Security & Compliance

Zero-trust by default. Audited by design.

Built for on-prem and air-gapped operations with fine-grained access control, automatic redaction, end-to-end encryption, and full chain-of-custody.

AccessRBAC + ABACLeast privilege
DataE2E EncryptionAt rest & in transit
AuditImmutableHash + timestamp
AIGuardrailedRAG + prompt logs

Access control & identity

Least-privilege with role and attribute checks at every request.

RBAC/ABAC

Role + attribute gates

Roles (IC/UC, Analyst, Ops, PH) plus attributes (agency, clearance, location, device health) enforced server-side for every API call.

AuthN

SSO + MFA

SAML/OIDC, WebAuthn or TOTP; per-session device binding; automatic token rotation and short TTLs for privileged actions.

Session Security

Continuous validation

Risk scoring on IP/geo/device; stepped-up auth for sensitive actions (state changes, public messaging, C-UAS authorization).

Data protection & privacy

Encrypt everything. Redact by role. Retain only what you need.

Encryption

At rest & in transit

FIPS-validated ciphers; full-disk or tablespace encryption (e.g., LUKS/BitLocker/pgcrypto); TLS 1.2+ with mTLS for internal services.

Redaction

PII/CJI/PHI controls

Automatic pre/post-generation filters for LLM outputs; role-scoped views create “need-to-know” variants for the same product.

Retention

Policy-driven lifecycle

Per-type retention (intel reports vs. raw feeds); legal hold override; secure purge with cryptographic erasure and audit.

Logging, audit, and chain-of-custody

Everything is traceable — who did what, when, with which inputs.

Immutable logs

Signed & timestamped

Append-only logs with hash chaining; tamper detection; optional WORM storage for evidentiary retention.

Product lineage

Provenance on every output

Products embed source citations and a digital manifest (input files, RIFs used, model versions, operator approvals).

Alerting

Real-time monitoring

Behavioral alerts (off-hours access, mass downloads, privilege escalation) routed to your SIEM; dashboards for audits.

Deployment models & network posture

On-prem, air-gapped, or gov cloud — same zero-trust fundamentals.

On-prem

AI Command Center

Single-node or HA pair on RTX-class GPUs; offline-first; data diode for one-way export if required.

Network Zones

Segmentation

UI/API, data plane, model runners, and admin plane isolated with strict firewall rules; mTLS between services; no default egress.

Backups/DR

RPO/RTO targets

Hot/cold backups with offline copies; periodic restore drills; configurable RPO/RTO per agency policy.

Key management & supply chain

Protect secrets; verify everything.

KMS/HSM

Strong key control

External KMS/HSM support; key rotation with split duty; per-tenant encryption contexts; sealed secrets on disk.

Updates

Signed artifacts

All binaries, models, and rulesets are signed; offline update bundles with checksum verification and rollback plan.

Dependencies

SBOMs & SLSA

Software Bill of Materials for every build; provenance attestations; vulnerability advisories and backport patches.

Model governance & guardrails

Local LLMs with strict context, logging, and review.

RAG Constraints

Grounded outputs

Prompts always carry relevant Playbooks/RIFs/Mission Folders; responses must cite sources; hallucination checks before publish.

Prompt Logs

Transparent AI

Prompts, contexts, and outputs are logged with redaction where required; model/version pinned per product for reproducibility.

Human Oversight

Approval gates

State changes, public messaging, and C-UAS actions require explicit human approval with reason codes.

Incident response & change control

Be ready, practice, and prove it.

IR Playbook

Detect → Contain → Eradicate → Recover

Runbooks for auth compromise, data exposure, supply-chain event, and model config drift; tabletop and live drills scheduled.

Change Control

Tickets & approvals

All config/model/ruleset changes require tickets, reviews, and dual-control approvals; auto-export change logs to your SIEM.

AAR

Lessons baked in

Every security incident generates an AAR; corrective actions tracked to closure and codified into playbooks.

Compliance posture (mapping)

Reference controls and where they’re implemented in the platform.

Framework Relevant Areas Platform Features
CJIS Access control, audit, encryption RBAC/ABAC, immutable logs, mTLS, FIPS ciphers, retention controls.
HIPAA PHI privacy, minimum necessary, audit Role-based redaction, access logs, data lifecycle, breach notification runbook.
CUI Marking, limiting, safeguarding Labeling at file/field level, policy-driven sharing, export controls, WORM archives.
FedRAMP (IL-2/IL-5) Access, logging, encryption, config mgmt SSO/MFA, centralized logging, KMS/HSM, signed updates, baseline hardening.
NIST 800-53 / 800-171 AC, AU, IA, IR, MP, PE, PL, RA, SC, SI Zero-trust network, security plans, risk assessments, IR procedures, and SIEM integrations.
ATO-friendly

Artifacts ready

Security plan template, control matrix, SBOMs, network diagrams, backup/DR runbooks, IR playbooks.

Policy

Bring your own

Your agency policies are first-class: map their controls to the platform’s, or enforce stricter defaults.

Testing

Continuous assurance

Automated config drift checks; periodic vuln scans (offline bundles); red-team exercises supported.

Deployment hardening checklist

A quick pass before you go live.

Identity & Access

  • SSO + MFA enforced for all users
  • RBAC roles & ABAC attributes reviewed
  • Short-TTL tokens; session binding to device

Network

  • Segmented planes; deny-all egress
  • mTLS between services; pinned certs
  • Admin plane isolated & jump-hosted

Data

  • Full-disk or tablespace encryption
  • Backups encrypted & restore-tested
  • Retention policies configured per type

Logging & Audit

  • Immutable logs to WORM or SIEM
  • Alert rules for high-risk actions
  • Chain-of-custody export verified

Models & Updates

  • Model versions pinned; prompt logging on
  • Signed update bundle verified
  • Rollback plan documented

People & Process

  • IR playbook rehearsed (tabletop)
  • Dual-control for state/public/C-UAS actions
  • AAR workflow agreed with stakeholders

Need a security review?

Request the security plan template, control matrix, and network diagrams pack.

See docs Request Access