Universal structural analysis: encryption validation, AI text detection (GPT-4o AUC=0.871), author fingerprinting (R@1=76.3%), model collapse prevention.
Project description
live-casi
Universal Structural Analysis Engine — encryption validation, AI text detection, author fingerprinting, and model collapse prevention.
One metric, four domains. CASI measures structural integrity of any data stream: bytes, text, weights, or network traffic.
Author: David Tom Foss
Install
pip install live-casi # Core (encryption + text detection)
pip install live-casi[academia] # + PDF analysis with HuggingFace tokenizers
pip install live-casi[network] # + pcap/network analysis
pip install live-casi[all] # Everything
Requirements: Python 3.8+, NumPy. Optional: transformers, scapy, dotcausal, pqcrypto.
What is CASI?
CASI (Causal Amplification Security Index) measures how much structure exists in data compared to random noise:
- CASI ~ 1.0 → No detectable structure → random/secure
- CASI > 2.0 → Structural patterns detected → anomalous
- CASI > 10.0 → Strong structural bias → broken/artificial
Works on: encrypted bytes, generated text, neural network weights, network traffic.
1. AI Text Detection
Is this text written by AI?
from live_casi.academia import analyze_text
text = open("essay.txt").read()
result = analyze_text(text, language='de') # or 'en'
print(result.verdict) # CLEAN / LOW_RISK / SUSPICIOUS / HIGH_RISK
print(result.ai_probability) # 0-99%
print(result.flags) # ['ChatGPT-Starters', 'Hedging', ...]
Analyze a PDF (dissertation, thesis, paper)
from live_casi.academia import analyze_pdf
result = analyze_pdf("dissertation.pdf", language='de')
print(f"{result.verdict}: {result.ai_probability}% AI probability")
print(f"Flags: {', '.join(result.flags)}")
# Detailed layer results
for layer, data in result.layers.items():
print(f" {layer}: {data}")
5-layer analysis:
- Token residuum — statistical distribution of token IDs mod K
- CASI profile — 26-strategy structural fingerprint
- ChatGPT markers — typical phrases, sentence starters, hedging patterns
- DeepL markers — translationese patterns, anglicisms
- Consistency — intra-document style breaks (mixed human+AI)
Validated: AUC=0.989 (GPT-4 German), AUC=0.871 (GPT-4o English), paraphrasing-robust (d=-2.17).
Detect specific AI tools
from live_casi.tool_signatures import detect_tools
result = detect_tools(text, language='de')
print(result['flags']) # ['ChatGPT-Phrases', 'DeepL-Markers']
print(result['chatgpt']) # {phrase_density: 1.2, starter_pct: 2.1, ...}
print(result['deepl']) # {marker_density: 0.8, ttr: 0.72, ...}
Raw token-residuum detection
from live_casi.text_detect import detect_ai, compute_reference
# Build reference from known human texts
ref = compute_reference(human_texts)
# Detect
result = detect_ai(suspicious_text, reference=ref)
print(f"Distance: {result['distance']}, Flagged: {result['flagged']}")
# Segment-level: pinpoint which passages are AI
from live_casi.text_detect import detect_segments
segs = detect_segments(text, reference=ref)
print(f"{segs['pct_flagged']}% of segments flagged")
print(f"Heatmap: [{segs['heatmap']}]")
2. Author Fingerprinting
Who wrote this text?
from live_casi.fingerprint import Fingerprinter
fp = Fingerprinter(vector_type='fusion')
fp.add_author("alice", alice_texts)
fp.add_author("bob", bob_texts)
matches = fp.identify(unknown_texts, top_k=5)
print(f"Most likely author: {matches[0][0]}")
# → "alice" with similarity score
Raw vectors for custom matching
from live_casi.fingerprint import byte_vector, full_vector
v1 = byte_vector(texts) # 256-dim byte frequency
v2 = full_vector(texts) # 456-dim (bytes + words + sentences + punctuation + bigrams)
Validated: R@1=76.3% Reddit re-identification, beats Lermen et al. (55.2%) at $0 cost.
3. Model Collapse Detection
Is my model collapsing?
from live_casi.collapse import measure_collapse_risk
risk = measure_collapse_risk(
generated_texts=model_outputs,
reference_texts=human_texts,
)
print(f"{risk['verdict']}: risk={risk['risk_score']}")
# → "EARLY_WARNING: risk=25"
Live training monitor
from live_casi.collapse import CollapseMonitor
monitor = CollapseMonitor(reference_texts=training_data)
for step in range(num_steps):
# ... training step ...
if step % 100 == 0:
outputs = model.generate(prompts)
alert = monitor.check(outputs, step=step)
if alert['should_stop']:
print(f"Collapse detected at step {step}!")
break
Track collapse across generations
from live_casi.collapse import detect_collapse
generations = [real_texts, gen1_texts, gen2_texts, gen3_texts]
result = detect_collapse(generations)
print(f"Collapse detected: {result['collapse_detected']}")
for g in result['generations']:
print(f" Gen {g['generation']}: CASI={g['casi']}")
Detects collapse ~150 steps before perplexity degrades. Validated on GPT-2 self-training experiments.
4. Neural Network Analysis
Analyze model weights
from live_casi.nn_analysis import model_casi_profile, layer_casi
# Full model profile
profile = model_casi_profile(model)
for layer_name, score in profile.items():
print(f"{layer_name}: CASI={score}")
# Single layer
score = layer_casi(model.fc1.weight)
Activation & gradient analysis
from live_casi.nn_analysis import activation_casi, gradient_casi
# During forward pass
activations = model.hidden_layer(x)
print(f"Activation CASI: {activation_casi(activations)}")
# During backward pass
loss.backward()
print(f"Gradient CASI: {gradient_casi(model.fc1.weight.grad)}")
Universal matrix analysis
from live_casi.nn_analysis import global_quantile_matrix
from live_casi import compute_casi_score
# Any 2D matrix → CASI score
matrix = np.random.randn(1000, 256)
q = global_quantile_matrix(matrix)
result = compute_casi_score(q)
print(f"CASI: {result['casi']}")
5. Encryption Validation
Is this data actually encrypted?
# Command line
cat encrypted.bin | live-casi
live-casi --file output.bin
live-casi --test # Self-test: 26 cipher scenarios
# CI/CD: exit 1 if CASI > 2.0
./encrypt | live-casi --quiet --exit-code 2.0
from live_casi import LiveCASI
import os
engine = LiveCASI(key_size=32, window_keys=10000)
engine.feed(os.urandom(320000))
engine.force_update()
print(f"CASI: {engine.current_casi}") # ~1.0 for random
Blind cipher identification
from live_casi import identify_cipher
result = identify_cipher(data)
print(f"Cipher: {result['cipher']}, Confidence: {result['confidence']}%")
Network/pcap analysis
pip install live-casi[network]
live-casi --pcap capture.pcap --problems-only
from live_casi import analyze_pcap
connections = analyze_pcap('capture.pcap')
for conn in connections:
print(f"{conn['src']} → {conn['dst']}: {conn['verdict']}")
Firmware/binary scanner
from live_casi import scan_binary
regions = scan_binary('firmware.bin')
for r in regions:
print(f"0x{r['offset']:x}: {r['label']} (CASI={r['casi']:.1f})")
Post-quantum cryptography
pip install live-casi[pqc]
from live_casi import pqc_analyze, pqc_compare
result = pqc_analyze('mlkem', 768) # ML-KEM-768 (Kyber)
report = pqc_compare() # All 9 PQC configs vs classical
Supported Ciphers
| Cipher | Frontier | Notes |
|---|---|---|
| ChaCha20 | R3 | Diagonal quarter-rounds prevent earlier detection |
| Salsa20 | R4 | Amplified 3-pass inference |
| AES-128 | R3 | SPN architecture |
| Speck 32/64 | R7 | Chosen-plaintext rotational differentials |
| Blowfish | R3 | Key-dependent S-boxes |
| 3DES | R2 | Fixed S-boxes |
| Camellia | R6 | FL function weakness at R7 |
| RC4 | drop=0 | KSA bias detection |
26 Detection Strategies
4 cryptanalytic + 14 deep + 8 implementation strategies covering all major attack families: avalanche, differential, linear, rotational, boomerang, integral, division property, algebraic degree, and more.
Architecture
live_casi/
├── core.py — Engine, 26 strategies, CLI
├── academia.py — AI text detection (5-layer PDF analysis)
├── fingerprint.py — Author re-identification
├── text_detect.py — Token-residuum patent method
├── tool_signatures.py — ChatGPT/DeepL/paraphraser detection
├── collapse.py — Model collapse detection & monitoring
├── nn_analysis.py — Weight/activation/gradient CASI
├── ciphers.py — 8 cipher implementations
├── identify.py — Blind cipher identification
├── scanner.py — Binary/firmware scanner
├── network.py — pcap/live network analysis
├── pqc.py — Post-quantum cryptography
├── probe.py — Channel probe generator/verifier
├── causal.py — .causal knowledge graph generation
├── benchmark.py — Frontier benchmarking
├── frontier.py — Detection boundary search
└── nist_compare.py — CASI vs NIST SP 800-22
License
MIT
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
live_casi-0.9.1.tar.gz
(145.5 kB
view details)
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
live_casi-0.9.1-py3-none-any.whl
(145.1 kB
view details)
File details
Details for the file live_casi-0.9.1.tar.gz.
File metadata
- Download URL: live_casi-0.9.1.tar.gz
- Upload date:
- Size: 145.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
0cb3dcb93430fd6e15967aa048dae1cd0886911c4c97f17d60aea2a98c0bf2e0
|
|
| MD5 |
4fde3011248ce40ed68a630392696a91
|
|
| BLAKE2b-256 |
1f9cf47f988882d129a2025134765a35473ea59a7acd2417037bf9f3b1b5797c
|
File details
Details for the file live_casi-0.9.1-py3-none-any.whl.
File metadata
- Download URL: live_casi-0.9.1-py3-none-any.whl
- Upload date:
- Size: 145.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
faab2197ed1207e815e101bcdd403e7f44583f589816fabe80ca635f63ea5a66
|
|
| MD5 |
61bff3efd9e6b50daf13fed516384f30
|
|
| BLAKE2b-256 |
f88013ec6629ee311e06dbf87ab1c6744858af1eda6864baa1b343b785590589
|
