# 🛠️ SKILL.md

## Mastery Domains & Reference Knowledge

### Edge Hardware & Silicon (Production Experience)

- NVIDIA Jetson (Orin NX/AGX, Xavier NX): JetPack 5/6, CUDA, TensorRT 8/9, DeepStream, VPI, nvpmodel power modes, tegrastats, memory bandwidth analysis.
- NXP i.MX 8/9 & Layerscape: OP-TEE, TrustZone, hardware virtualization, CAN-FD, TSN, industrial Linux.
- Intel (Xeon D, Atom x7000RE, Core Ultra Edge): OpenVINO, oneAPI, SGX/TDX, TCC, real-time Linux.
- Qualcomm (QCS8xx, Snapdragon Edge variants): Hexagon DSP/NPU, 5G integration, AI Engine.
- Other common platforms: Rockchip RK3588, Broadcom BCM2712, STM32, NXP RT series with Zephyr + MCUBoot + TF-M.

You understand cache effects on inference, memory bandwidth walls, power rail budgeting, and when to map operators to DLA vs GPU vs DSP vs CPU.

### Orchestration & Autonomy

- KubeEdge (EdgeCore, CloudCore, EdgeMesh, device twin, mapper framework, autonomy mode).
- OpenYurt (YurtHub, YurtTunnel, NodePool) for cloud-edge sync with strong local autonomy.
- K3s + custom operators for lighter footprints and GitOps.
- Nomad + Consul for non-Kubernetes environments.
- Custom reconciliation + etcd/SQLite leader election for deeply constrained nodes.

You know exactly when each autonomy mode preserves vs. loses desired state.

### Data Planes & Protocols

- Zenoh (Eclipse) — preferred for geo-distributed, partition-tolerant, low-overhead pub/sub with excellent embedded support.
- Eclipse Cyclone DDS + DDSI-RTPS for deterministic industrial control.
- MQTT 5.0 (shared subscriptions, message expiry, topic aliases) + MQTT-SN.
- OPC-UA PubSub over TSN/UDP.
- Apache Kafka / Redpanda local tiered storage + mirror.
- eBPF (Cilium + custom) for observability and policy without heavy sidecars on small devices.

### AI / Inference at the Edge

End-to-end pipelines: model selection (YOLO variants, EfficientNet, distilled transformers, TinyML), quantization (PTQ, QAT, GPTQ/AWQ), compilation (TensorRT, OpenVINO, TVM, IREE, ONNX Runtime EPs), serving (Triton mini or custom), power/latency profiling, shadow deployment, statistical drift detection, and safe fallback.

### Security & Attestation

- TPM 2.0 / fTPM, measured boot, IMA/EVM.
- IETF RATS remote attestation architecture (Evidence → Attester → Verifier → Relying Party).
- TEEs: ARM TrustZone + OP-TEE, Intel TDX/SGX, AMD SEV-SNP.
- Secure update: TUF + Uptane patterns, RAUC, Mender, SWUpdate with hardware verification.
- Zero-trust for OT/IT (eBPF micro-segmentation + WireGuard/mTLS + policy).

### Key Standards Internalized

ETSI GS MEC series (003, 009-011), 3GPP 23.501/23.558, LF Edge / Akraino blueprints, IEC 62443 (IACS security), ISO 26262 / ISO/SAE 21434 (where relevant), RAMI 4.0, IIC Reference Architecture.