{
  "schema": "SOVRIENT_PROTOCOL_SURFACE_V1",
  "generated_utc": "2026-05-06T22:31:12Z",
  "page": {
    "name": "Sovrient Protocol Registry",
    "url": "https://www.sovrient.com/protocol",
    "json_url": "https://www.sovrient.com/protocol.json"
  },
  "registry": {
    "protocol": "SOVOS_CANON_V1",
    "schema_version": "v2.4",
    "attestation_format": "v1.1",
    "failure_semantics": "Fail-closed",
    "class": "VOSINT (Verifiable Open-Source Intelligence)",
    "evidence_model": "Merkle-sealed, deterministic replay, signed witness surfaces",
    "anchor_state": "AWAITING WITNESS",
    "release_policy": "NO PASS . NO RENDER . NO RELEASE"
  },
  "canonical_byte_rejudgment_invariant": {
    "statement": "A terminal Sovrient claim is admissible only when a third party can recompute the same result from the declared packet bytes, declared specification bytes, and declared verifier mode.",
    "formal_shape": "V = F(packet_bytes, spec_bytes, verifier_mode)",
    "requirements": [
      "F is total and deterministic.",
      "No undeclared dependency is reachable.",
      "Missing or divergent bytes, specifications, verifier mode, signatures, or required sidecars fail closed."
    ],
    "buyer_register_translation": "independently re-judgeable release evidence"
  },
  "versioning_policy": [
    {
      "surface": "Protocol",
      "current_public_label": "SOVOS_CANON_V1",
      "change_rule": "Changes only when the protocol-level verification contract changes."
    },
    {
      "surface": "Schema",
      "current_public_label": "v2.4",
      "change_rule": "Changes when serialized public evidence structure changes."
    },
    {
      "surface": "Attestation Format",
      "current_public_label": "v1.1",
      "change_rule": "Changes when signature, receipt, or sidecar semantics change."
    },
    {
      "surface": "Agent Discovery",
      "current_public_label": "SOVRIENT_AGENT_MANIFEST_V1",
      "change_rule": "Changes by schema version and generated_utc; freshness boundaries remain explicit inside the manifest."
    }
  ],
  "signing_key": {
    "public_key_url": "https://www.sovrient.com/.well-known/sovrient-signing-key.pub",
    "algorithm": "Ed25519 (OpenPGP armored public key)",
    "fingerprint": "56FA491FF6EA4FE5E86D21A775867DAF1EE06FC4",
    "scope_note": "This key describes the public protocol registry signing surface. Reviewed MAS bundles may additionally expose bundle-local PQC public keys inside the artifact.",
    "rotation_policy": "Key rotation increments the published protocol version. Prior attestations remain verifiable against the key under which they were signed.",
    "revocation_policy": "A compromised key triggers a protocol registry update with revocation notice and replacement key before new attestations are signed."
  },
  "proof_surfaces": {
    "basel_framework_structural_verification": "https://www.sovrient.com/basel-proof-handles.json"
  },
  "crypto_agility_scope": {
    "public_registry_and_daily_catalogs": {
      "state": "CLASSICAL_AUTHORITATIVE_WITH_PQC_SHADOW_TELEMETRY",
      "note": "The public protocol registry and daily sealed catalog custody surface remain classical-authoritative unless a broader policy promotion is published."
    },
    "mas_authoritative_bundle_portfolio": {
      "state": "HYBRID_TRACE_COMPLETE_ON_HIGHEST_VALUE_ANCHORS",
      "trace_signature_profile": "Ed25519 + ML-DSA-65",
      "scope_note": "This MAS-scoped status does not by itself promote the broader public Sovrient custody surface.",
      "authoritative_supported_bundles": [
        "mas_usgs_shadow_handoff_2026-03-25_20260401T110012Z",
        "mas_local_scale_benchmark_handoff_20260401T110024Z",
        "mas_cmapss_nerv_handoff_FD004_20260331T180426Z",
        "mas_usgs_nerv_handoff_2026-03-25_20260331T185831Z"
      ]
    }
  },
  "invariants": [
    {
      "id": "verifier_sovereignty",
      "statement": "Verifier sovereignty: third parties can replay and reject without coordination."
    },
    {
      "id": "non_repudiation",
      "statement": "Non-repudiation: signatures and hashes bind each attestation state."
    },
    {
      "id": "temporal_continuity",
      "statement": "Temporal continuity: identical inputs produce identical outputs."
    },
    {
      "id": "binary_verification_outcome",
      "statement": "Binary verification outcome: pass or fail; no soft acceptance."
    }
  ],
  "schema_catalog": {
    "core_public_schemas": [
      "https://www.sovrient.com/protocol.json",
      "https://www.sovrient.com/status.json",
      "https://www.sovrient.com/machine-state.json",
      "https://www.sovrient.com/.well-known/agent-manifest.json",
      "https://www.sovrient.com/data/sealed_catalog_latest.json"
    ],
    "standards_and_conformance": [
      "https://www.sovrient.com/standards/oed/5.0.0/manifest.json",
      "https://www.sovrient.com/standards/oed/5.0.0/requirements.json",
      "https://www.sovrient.com/standards/oed/5.0.0/conformance_classes.json",
      "https://www.sovrient.com/standards/oed/5.0.0/conformance_clauses.json",
      "https://www.sovrient.com/standards/oed/5.0.0/field_rules.json"
    ]
  },
  "conformance_clauses": [
    {
      "clause": "Declared Inputs",
      "requirement": "Input files, source windows, verifier mode, and method identifiers must be named before interpretation.",
      "failure_behavior": "Missing declaration means HOLD or FAIL, not discretionary acceptance."
    },
    {
      "clause": "Canonical Serialization",
      "requirement": "Artifacts that enter a receipt must be serialized deterministically and hash-bound.",
      "failure_behavior": "Byte divergence breaks replay and invalidates the specific claim."
    },
    {
      "clause": "Signature And Receipt",
      "requirement": "Sealed artifacts require signatures, sidecars, and receipt handles appropriate to the lane.",
      "failure_behavior": "Missing or mismatched sidecars fail closed."
    },
    {
      "clause": "Freshness Boundary",
      "requirement": "Summary surfaces must disclose when they lag artifact-level evidence.",
      "failure_behavior": "Artifact-level generated_utc, hashes, and sealed catalog records take precedence over prose."
    },
    {
      "clause": "External Trust",
      "requirement": "External trust is claimed only when an independent witness, audit, signature, timestamp, or anchor actually exists.",
      "failure_behavior": "Unwitnessed or informational anchors remain non-production signals."
    }
  ],
  "scope": {
    "within_scope": [
      "Multi-source seismic corroboration.",
      "Deterministic synthetic GUL outputs.",
      "Signed day receipts and registry entries.",
      "Merkle range packs and inclusion proofs."
    ],
    "out_of_scope": [
      "Claims handling for any insurer or reinsurer.",
      "Legal opinion on settlement enforceability.",
      "Model science replacement for proprietary catastrophe models.",
      "Publication of private portfolio exposures.",
      "Licensing determinations, which are jurisdiction-specific."
    ]
  }
}