Overview
HX-Provenance is a private server appliance for verifiable provenance, artifact recall, and evidence integrity across AI, records, compliance, cyber, legal, and critical decision workflows. It helps organizations prove what happened by issuing cryptographically signed provenance receipts and self-describing evidence bundles for registered artifacts such as AI outputs, retrieval results, compute outputs, records, compliance evidence, workflow events, and decision-support artifacts.
The appliance runs inside the customer's AWS environment, keeping the operating boundary under customer control. Customers can integrate HX-Provenance with internal applications, AI/ML pipelines, CI/CD systems, compliance tooling, records systems, and evidence workflows through API-based receipt issuance, verification, and evidence bundle export.
HX-Provenance supports online verification through the appliance and offline verification using exported verification material. This gives regulated, enterprise, and public-sector teams a practical trust layer for AI governance, chain of custody, audit trails, cyber incident documentation, legal evidence workflows, model output verification, data integrity, and audit-ready automation.
Highlights
- R@100% artifact recall for verifiable AI, records, compliance evidence, and critical decision workflows.
- Issue signed receipts and export evidence bundles for audit trails, chain of custody, and artifact integrity.
- Verify receipts online or offline inside the customer controlled AWS environment.
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
Pricing
Free trial
Dimension | Cost/hour |
|---|---|
m7i.large Recommended | $11.996 |
m7i.2xlarge | $11.996 |
m7i.xlarge | $11.996 |
Vendor refund policy
A free trial is available to evaluate HX-Provenance before you purchase. Hourly usage is billed as incurred and is non-refundable except for verified billing errors. Annual prepaid subscriptions are fully refundable within 30 days of purchase and non-refundable thereafter. To request a refund or report a billing error, email support@holonomx.com with your AWS account ID and order details. Approved refunds are processed through AWS Marketplace.
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Initial GA release of HX-Provenance. Post-quantum (ML-DSA-65 / FIPS 204) provenance-receipt appliance: issue cryptographically signed receipts, verify online or fully offline, and export self-contained signed evidence bundles. Hardened Ubuntu 24.04 LTS: nginx TLS on :443, IMDSv2 required, root SSH and password auth disabled, CIS sysctl, auditd. Per-instance ML-DSA-65 signing keys are generated on first boot and never leave the instance; no call-home. API keys are minted at first boot and shown once on the serial console.
Additional details
Usage instructions
After launch: 1) Allow TCP 443 (HTTPS API) from your clients and TCP 22 from your admin range in the security group. 2) Retrieve the per-instance admin API key from the EC2 serial console / system log - it's shown once at first boot and never written to disk logs; store it in your secret manager. 3) Health: curl -fsS https://<ip>/health (returns ML-DSA-65). 4) Issue: POST https://<ip>/v1/provenance/exact with Authorization: Bearer <key>. 5) Verify (no auth): POST https://<ip>/v1/provenance/verify. 6) Export a signed evidence bundle: POST https://<ip>/v1/provenance/evidence-bundle, verify it offline with the bundled verifier. SSH admin: ssh ubuntu@<ip> with your EC2 key pair (root/password login disabled). API reference: https://<ip>/docs.
Support
Vendor support
Support email support@holonomx.com
Security email security@holonomx.com
Support URL https://holonomx.com/hx-provenance/deploy#support
Support description HolonomiX provides product support for HX-Provenance deployment, configuration, operation, receipt issuance, receipt verification, evidence bundle export, offline verification, and product-related troubleshooting on AWS.
Support includes guidance for appliance startup, health checks, HTTPS/API access, API key handling, service status review, log review, verification workflows, and upgrade or rollback questions. Buyers should include their organization name, AWS account context, deployment region, instance ID, HX-Provenance version, issue summary, relevant timestamps, health-check output, and sanitized logs or screenshots when requesting support. Do not send API keys, signing keys, private keys, passwords, regulated records, confidential evidence artifacts, sensitive customer data, or unsanitized logs unless HolonomiX has established an approved secure support channel for that material. Private offers may include additional onboarding, deployment validation, priority support, or custom support terms.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.