DEFONEOS Defence Request for Quotation (RFQ) — pre-completed for the UK defence supply chain.
This is the canonical RFQ form DEFONEOS issues to UK defence primes (BAE Systems, Rolls-Royce, Leonardo UK, Thales, Babcock, QinetiQ, Marshall, Serco, Capita) and Crown procurement authorities (CCS, MOD DE&S, Dstl, RAF, Royal Navy, British Army procurement commands). It is structured to mirror the Crown's DEFCON 760 short-form contract template (when used as a prime contract) and the DefSTAN 05-138 procurement-specific security-requirements format. Where the buyer has their own RFQ format, this form maps one-to-one against standard MOD acquisition templates (the JFD / DEFCAR / ITN / ITT family).
Annual risk assessment; quarterly review; BFT Council sign-off
4.2 Security classification of this RFQ
Security classification: OFFICIAL (UK Government Security Classifications 2018). The contents of this RFQ, including any annexes, are to be handled as OFFICIAL. Where any buyer-side annexe contains OFFICIAL-SENSITIVE information, it shall be transmitted via the Defence Share (DS) system or via NCSC-approved encrypted email. Defence suppliers are reminded of their obligations under the Official Secrets Acts 1911-1989 and the Computer Misuse Act 1990.
Section 5 — Technical architecture
DEFONEOS Technical Architecture (defence deployment)
═════════════════════════════════════════════════════════════
Layer 1 — Sovereign Edge (Buyer premises or Tier-2 UK cloud)
• Hardware: NCSC-approved Hypervisor (see NCSC cloud principle 1)
• OS: Ubuntu 22.04 LTS (CC EAL2) or RHEL 8 (CC EAL4+)
• Hypervisor: VMware vSphere 8 (CC EAL4+) or KVM (CC EAL2)
• Hardware root of trust: TPM 2.0
• Encryption: AES-256-GCM (storage) + TLS 1.3 (transit)
Layer 2 — Sovereign Compute (DEFONEOS runtime)
• Container: gVisor (defence-grade sandbox) or Kata Containers
• Service mesh: Istio + mTLS + zero-trust
• Identity: SPIFFE / SVID for workload identity
• Crypto: Ed25519 (current) + ML-DSA-65 (PQC migration Q4 2026)
• KEM: ML-KEM-768 (PQC) by Q4 2026
Layer 3 — Sovereign Data (UK-resident only)
• Database: PostgreSQL 16 with TDE + pgcrypto
• Vector store: Qdrant (in-memory + on-disk)
• Object store: MinIO with server-side encryption
• Backup: 3-2-1 immutable WORM (S3 Object Lock)
• Geographic residency: 100% UK / EU (no third-country)
Layer 4 — Sovereign AI (DEFONEOS models)
• LLM: SOV3-small (1.5B, in-house) + Llama-3-8B-Instruct
• Reasoning: Mamba-2 + Transformer hybrid
• Embeddings: nomic-embed-text-v1.5 (sovereign-tuned)
• Fine-tuning: QLoRA on sovereign data only
Layer 5 — Sovereign Governance (33-agent BFT Council)
• BFT council: 33 sovereign agents (BFT quorum = 23/33)
• SIGIL chain: Ed25519-signed hash-chained audit log
• Watchdog: HORUS real-time monitoring
• ZK-proofs: DORADO sovereign switch position SOVEREIGN
• 30-framework compliance cross-walk
Layer 6 — Sovereign Interfaces (Open Hands OS)
• Protocols: MCP, A2A, x402, DID, JWT, ANP, AGNTCY, IBC
• API: REST + gRPC + WebSocket
• Auth: OAuth 2.1 + WebAuthn + TOTP
• Export: OpenAPI 3.1 + AsyncAPI 3.0
─────────────────────────────────────────────────────────────
Compliance: NCSC Cloud Principles 1-14 (all 14 implemented)
Standards: JSP 440, JSP 936, DefSTAN 05-138, Cyber Essentials+
PQC status: ML-KEM-768 + ML-DSA-65 by Q4 2026
Section 6 — Deployment options
Option
Description
Indicative cost
Security classification ceiling
A — UK sovereign cloud
DEFONEOS-hosted on Tier-2 UK infrastructure (Telehouse North)
£180,000 (90-d pilot) / £420,000 (12-mo)
OFFICIAL-SENSITIVE
B — Buyer-cloud (UK)
Deployed on buyer's own UK sovereign cloud (AWS UK, Azure UK, GCP UK)
£180,000 + £40,000 setup
OFFICIAL-SENSITIVE
C — Air-gapped on-premise
Fully isolated, no network connectivity, dedicated hardware
£240,000 + £60,000 deployment
SECRET (with List X)
D — List X facility
Deployed in MOD-approved List X data centre
£300,000+ (case-by-case)
SECRET / TOP SECRET (with DV)
Section 7 — Acceptance criteria
Acceptance is gated by the 240-test pytest suite published at github.com/csoai-org/defoneos-acceptance. The acceptance schedule is:
Acceptance milestone
Days from contract award
Pass criteria
Payment trigger
P1 — Mobilisation & security baseline
Day 0-30
SC-cleared personnel in place; cyber-baseline complete; test environment available
30% of pilot fee (£54,000)
P2 — Functional delivery + 240-test gate
Day 30-60
240-test pytest suite ≥98% pass; SIGIL chain live; ≥1,000 SIGILs emitted; BFT Council convened
Payment milestone-billed against P1/P2/P3 acceptance (30/30/40). Invoices raised by CSOAI Ltd on the 5th working day after acceptance sign-off. Payment terms: 30 days end of month + 5 working days. Late payment: interest at 8% above Bank of England base rate under the Late Payment of Commercial Debts (Interest) Act 1998.
Extension options: 2 × 90-day extensions at +25% per extension (priced in Schedule 2 of the Form of Contract). Conversion to 12-month deployment: negotiable; typical conversion discount 8% versus fresh procurement.
Section 9 — IPR & Crown Copyright
IPR (PCR2015 / PA2023 compatible): All foreground IPR created in the course of the pilot shall vest in the Supplier (CSOAI Ltd) subject to a perpetual, irrevocable, royalty-free licence to the Buyer (and, where the Buyer is a Crown body, to the Crown) for non-commercial public-service purposes. The Crown's right to use the foreground IPR for non-commercial public-service purposes is non-exclusive but is irrevocable. Background IPR remains with the Supplier; the Buyer is granted a perpetual licence to use Background IPR only as embedded in the Deliverables.
Crown Copyright: Where the Deliverables are commissioned by a Crown body, the Crown's right to use is governed by Crown Copyright provisions (CDPA 1988 s.163-166) and the Crown Right of Use (CRoU) regime. The Supplier acknowledges that the Crown may, in the public interest, reproduce, publish, and adapt the Deliverables under the Open Government Licence (OGL) v3.0 or any successor licence. The Supplier's moral rights under CDPA 1988 s.77-85 are asserted and reserved only where their assertion does not impair the Crown's licensed use.
Section 10 — Governance (BFT Council)
DEFONEOS is governed by a 33-agent Byzantine Fault Tolerant (BFT) council — a quorum of 23/33 is required for any material decision. The BFT Council comprises:
Material decisions (changes to the Charter, the SoW, the pricing, the security baseline, the BFT composition) require 2/3 majority (≥22 of 33). Operational decisions are made by the on-call duty sovereign agent under SOP. All decisions are SIGIL-signed and audit-trailed.
Section 11 — Case studies (defence-relevant)
Case study
Sector
Outcome
Reference
NHS pilot — compliance assurance
Health / NHS Digital
7-day evaluation; 98.6% acceptance pass; 240-test gate green
NHS-DSPT-2025
Dstl proof-of-concept — sovereign AI
Defence R&D
60-day PoC; 19,040 SIGILs emitted; 33 BFT quorum met
DstL-PoC-2025
Royal Navy FLEET OS trial
Maritime defence
90-day Tier-2 deployment; incident reporting 60-min SLA met
RN-FLEET-2026
UK AI Bill sandbox (BCS cohort 4)
Regulatory
Graduated May 2026; cited as exemplification by DSIT
BCS-C4-2026
European Defence Agency workshop
EU defence
EU AI Act conformity assessment exemplar
EDA-WS-2026
Section 12 — Signature block
For the Supplier (CSOAI Ltd)
For the Buyer
Annex A — DEFONEOS-SEAL issuance
On successful completion of the 90-day pilot (or the 12-month deployment), the Authority is issued a DEFONEOS-SEAL sovereign compliance certificate. The seal is Ed25519-signed and embeds the following attributes:
Sovereign identity (CSOAI Ltd UK Co. 16939677)
Authority identity (Buyer name + reference)
Pilot / deployment period (start–end)
Frameworks attested (the 30-framework cross-walk status)
SIGIL chain root hash (cryptographic anchor)
Audit-trail reference (DORADO proof URL)
List of participating personnel (with clearance levels)