 30 min integration guide
│ ├── API_REFERENCE.md # Flutter + JS + Go API docs
│ ├── DEPLOYMENT.md # Docker + air-gapped deployment
│ ├── E2EE_SECURITY_ARCHITECTURE.md
│ ├── SIGNALING_PROTOCOL.md
│ ├── BETA_TESTING_GUIDE.md
│ ├── GOLIVE_CHECKLIST.md
│ ├── SALES_OUTREACH_TEMPLATES.md
│ └── RELEASE_NOTES.md
└── .github/workflows/ci.yml # CI/CD pipeline
- Go 1.21+
- Flutter 3.x+
- Docker & Docker Compose
- OpenSSL 3.x+
cd backend
go mod download
go run cmd/server/main.goFlutter/Dart — Add to your pubspec.yaml:
dependencies:
codex_fabric:
git:
url: https://github.com/Ejoyment/codex-fabric.git
path: sdkimport 'package:codex_fabric/codex_fabric.dart';
final handshake = SecurityHandshake(keyManager: KeyManager());
await handshake.initialize();
await handshake.initiateKeyExchange('peer-id');JavaScript/TypeScript — npm install @codex-fabric/sdk:
import { KeyManager, SecurityHandshake, SignalingClient } from '@codex-fabric/sdk';
const km = new KeyManager();
const signaling = new SignalingClient({ url: 'wss://your-server.com', roomId: 'room-1' });
const handshake = new SecurityHandshake(km, signaling);
await handshake.initialize();
handshake.initiateKeyExchange('peer-id');See Quick Start Guide for the full 30-minute walkthrough.
CODEX FABRIC is engineered from an offensive security perspective with OSCP-grade security protocols:
- Zero-Trust Architecture - Never trust, always verify
- Client-Side Key Generation - Keys never leave the client device
- Perfect Forward Secrecy - Each session uses unique encryption keys
- Certificate Pinning - Prevents man-in-the-middle attacks
- Regular Penetration Testing - Baked into CI/CD pipeline
See SECURITY.md for detailed security documentation.
- Quick Start Guide — < 30 minute integration
- API Reference — Flutter + JS + Go
- E2EE Security Architecture
- Signaling Protocol
- Deployment Guide — Docker, air-gapped, systemd
- Security Audit — Penetration test results
- Beta Testing Guide
- Go-Live Checklist
- Sales Outreach Templates
- Release Notes
CODEX FABRIC is a commercial enterprise product. See PRICING.md for details.
| Tier | Annual Pricing | Features |
|---|---|---|
| Growth | $15,000/year | Up to 500 active streams, Public cloud deployment |
| Enterprise | $50,000-$120,000+/year | Unlimited streams, On-Premise/Air-gapped deployment |
Enterprise customers receive dedicated support:
- Growth Tier: Standard business hours support
- Enterprise Tier: 24/7 dedicated support with 15-minute SLA
Contact: security@codex.inc
CODEX FABRIC is designed to help enterprises meet:
- HIPAA - Healthcare data protection
- SOC 2 Type II - Security, availability, and confidentiality
- GDPR - EU data protection regulation
- FedRAMP - US government cloud security (Enterprise tier)
- PCI DSS - Payment card industry data security
CODEX FABRIC is a commercial product. External contributions are accepted under our CLA process. Please contact opensource@codex.inc for contribution guidelines.
Proprietary enterprise software. See LICENSE for terms.
v0.1.0 "First Handshake" — 12-week MVP complete. See Release Notes.
© 2024 CODEX INC ENTERPRISE. All rights reserved. CODEX FABRIC is a trademark of CODEX Inc.