TamTunnel
diff --git a/‎README.md‎
Lines changed: 32 additions & 7 deletions b/‎README.md‎
Lines changed: 32 additions & 7 deletions
diff --git a/‎docs/operations-and-runbook.md‎
Lines changed: 211 additions & 0 deletions b/‎docs/operations-and-runbook.md‎
Lines changed: 211 additions & 0 deletions
diff --git a/‎docs/protocol-spec.md‎
Lines changed: 45 additions & 6 deletions b/‎docs/protocol-spec.md‎
Lines changed: 45 additions & 6 deletions
@@ -108,13 +108,38 @@ cd examples
 
 The dashboard shows connected peers, active CDMs, and network topology.
 
-### Demo Options
+### Secure Demo (mTLS)
 
-| Demo              | Command                              | What It Shows                                                 |
-| ----------------- | ------------------------------------ | ------------------------------------------------------------- |
-| **Multi-Service** | `./demo.sh`                          | Full integration with Space-Track and Constellation Hub mocks |
-| **GUI Dashboard** | `./demo-gui.sh`                      | Visual dashboard with live data                               |
-| **Manual**        | See [Demo Guide](docs/demo-guide.md) | Step-by-step walkthrough                                      |
+For security-focused demonstrations:
+
+```bash
+cd dev-certs && ./generate-certs.sh  # Generate certificates
+cd ../examples && ./demo-secure.sh    # Start with mTLS
+```
+
+### Quick Paths
+
+| Audience           | Time   | Command            | Documentation                                |
+| ------------------ | ------ | ------------------ | -------------------------------------------- |
+| **Executives**     | 5 min  | `./demo-gui.sh`    | [Demo Guide](docs/demo-guide.md)             |
+| **Developers**     | 10 min | `./demo.sh`        | [Protocol Spec](docs/protocol-spec.md)       |
+| **Security/Infra** | 15 min | `./demo-secure.sh` | [Operations](docs/operations-and-runbook.md) |
+
+---
+
+## Current Status
+
+> **Phase 3 Complete** — Ready for technical evaluation
+
+| Feature                | Status          | Notes                                          |
+| ---------------------- | --------------- | ---------------------------------------------- |
+| 🛰️ CDM Exchange        | ✅ Complete     | CCSDS-aligned format, propagation, storage     |
+| 📊 Dashboard           | ✅ Complete     | Web UI with demo mode labels                   |
+| 🔌 Adapters            | ✅ Complete     | Space-Track + Constellation Hub mocks          |
+| 📈 Observability       | ✅ Complete     | `/metrics` endpoint, structured logging        |
+| 🔒 mTLS Security       | ✅ Config ready | TLS configs, certs, secure demo script         |
+| 🔄 Version Negotiation | ✅ Complete     | Protocol version in HELLO, compatibility rules |
+| 🧪 Resilience Tests    | ✅ Complete     | Restart, malformed message, version mismatch   |
 
 ---
 
@@ -126,7 +151,7 @@ The dashboard shows connected peers, active CDMs, and network topology.
 | **[Architecture](docs/architecture.md)**                   | Software Architects | Technical design, component diagrams, decisions    |
 | **[Protocol Specification](docs/protocol-spec.md)**        | Developers          | Message formats, schemas, routing model            |
 | **[API Reference](docs/api-reference.md)**                 | Developers          | REST endpoints and request/response schemas        |
-| [Operations Runbook](docs/operations-and-runbook.md)       | Operations          | Deployment, monitoring, troubleshooting            |
+| [Operations Runbook](docs/operations-and-runbook.md)       | **SRE/Ops**         | Deployment, monitoring, troubleshooting            |
 | [Regulatory Compliance](docs/regulatory-and-compliance.md) | Legal/Policy        | Standards alignment and regulatory FAQ             |
 | [Demo Guide](docs/demo-guide.md)                           | Anyone              | Step-by-step demo walkthrough                      |
 
 
@@ -485,3 +485,214 @@ services:
       - /tmp
     user: "1000:1000"
 ```
+
+---
+
+## Running Demos
+
+### CLI Demo (5–10 min)
+
+Basic CDM propagation between nodes:
+
+```bash
+cd examples
+./demo.sh
+```
+
+Expected output:
+
+```
+[1/6] Building components...
+[2/6] Starting Space-Track Mock on port 9000...
+[3/6] Starting SpaceComms Node A on port 8080...
+...
+CDM successfully propagated from Node A to Node B!
+```
+
+### GUI Demo (Exec-friendly)
+
+Visual dashboard with real-time data:
+
+```bash
+cd examples
+./demo-gui.sh
+# Open http://localhost:3000
+```
+
+Dashboard shows:
+
+- Node health and uptime
+- Network topology visualization
+- CDM table with collision probabilities
+- Alerts from Constellation Hub
+
+### Secure Demo (mTLS)
+
+Demonstrates secure peer communication:
+
+```bash
+# Generate certificates first
+cd dev-certs && ./generate-certs.sh
+
+cd ../examples
+./demo-secure.sh
+```
+
+What to observe in logs:
+
+```
+INFO  spacecomms::tls > TLS enabled with mTLS
+INFO  spacecomms::peer > Secure peer session established
+```
+
+---
+
+## Logging Examples
+
+### Structured Log Fields
+
+Logs include structured fields for filtering:
+
+```json
+{
+  "timestamp": "2024-01-15T14:30:00.123Z",
+  "level": "INFO",
+  "target": "spacecomms::node::routing",
+  "node_id": "node-alpha-01",
+  "message": "CDM forwarded to peer",
+  "fields": {
+    "cdm_id": "CDM-2024-00001234",
+    "peer_id": "peer-operator-b",
+    "hop_count": 2
+  }
+}
+```
+
+### Key Log Events
+
+| Event                        | Fields                            | Meaning                |
+| ---------------------------- | --------------------------------- | ---------------------- |
+| `CDM received`               | `cdm_id`, `source_node_id`        | New CDM ingested       |
+| `Peer session established`   | `peer_id`, `protocol_version`     | Successful handshake   |
+| `Version negotiation failed` | `local_version`, `remote_version` | Incompatible versions  |
+| `Validation failed`          | `error`, `field`                  | Invalid message format |
+
+---
+
+## Metrics Endpoint
+
+### Sample `/metrics` Response
+
+```json
+{
+  "active_peers": 3,
+  "cdms_announced": 1250,
+  "cdms_withdrawn": 45,
+  "messages_sent": 15420,
+  "messages_received": 14893,
+  "errors": 12,
+  "uptime_seconds": 86400
+}
+```
+
+### Key Counters
+
+| Metric                        | Watch For           | Alert If           |
+| ----------------------------- | ------------------- | ------------------ |
+| `active_peers`                | Should be > 0       | Drops to 0         |
+| `errors`                      | Low, stable         | Rapidly increasing |
+| `cdms_announced`              | Steadily increasing | Flat for > 1 hour  |
+| `messages_sent` vs `received` | Similar counts      | Large divergence   |
+
+---
+
+## Tested Failure Scenarios
+
+The following scenarios have been validated in the test suite:
+
+### 1. Peer Restart Recovery
+
+**Scenario**: Node B restarts while receiving CDMs from Node A
+
+**Expected behavior**:
+
+- Node A detects disconnect via missed heartbeats
+- Node A retries connection automatically
+- After reconnect, pending CDMs are resent
+- System converges to consistent state
+
+**Test command**:
+
+```bash
+# Start nodes, inject CDM, kill Node B, restart, verify CDM present
+```
+
+### 2. Malformed JSON Rejection
+
+**Scenario**: Invalid JSON sent to CDM endpoint
+
+**Expected behavior**:
+
+- Returns HTTP 400 Bad Request
+- Process stays running
+- Peer connections unaffected
+- Error logged with details
+
+**Test**:
+
+```bash
+curl -X POST http://localhost:8080/cdm \
+  -H "Content-Type: application/json" \
+  -d "not valid json"
+# Returns: {"error": "Parse error: ..."}
+```
+
+### 3. Missing Required Fields
+
+**Scenario**: CDM missing `tca` field
+
+**Expected behavior**:
+
+- Returns HTTP 400 with field-specific error
+- Process stays running
+- `errors` metric incremented
+
+**Test**:
+
+```bash
+curl -X POST http://localhost:8080/cdm \
+  -H "Content-Type: application/json" \
+  -d '{"cdm_id": "test"}'
+# Returns: {"error": "Missing required field: tca"}
+```
+
+### 4. Version Mismatch Rejection
+
+**Scenario**: v1.x node connects to v2.x node
+
+**Expected behavior**:
+
+- HELLO exchange occurs
+- Version negotiation fails
+- ERROR message sent with `UNSUPPORTED_VERSION`
+- Connection closed gracefully
+- Event logged
+
+### 5. Unknown Message Type
+
+**Scenario**: Message with unknown `message_type`
+
+**Expected behavior**:
+
+- ERROR response sent to sender
+- Message dropped
+- Peer connection preserved
+- Warning logged
+
+---
+
+## Related Documents
+
+- [Architecture](architecture.md) — System design
+- [Protocol Specification](protocol-spec.md) — Message formats
+- [Demo Guide](demo-guide.md) — Step-by-step demo walkthrough
@@ -634,15 +634,54 @@ All messages should be logged with:
 
 ### Protocol Version
 
-- Semantic versioning: MAJOR.MINOR.PATCH
-- MAJOR: Breaking changes
-- MINOR: New message types or optional fields
-- PATCH: Clarifications or bug fixes
+- Semantic versioning: MAJOR.MINOR
+- MAJOR: Breaking changes (incompatible)
+- MINOR: New message types or optional fields (backward compatible)
+
+### Version Negotiation
+
+During HELLO exchange, nodes negotiate a common protocol version:
+
+**HELLO Payload includes:**
+
+```json
+{
+  "protocol_version": "1.0",
+  "supported_versions": ["1.0", "1.1"]
+}
+```
+
+**Negotiation Rules:**
+
+| Local | Remote | Result    | Negotiated         |
+| ----- | ------ | --------- | ------------------ |
+| 1.0   | 1.0    | ✅ OK     | 1.0                |
+| 1.0   | 1.1    | ✅ OK     | 1.0 (lower minor)  |
+| 1.1   | 1.0    | ✅ OK     | 1.0 (lower minor)  |
+| 1.x   | 2.x    | ❌ Reject | - (major mismatch) |
+
+**On Incompatible Version:**
+
+1. Node sends ERROR message with code `UNSUPPORTED_VERSION`
+2. Connection is closed
+3. Event is logged with both version strings
+
+```json
+{
+  "message_type": "ERROR",
+  "payload": {
+    "error_code": "UNSUPPORTED_VERSION",
+    "error_message": "Major version mismatch: local v1.x vs remote v2.x",
+    "related_message_id": "msg-hello-002"
+  }
+}
+```
 
 ### Compatibility
 
-- Nodes advertise supported versions in HELLO
-- Nodes may implement multiple versions
+- **Same major, different minor**: Compatible, use lower minor version
+- **Different major**: Incompatible, reject connection
+- Nodes advertise supported versions in HELLO for future negotiation
 - Unknown fields must be preserved (forward compatibility)
 - Unknown message types trigger ERROR response