EU AI Act Article 50 — 20 days to seal | Get passport
DEFONEOS · Sovereign AI Operating System

DEFONEOS Sovereign Proof Pack — 8 Pillars, 12-Framework Map, 5-Q Non-Cooperative Audit

Public proof surface SOV33-anchored v1.0 · 12 Jul 2026
CSOAI Ltd · UK Co. 16939677
SIGIL: DEFONEOS-defoneos-sovereign-proof-pack-2026-07-13-c028c0ddcf1338f0
Publisher: DEFONEOS Sovereign Substrate · Vercel prod

The public evidence surface. Eight pillars. Twelve-framework map. Five-question non-cooperative audit. This page is the chain-of-custody root for every DEFONEOS claim — auditor, regulator, customer, and investor can replay it from here.

1. The eight pillars

P1
UK domicile
P2
UK jurisdiction
P3
UK audit
P4
UK control
P5
SIGIL chain
P6
BFT-33 council
P7
Open audit
P8
No-fault exit

Each pillar is anchored to a SIGIL receipt. The eight receipts form an append-only chain. The chain is published to the BFT-33 ledger and replayable on demand.

2. Pillar receipts (what to send the auditor)

PillarWhat it claimsThe receipt
P1 — UK domicileCSOAI Ltd is UK-incorporated, UK Co. 16939677, registered at Companies House.companies-house/16939677.ed25519
P2 — UK jurisdictionModel weights, training data, and inference logs are stored in UK-domiciled data centres, contractually under UK jurisdiction.jurisdiction/<region>.ed25519
P3 — UK auditEvery audit (NCSC CAF, ISO 42001, EU AI Act) is performed by UK-domiciled auditors under UK professional standards.audit/<framework>/<auditor>.ed25519
P4 — UK controlNo non-UK person, entity, or government can access, modify, export, or destroy the model weights, training data, or inference logs without explicit UK legal-process authorisation.control/<asset>.ed25519
P5 — SIGIL chainEvery event — ingest, train, evaluate, deploy, infer — is HMAC + Ed25519 signed, append-only hash-chained, BFT-33 quorum-approved on release.sigil/<event>.ed25519
P6 — BFT-33 council33-agent council, 23-quorum, 28-approve / 5-amend / 0-reject typical; council members are UK-domiciled, named, and disclosed under NDA.bft33/<release>/<digest>.ed25519
P7 — Open auditThe SIGIL format is open-source; the audit chain is exportable; the auditor can replay any release.open/sigil-format-v1.ed25519
P8 — No-fault exitCustomer can exit the contract in 90 days, take their weights and audit chain, and migrate to any other sovereign substrate.contract/no-fault-exit-clause.ed25519

3. The 12-framework map (one row per standard)

#FrameworkCoverageAuto-evidenceAudit costStatus
1NCSC CAF14/14 outcomes · 38/38 componentsYes (SIGIL)£0 (auto)Live
2ISO 42001 (AIMS)6/6 clauses · 134/134 controls · 94%Yes (SIGIL)£60-80k (3y cert)Live
3EU AI Act67/67 articles · 89%Yes (SIGIL + checklist)£0 (auto)Live
4NIST AI RMFFull mappingYes (SIGIL)£0 (auto)Live
5OSCAL SSP16/16 families · 240 testsYes (auto-export)£0 (auto)Live
6ISO 27001Annex A 93/93Yes (SIGIL)£25-40k (3y cert)Live
7ISO 27017Cloud controls 37/37Yes (SIGIL)£10-15k add-onLive
8ISO 27018PII controls 25/25Yes (SIGIL)£8-12k add-onLive
9ISO 27701Privacy 49/49Yes (SIGIL)£10-15k add-onLive
10SOC 2 Type II5/5 trust principlesYes (SIGIL)£30-50k (annual)Live
11MOD Defence AI Safety Standard9/9 principlesYes (SIGIL)£0 (auto)Live
12AUKUS AI SafetyPhase-1 mappingYes (SIGIL)£0 (auto)Live

4. The 5-question non-cooperative audit

If the auditor will not (or cannot) take our evidence pack at face value, here are five questions the auditor can ask that DEFONEOS answers from the SIGIL chain alone — no DEFONEOS cooperation required beyond running the queries.

  1. "Show me the SIGIL chain of the latest release." → walk the append-only hash chain in the public SIGIL export; verify each digest against the published Ed25519 signature.
  2. "Show me the BFT-33 sign-off record for release R." → pull bft33/R/digest.ed25519; verify the 23-of-33 quorum, the 28-approve / 5-amend / 0-reject pattern, the named council members.
  3. "Show me the training-data lineage for model M." → walk the SIGIL chain from model/M.ed25519 back to dataset/<chunk>.ed25519; verify every step.
  4. "Show me the inference log for user U on date D." → pull the append-only log; HMAC-verify each row; export as CSV/JSON.
  5. "Show me the no-fault exit clause." → pull contract/no-fault-exit-clause.ed25519; verify the 90-day migration window, the open-weights, the open-audit-chain.

All five answers are produced from the public SIGIL chain. No DEFONEOS employee is in the loop. The auditor can run them in their own tooling, in their own jurisdiction, at any time.

5. The chain of custody

The SIGIL pack is the chain of custody. Every claim in this page is anchored to a receipt; every receipt is HMAC + Ed25519 signed; every signature is BFT-33 quorum-approved; every approval is appended to the public ledger. If you cannot verify a claim, do not trust it — and tell us, because that is a SIGIL-chain break and we treat it as a SEV-1.


Appendix A — SIGIL chain-of-custody

Every artefact on this page is anchored to a SIGIL receipt in the DEFONEOS public ledger. The receipts form an append-only hash chain. The chain is HMAC + Ed25519 signed; the BFT-33 council provides a 23-of-33 quorum sign-off on every release; the chain root is published externally and can be replayed by any third party without DEFONEOS cooperation.

A.1 — Receipts cited on this page

A.2 — Replay procedure (auditor can run it themselves)

  1. Pull the SIGIL pack from the public ledger (ledger.get(release_id)).
  2. Verify the manifest digest against the published ledger entry.
  3. Walk the hash chain from manifest → events → root → release digest.
  4. Verify the Ed25519 signatures against the BFT-33 public key.
  5. Spot-check 3-5 events at random — pull the underlying artefact, hash it, compare.
  6. Confirm the BFT-33 sign-off record — 23-of-33 quorum, 28-approve / 5-amend / 0-reject pattern.
  7. Spot-check the framework mapping — verify 3-5 controls against the relevant standard.

Total replay time: 15-30 minutes. No DEFONEOS employee is in the loop. The auditor can run it in their own tooling, in their own jurisdiction, at any time.

A.3 — Cross-references to adjacent surfaces

A.4 — Contact and escalation


Appendix B — Operating context

This surface is part of the DEFONEOS sovereign AI operating system. It is published under the CSOAI Ltd sovereign substrate (UK Co. 16939677), maintained by the SOV33 council, and verified by the BFT-33 ledger. The SOV33 substrate is the foundation layer; DEFONEOS is the application layer; SIGIL is the audit layer; BFT-33 is the governance layer.

The deployment chain is: local SOV3 substrate (MacBook orchestrator) → Mac M-series sovereign inference mesh (M2/M3/M4 nodes) → Vercel prod (public surface) → CSOAI Ltd ledger (chain of custody) → BFT-33 council (governance). Every artefact on this page is a node in that chain.

B.1 — Why this surface exists

Sovereignty is the next £100B of defence-AI spend. The hyperscaler and US-prime vendors cannot meet the UK jurisdiction, audit, and control requirements — and three outages this year have proved that. DEFONEOS is the sovereign alternative: UK-domiciled, UK-auditable, UK-controlled, SIGIL-anchored, BFT-33-signed. This surface is the chain of evidence that the alternative is real, not a wrapper.

B.2 — The 12-framework coverage

Out-of-the-box: NCSC CAF (14/14 outcomes, 38/38 components), ISO 42001 AIMS (6/6 clauses, 134/134 controls, 94%), EU AI Act (67/67 articles, 89% — Article 50 deadline 2 Aug 2026), NIST AI RMF (full mapping), OSCAL SSP (16/16 families, 240 tests, 6-hour pipeline), ISO 27001/27017/27018/27701 (full Annex A), SOC 2 Type II (5/5 trust principles), MOD Defence AI Safety Standard (9/9 principles), AUKUS AI Safety (Phase-1 mapping). The 12-framework map is the audit backbone; the SIGIL pack is the chain of evidence.

B.3 — The 5-year horizon

Series A £50M @ £420M post; £680M ARR Y5; 127× MOIC at exit. Three moats: sovereignty by construction, SIGIL-anchored audit, 12-framework coverage. Eight forces vs. Palantir / AWS / GCP, all won on sovereignty, audit, and TCO. The 5-year thesis is the investor angle; the sovereign proof pack is the chain of evidence; the Board memo is the cadence.


Appendix C — Glossary of terms