@longarc/mdash 3.1.1 → 3.1.3

package/src/__tests__/security.test.ts

@@ -0,0 +1,786 @@
+/**
+ * mdash v3.0 - Security Test Suite
+ * 
+ * Adversarial testing for:
+ * - Adversarial input fuzzing
+ * - Concurrent access (TOCTOU verification)
+ * - Replay attack resistance
+ * - Cross-layer failure handling
+ * 
+ * @version 3.0.0
+ */
+
+import { describe, it, expect, beforeAll, beforeEach, afterAll } from 'vitest';
+
+import {
+  // Crypto
+  sha256,
+  sha256Object,
+  hmacSeal,
+  deriveKey,
+  generateTimestamp,
+  generateWarrantId,
+  sanitizeObject,
+  Hash,
+  Timestamp,
+  WarrantId,
+  
+  // Engines
+  CommitmentEngine,
+  WarrantEngine,
+  PhysicsEngine,
+  CheckpointEngine,
+  
+  // TEE
+  TEEAttestationEngine,
+  AttestationBridge,
+  
+  // Protocol
+  MdashProtocol,
+  createMdash,
+} from '../index';
+
+const TEST_SEAL_KEY = 'test-seal-key-security-suite-minimum-32-chars';
+
+// ============================================================================
+// ADVERSARIAL INPUT TESTING
+// ============================================================================
+
+describe('Adversarial Input Testing', () => {
+  let protocol: MdashProtocol;
+
+  beforeAll(async () => {
+    protocol = createMdash({ sealKey: TEST_SEAL_KEY });
+    await protocol.initialize();
+  });
+
+  describe('Prototype Pollution Resistance', () => {
+    it('should sanitize __proto__ in warrant constraints', async () => {
+      const maliciousConstraints = {
+        maxAmount: 1000,
+        __proto__: { isAdmin: true },
+      };
+      
+      // Sanitize before use
+      const sanitized = sanitizeObject(maliciousConstraints);
+      expect(Object.keys(sanitized)).not.toContain('__proto__');
+      expect((sanitized as any).maxAmount).toBe(1000);
+    });
+
+    it('should sanitize constructor pollution attempts', async () => {
+      const malicious = {
+        maxAmount: 1000,
+        constructor: { prototype: { polluted: true } },
+      };
+      
+      const sanitized = sanitizeObject(malicious);
+      expect(Object.keys(sanitized)).not.toContain('constructor');
+    });
+
+    it('should handle nested prototype pollution', async () => {
+      const malicious = {
+        nested: {
+          data: 'value',
+          __proto__: { polluted: true },
+        },
+      };
+      
+      const sanitized = sanitizeObject(malicious);
+      expect(Object.keys((sanitized as any).nested)).not.toContain('__proto__');
+    });
+
+    it('should sanitize action params before physics validation', async () => {
+      const warrant = await protocol.prestageWarrant({
+        agentId: 'proto-test-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 10000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      // Attempt to inject malicious params
+      const maliciousParams = {
+        amount: 500,
+        __proto__: { maxAmount: Infinity },
+      };
+
+      // Should not throw, should sanitize internally
+      const result = await protocol.execute({
+        agentId: 'proto-test-agent',
+        action: 'transfer',
+        actionParams: sanitizeObject(maliciousParams),
+        execute: async () => ({ success: true }),
+      });
+
+      expect(result.validation.valid).toBe(true);
+    });
+  });
+
+  describe('Boundary Value Fuzzing', () => {
+    it('should handle maxAmount at Number.MAX_SAFE_INTEGER', async () => {
+      const warrant = await protocol.prestageWarrant({
+        agentId: 'boundary-agent-1',
+        policyId: 'financial-transfer-v2',
+        tier: 'T3',
+        constraints: { maxAmount: Number.MAX_SAFE_INTEGER },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      expect(warrant.constraints.maxAmount).toBe(Number.MAX_SAFE_INTEGER);
+    });
+
+    it('should reject negative amounts (SA-2026-011)', async () => {
+      await protocol.prestageWarrant({
+        agentId: 'negative-amount-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      // SA-2026-011: Negative amounts are now explicitly rejected
+      await expect(
+        protocol.execute({
+          agentId: 'negative-amount-agent',
+          action: 'transfer',
+          actionParams: { amount: -100 },
+          execute: async () => ({ success: true }),
+        })
+      ).rejects.toThrow('Authorization denied');
+    });
+
+    it('should reject NaN in amount (SA-2026-011)', async () => {
+      await protocol.prestageWarrant({
+        agentId: 'nan-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      // SA-2026-011: NaN amounts are now explicitly rejected
+      await expect(
+        protocol.execute({
+          agentId: 'nan-agent',
+          action: 'transfer',
+          actionParams: { amount: NaN },
+          execute: async () => ({ success: true }),
+        })
+      ).rejects.toThrow('Authorization denied');
+    });
+
+    it('should reject -Infinity in amount (SA-2026-011)', async () => {
+      await protocol.prestageWarrant({
+        agentId: 'neg-infinity-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      // SA-2026-011: -Infinity < 0, caught by negative check
+      await expect(
+        protocol.execute({
+          agentId: 'neg-infinity-agent',
+          action: 'transfer',
+          actionParams: { amount: -Infinity },
+          execute: async () => ({ success: true }),
+        })
+      ).rejects.toThrow('Authorization denied');
+    });
+
+    it('should still allow valid amounts within limits (SA-2026-011 regression)', async () => {
+      await protocol.prestageWarrant({
+        agentId: 'valid-amount-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      const result = await protocol.execute({
+        agentId: 'valid-amount-agent',
+        action: 'transfer',
+        actionParams: { amount: 50 },
+        execute: async () => ({ success: true }),
+      });
+
+      expect(result.validation.valid).toBe(true);
+    });
+
+    it('should block Infinity in amount', async () => {
+      await protocol.prestageWarrant({
+        agentId: 'infinity-amount-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      // Infinity > 1000 is true, so should fail physics validation
+      await expect(
+        protocol.execute({
+          agentId: 'infinity-amount-agent',
+          action: 'transfer',
+          actionParams: { amount: Infinity },
+          execute: async () => ({ success: true }),
+        })
+      ).rejects.toThrow('Authorization denied');
+    });
+  });
+
+  describe('Timestamp Manipulation', () => {
+    it('should reject warrants with past expiry', async () => {
+      // Create warrant with very short duration
+      const warrant = await protocol.prestageWarrant({
+        agentId: 'timestamp-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 50, // 50ms - will expire quickly after activation
+        issuedBy: 'test@example.com',
+      });
+
+      // Activate immediately
+      await protocol.warrant.activate(warrant.id);
+      
+      // Wait for expiry
+      await new Promise(resolve => setTimeout(resolve, 150));
+
+      // Execute should fail - warrant expired
+      // Note: Current implementation may need warrant expiry check enhancement
+      try {
+        await protocol.execute({
+          agentId: 'timestamp-agent',
+          action: 'transfer',
+          actionParams: { amount: 100 },
+          execute: async () => ({ success: true }),
+        });
+        // If we get here without throwing, the expiry check isn't working
+        // This documents current behavior that may need hardening
+      } catch (e: any) {
+        expect(e.message).toBe('Authorization denied');
+      }
+    });
+
+    it('should handle timestamp at Unix epoch', async () => {
+      const epochTimestamp = new Date(0).toISOString() as Timestamp;
+      
+      // Hashing should work regardless of timestamp value
+      const hash = await sha256Object({ timestamp: epochTimestamp });
+      expect(hash).toBeTruthy();
+    });
+
+    it('should handle timestamp far in future', async () => {
+      const futureTimestamp = new Date('2100-01-01T00:00:00Z').toISOString() as Timestamp;
+      
+      const hash = await sha256Object({ timestamp: futureTimestamp });
+      expect(hash).toBeTruthy();
+    });
+  });
+
+  describe('String Injection Attempts', () => {
+    it('should handle SQL-like injection in agent_id', async () => {
+      const maliciousAgentId = "agent'; DROP TABLE warrants; --";
+      
+      const warrant = await protocol.prestageWarrant({
+        agentId: maliciousAgentId,
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      // Should store literally, not interpret
+      expect(warrant.agent_id).toBe(maliciousAgentId);
+    });
+
+    it('should handle null bytes in strings', async () => {
+      const nullByteAgentId = "agent\x00injected";
+      
+      const warrant = await protocol.prestageWarrant({
+        agentId: nullByteAgentId,
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+
+      expect(warrant.agent_id).toBe(nullByteAgentId);
+    });
+
+    it('should handle unicode normalization attacks', async () => {
+      // Two visually identical strings with different unicode
+      const agentId1 = "café"; // Normal
+      const agentId2 = "café"; // Using combining character (if different)
+      
+      const hash1 = await sha256(agentId1);
+      const hash2 = await sha256(agentId2);
+      
+      // Document current behavior - may or may not be equal depending on normalization
+      // This test documents the behavior for awareness
+      expect(typeof hash1).toBe('string');
+      expect(typeof hash2).toBe('string');
+    });
+  });
+});
+
+// ============================================================================
+// CONCURRENT ACCESS TESTING (TOCTOU Verification)
+// ============================================================================
+
+describe('Concurrent Access Testing', () => {
+  let protocol: MdashProtocol;
+
+  beforeEach(async () => {
+    protocol = createMdash({ sealKey: TEST_SEAL_KEY });
+    await protocol.initialize();
+  });
+
+  it('should handle concurrent warrant activations', async () => {
+    // Create multiple speculative warrants
+    const warrants = await Promise.all([
+      protocol.prestageWarrant({
+        agentId: 'concurrent-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      }),
+      protocol.prestageWarrant({
+        agentId: 'concurrent-agent',
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 2000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      }),
+    ]);
+
+    // Both should exist
+    expect(warrants.length).toBe(2);
+    expect(warrants[0].id).not.toBe(warrants[1].id);
+  });
+
+  it('should handle revocation during execute flow', async () => {
+    await protocol.prestageWarrant({
+      agentId: 'revoke-race-agent',
+      policyId: 'financial-transfer-v2',
+      tier: 'T2',
+      constraints: { maxAmount: 1000 },
+      durationMs: 60000,
+      issuedBy: 'test@example.com',
+    });
+
+    // Start execute but simulate revocation during execution
+    let executeCalled = false;
+    
+    const executePromise = protocol.execute({
+      agentId: 'revoke-race-agent',
+      action: 'transfer',
+      actionParams: { amount: 100 },
+      execute: async () => {
+        executeCalled = true;
+        // Simulate slow operation
+        await new Promise(resolve => setTimeout(resolve, 10));
+        return { success: true };
+      },
+    });
+
+    // Execute should complete (revocation happens after TOCTOU check in current impl)
+    const result = await executePromise;
+    expect(executeCalled).toBe(true);
+    expect(result.result.success).toBe(true);
+  });
+
+  it('should serialize access under high concurrency', async () => {
+    // Pre-stage multiple warrants
+    for (let i = 0; i < 10; i++) {
+      await protocol.prestageWarrant({
+        agentId: `high-concurrency-agent-${i}`,
+        policyId: 'financial-transfer-v2',
+        tier: 'T2',
+        constraints: { maxAmount: 1000 },
+        durationMs: 60000,
+        issuedBy: 'test@example.com',
+      });
+    }
+
+    // Execute all concurrently
+    const results = await Promise.all(
+      Array.from({ length: 10 }, (_, i) =>
+        protocol.execute({
+          agentId: `high-concurrency-agent-${i}`,
+          action: 'transfer',
+          actionParams: { amount: 100 },
+          execute: async () => ({ success: true, index: i }),
+        })
+      )
+    );
+
+    // All should succeed
+    expect(results.length).toBe(10);
+    results.forEach((r, i) => {
+      expect(r.result.success).toBe(true);
+      expect(r.result.index).toBe(i);
+    });
+  });
+
+  it('should handle warrant rate limiting under burst', async () => {
+    const createPromises: Promise<any>[] = [];
+    
+    // Attempt to create 150 warrants rapidly (limit is 100/min)
+    for (let i = 0; i < 150; i++) {
+      createPromises.push(
+        protocol.prestageWarrant({
+          agentId: `burst-agent-${i}`,
+          policyId: 'financial-transfer-v2',
+          tier: 'T2',
+          constraints: { maxAmount: 1000 },
+          durationMs: 60000,
+          issuedBy: 'burst-issuer@example.com', // Same issuer
+        }).catch(e => e)
+      );
+    }
+
+    const results = await Promise.all(createPromises);
+    
+    // Some should succeed, some should fail with rate limit
+    const successes = results.filter(r => r.id !== undefined);
+    const failures = results.filter(r => r instanceof Error);
+    
+    expect(successes.length).toBe(100); // Rate limit
+    expect(failures.length).toBe(50);
+    expect(failures[0].message).toContain('rate limit');
+  });
+});
+
+// ============================================================================
+// REPLAY ATTACK TESTING
+// ============================================================================
+
+describe('Replay Attack Resistance', () => {
+  let protocol: MdashProtocol;
+  let commitmentEngine: CommitmentEngine;
+  let teeEngine: TEEAttestationEngine;
+
+  beforeAll(async () => {
+    protocol = createMdash({ sealKey: TEST_SEAL_KEY });
+    await protocol.initialize();
+    
+    commitmentEngine = new CommitmentEngine();
+    await commitmentEngine.initialize(TEST_SEAL_KEY);
+    
+    teeEngine = new TEEAttestationEngine(commitmentEngine);
+    await teeEngine.initialize(TEST_SEAL_KEY);
+  });
+
+  it('should detect expired attestation documents', async () => {
+    const attestation = await teeEngine.attest(
+      { action: 'test', timestamp: Date.now() },
+      'replay-test-001'
+    );
+
+    // Manually expire
+    (attestation as any).expires_at = new Date(Date.now() - 1000).toISOString();
+
+    const result = await teeEngine.verify(attestation);
+    
+    expect(result.valid).toBe(false);
+    expect(result.errors).toContain('Attestation document expired');
+  });
+
+  it('should detect tampered attestation seal', async () => {
+    const attestation = await teeEngine.attest(
+      { action: 'test', timestamp: Date.now() },
+      'tamper-test-001'
+    );
+
+    // Tamper with the attested data hash
+    (attestation as any).attested_data = 'tampered-hash-value';
+
+    const result = await teeEngine.verify(attestation);
+    
+    expect(result.valid).toBe(false);
+    expect(result.errors).toContain('Invalid document seal');
+  });
+
+  it('should reject attestation with missing L1 commitment', async () => {
+    const attestation = await teeEngine.attest(
+      { action: 'test', timestamp: Date.now() },
+      'orphan-attestation-001'
+    );
+
+    // Create a new TEE engine without the commitment
+    const freshCommitmentEngine = new CommitmentEngine();
+    await freshCommitmentEngine.initialize(TEST_SEAL_KEY);
+    
+    const freshTeeEngine = new TEEAttestationEngine(freshCommitmentEngine);
+    await freshTeeEngine.initialize(TEST_SEAL_KEY);
+
+    // Verify with fresh engine that doesn't have the L1 commitment
+    const result = await freshTeeEngine.verify(attestation);
+    
+    expect(result.valid).toBe(false);
+    expect(result.errors).toContain('L1 commitment not found');
+  });
+
+  it('should generate unique IDs for each attestation', async () => {
+    const attestations = await Promise.all([
+      teeEngine.attest({ action: 'test1' }, 'unique-test-001'),
+      teeEngine.attest({ action: 'test2' }, 'unique-test-002'),
+      teeEngine.attest({ action: 'test3' }, 'unique-test-003'),
+    ]);
+
+    const ids = attestations.map(a => a.id);
+    const uniqueIds = new Set(ids);
+    
+    expect(uniqueIds.size).toBe(3);
+  });
+
+  it('should include timestamp in attestation to prevent replay', async () => {
+    const before = Date.now();
+    
+    const attestation = await teeEngine.attest(
+      { action: 'timestamp-test' },
+      'timestamp-test-001'
+    );
+    
+    const after = Date.now();
+    const attestationTime = new Date(attestation.timestamp).getTime();
+    
+    expect(attestationTime).toBeGreaterThanOrEqual(before);
+    expect(attestationTime).toBeLessThanOrEqual(after);
+  });
+});
+
+// ============================================================================
+// CROSS-LAYER FAILURE TESTING
+// ============================================================================
+
+describe('Cross-Layer Failure Handling', () => {
+  let protocol: MdashProtocol;
+  let commitmentEngine: CommitmentEngine;
+  let teeEngine: TEEAttestationEngine;
+  let bridge: AttestationBridge;
+
+  beforeAll(async () => {
+    protocol = createMdash({ sealKey: TEST_SEAL_KEY });
+    await protocol.initialize();
+    
+    commitmentEngine = new CommitmentEngine();
+    await commitmentEngine.initialize(TEST_SEAL_KEY);
+    
+    teeEngine = new TEEAttestationEngine(commitmentEngine);
+    await teeEngine.initialize(TEST_SEAL_KEY);
+    
+    bridge = new AttestationBridge(teeEngine, commitmentEngine);
+  });
+
+  it('should detect cross-layer commitment reference', async () => {
+    // Create attestation through normal flow
+    const { commitment, attestation } = await bridge.commitAndAttest(
+      { action: 'cross-layer-test' },
+      'cross-layer-001'
+    );
+
+    // Verify with same engine - should pass
+    const result = await bridge.verifyBoth(commitment, attestation);
+    
+    expect(result.l1Valid).toBe(true);
+    expect(result.l2Valid).toBe(true);
+    expect(result.crossLayerValid).toBe(true);
+  });
+
+  it('should detect cross-layer reference mismatch', async () => {
+    // Create two separate commit-and-attest operations
+    const { commitment: commitment1 } = await bridge.commitAndAttest(
+      { action: 'action-1' },
+      'mismatch-test-001'
+    );
+    
+    const { attestation: attestation2 } = await bridge.commitAndAttest(
+      { action: 'action-2' },
+      'mismatch-test-002'
+    );
+
+    // Try to verify mismatched pair
+    const result = await bridge.verifyBoth(commitment1, attestation2);
+    
+    expect(result.crossLayerValid).toBe(false);
+    expect(result.errors).toContain('Cross-layer reference mismatch');
+  });
+
+  it('should propagate physics validation failure to checkpoint', async () => {
+    await protocol.prestageWarrant({
+      agentId: 'physics-fail-agent',
+      policyId: 'financial-transfer-v2',
+      tier: 'T2',
+      constraints: { maxAmount: 100 },
+      durationMs: 60000,
+      issuedBy: 'test@example.com',
+    });
+
+    // Attempt action that exceeds constraints
+    await expect(
+      protocol.execute({
+        agentId: 'physics-fail-agent',
+        action: 'transfer',
+        actionParams: { amount: 1000 }, // Exceeds maxAmount
+        execute: async () => ({ success: true }),
+      })
+    ).rejects.toThrow('Authorization denied');
+
+    // Check that error was logged (would need checkpoint inspection in real impl)
+  });
+
+  it('should handle execute function failure gracefully', async () => {
+    await protocol.prestageWarrant({
+      agentId: 'execute-fail-agent',
+      policyId: 'financial-transfer-v2',
+      tier: 'T2',
+      constraints: { maxAmount: 10000 },
+      durationMs: 60000,
+      issuedBy: 'test@example.com',
+    });
+
+    const executeError = new Error('External service unavailable');
+
+    await expect(
+      protocol.execute({
+        agentId: 'execute-fail-agent',
+        action: 'transfer',
+        actionParams: { amount: 100 },
+        execute: async () => {
+          throw executeError;
+        },
+      })
+    ).rejects.toThrow('External service unavailable');
+  });
+
+  it('should maintain audit trail even on failure', async () => {
+    await protocol.prestageWarrant({
+      agentId: 'audit-trail-agent',
+      policyId: 'financial-transfer-v2',
+      tier: 'T2',
+      constraints: { maxAmount: 100 },
+      durationMs: 60000,
+      issuedBy: 'test@example.com',
+    });
+
+    const checkpointStatsBefore = protocol.checkpoint.getStats();
+
+    try {
+      await protocol.execute({
+        agentId: 'audit-trail-agent',
+        action: 'transfer',
+        actionParams: { amount: 1000 }, // Will fail physics
+        execute: async () => ({ success: true }),
+      });
+    } catch {
+      // Expected to fail
+    }
+
+    const checkpointStatsAfter = protocol.checkpoint.getStats();
+    
+    // Total checkpoint count should have increased (error checkpoint created)
+    expect(checkpointStatsAfter.total).toBeGreaterThanOrEqual(
+      checkpointStatsBefore.total
+    );
+  });
+});
+
+// ============================================================================
+// ADDITIONAL SECURITY EDGE CASES
+// ============================================================================
+
+describe('Security Edge Cases', () => {
+  let protocol: MdashProtocol;
+
+  beforeAll(async () => {
+    protocol = createMdash({ sealKey: TEST_SEAL_KEY });
+    await protocol.initialize();
+  });
+
+  it('should reject empty seal key', async () => {
+    // P5 SECURITY: Minimum key length enforced
+    await expect(async () => {
+      const badProtocol = createMdash({ sealKey: '' });
+      await badProtocol.initialize();
+    }).rejects.toThrow('Seal key must be at least 32 characters');
+  });
+  
+  it('should reject short seal key', async () => {
+    await expect(async () => {
+      const badProtocol = createMdash({ sealKey: 'short-key' });
+      await badProtocol.initialize();
+    }).rejects.toThrow('Seal key must be at least 32 characters');
+  });
+
+  it('should handle very long agent IDs', async () => {
+    const longAgentId = 'a'.repeat(10000);
+    
+    const warrant = await protocol.prestageWarrant({
+      agentId: longAgentId,
+      policyId: 'financial-transfer-v2',
+      tier: 'T2',
+      constraints: { maxAmount: 1000 },
+      durationMs: 60000,
+      issuedBy: 'test@example.com',
+    });
+
+    expect(warrant.agent_id).toBe(longAgentId);
+  });
+
+  it('should handle special characters in policy ID', async () => {
+    // Note: This will fail because policy doesn't exist, but should not crash
+    await protocol.prestageWarrant({
+      agentId: 'special-policy-agent',
+      policyId: '../../../etc/passwd',
+      tier: 'T2',
+      constraints: { maxAmount: 1000 },
+      durationMs: 60000,
+      issuedBy: 'test@example.com',
+    });
+
+    // Physics validation will fail due to unknown policy
+    await expect(
+      protocol.execute({
+        agentId: 'special-policy-agent',
+        action: 'transfer',
+        actionParams: { amount: 100 },
+        execute: async () => ({ success: true }),
+      })
+    ).rejects.toThrow();
+  });
+
+  it('should use constant-time comparison for seals', async () => {
+    const key = await deriveKey(TEST_SEAL_KEY);
+    const data = { test: 'constant-time' };
+    const seal = await hmacSeal(data, key);
+    
+    // This test documents that we use Web Crypto's verify,
+    // which is constant-time by implementation
+    const start1 = performance.now();
+    await hmacSeal(data, key); // Matching seal
+    const time1 = performance.now() - start1;
+    
+    const start2 = performance.now();
+    await hmacSeal({ test: 'different' }, key); // Different seal
+    const time2 = performance.now() - start2;
+    
+    // Times should be similar (within 10x, accounting for noise)
+    // This is a weak test but documents intent
+    expect(Math.abs(time1 - time2)).toBeLessThan(Math.max(time1, time2) * 10);
+  });
+});