Appliance overview

The Operayde appliance is a sealed Debian box that runs AI on your network. It is the only component in the system that ever sees a prompt or a document.

Variants

Starter Micro

Silent desktop — 20–50 FTE — 7B/8B instruct + embedding

Starter

1U rack — 50–250 FTE — 13B instruct + embedding + vision

Pro

2U dual-GPU — 250+ FTE — 70B-class + full zoo + HA pair

On the appliance

• A hardened Debian image, TPM-sealed LUKS2.
• The Operayde Workspace Runtime — the Python service that orchestrates inference, retrieval, and ingestion.
• A local vector index and document store, both encrypted at rest.
• The gateway, running as a sidecar, terminating all in/out traffic.
• A Merkle audit writer that batches events into per-day trees.
• A fleet agent that reports heartbeats, receives signed policy, and applies updates.

What the appliance does not do

• It does not connect to the internet for model inference. Ever.
• It does not execute code the user pastes into a prompt — sandboxing is strict and only approved tool-calls run, and only in ephemeral containers.
• It does not accept unsigned updates, even from the fleet. The signing key is ours; the verification key is baked in at manufacture.

Physical access

The appliance ships with the BIOS password set, Secure Boot on, and TPM 2.0 measurements enforced. Opening the chassis does not give an attacker a shell or disk contents, because the disks are unlocked by a TPM-bound key measured against the sealed firmware.