The Engineering Journal

High-signal observations from Year 1 of building real AI systems. Just thinking out loud about AI, privacy, and systems design.

FORETYX SIGNAL: HIGH

Why I Built a Security Gateway Before I Built Anything Else

When I started thinking about what kind of AI products actually matter, I kept hitting the same wall every serious enterprise hits: you can't send real data to a third-party model. Not because you don't trust the model — because you legally, contractually, sometimes ethically cannot. Healthcare records. Employee data. Customer PII. Financial transactions. It's all off-limits the moment you try to pipe it into an external API.

That's not a niche problem. That's the reason most enterprise AI adoption is stuck in pilot hell. Everyone's doing proofs of concept with sanitized dummy data, then hitting a wall when real deployment means real data exposure. Foretyx is the layer that removes that wall. A control plane that intercepts, filters, anonymizes, and enforces policy before data ever reaches the model — so companies can actually ship AI products, not just demo them. I'm a first-year student. I'm also the person building the infrastructure that makes enterprise AI deployable. That gap between those two sentences is where I live.

edit_noteEntry #001
schedule3m read
FORETYX SIGNAL: CRITICAL

The Architecture Decision That Changed How I Think About AI Middleware

The first version of Foretyx I designed was a simple proxy. Request comes in, strip the PII, forward to the model, return the response. Clean. Obvious. Wrong. A proxy is reactive — it sees data after the application has already decided to send it. By that point, the damage pattern is already set. You're just sanitizing symptoms, not fixing the architecture.

The redesign was a control plane. Policy enforcement happens at the IAM layer before a request is even formed. The Policy Engine evaluates what data a given role is allowed to expose, to which model, under what context. The request gets shaped by those rules — not filtered after the fact, but constructed within them from the start. That's a fundamentally different trust model. It means Foretyx isn't just a data cleaner. It's an access control system for AI. The difference matters because one of those is a feature you add, and the other is infrastructure you build on top of.

WebSocket-based real-time policy push means rule changes propagate instantly without redeployment. That was the detail that made it real enterprise infra instead of a dev tool with enterprise branding.

edit_noteEntry #002
starArchitecture
CORE BELIEF SIGNAL: CRITICAL

Systems Before Scripts

Writing code is the last thing I do. Before a single line, I'm drawing architecture, asking what breaks first, what scales worst, what the real user actually needs. Scripts are temporary. Systems compound. The engineer who understands the system controls the engineer who just knows the syntax.

edit_noteEntry #003
schedule1m read
AI INFRA SIGNAL: MEDIUM

Local LLMs Are the Real Disruption

Everyone talks about GPT-4 and Gemini. The more interesting story is DeepSeek running locally on consumer hardware. When AI inference becomes free and private, the entire cloud AI business model breaks. I'm building for that world now, not waiting for it to arrive.

edit_noteEntry #004
schedule1m read
More entries incoming