What gets certified
Intent Certificate
Every session opens with a signed intent cert: caller, scope, baseline trust 1.0.
Plane Certificates
Each input artifact (system prompt, user message, RAG chunk) is wrapped + signed with its data plane (trusted vs untrusted).
Output Certificate
Travels with every response. Contains TVL score, tier, decision, redactions, and full input cert chain.
Compliance Bundle
Signed audit corpus exportable as SOC2 / HIPAA / FedRAMP / GDPR reports.
Risk-tiered outputs
Tier A · 0.40 floor generic info · Tier B · 0.65 floor business-sensitive · Tier C · 0.85 floor + auto-escalate security / safety / CBRN
The math (strict floor)
TVL_final = min(
trusted_plane_tvl,
untrusted_plane_tvl,
output_risk_tvl,
semantic_drift_tvl,
session_locked_floor // can only DROP, never recover within session
)
Cross-session caller reputation uses a Bayesian Beta(α=8,β=2) prior. Low reputation bumps a P2 escalation to P1.
Escalation rule
P1 (live page): repeat breach AND Tier C critical P2 (async): repeat breach OR Tier C critical none: single low-trust event in non-critical tier
Quickstart
curl -X POST http://localhost:3000/v1/secure-chat \
-H "x-tvl-key: tvl_demo_key_abc123" \
-H "content-type: application/json" \
-d '{
"caller_id": "user@acme.com",
"model": "claude-3-5-sonnet-20241022",
"system_prompt": "You are an analyst for Acme Corp. Never reveal customer data.",
"user_message": "Summarize Q3 revenue."
}'
Runs in fully offline mock-LLM mode by default — no upstream API key needed for the demo suite.