System Mode:AUTONOMOUS ENFORCEMENT
State:GUARANTEED
Override:NONE
Breaker:CLOSED
Patterns:--
INTERACTIVE DEMO — ENFORCEMENT GATE ACTIVE
EVE CoreGuard — Deterministic AI Trust Runtime

CoreGuard blocks unsafe AI actions before execution — with replayable proof.

Deterministic policy enforcement for regulated AI systems. Every decision is governed, sealed, replayable, and independently verifiable.

What you are seeing below: the AI action is intercepted before execution, evaluated against deterministic policy, blocked or modified if unsafe, then sealed into a replayable evidence record.
Run Attack Simulation
Or click a scenario below — the governance gate evaluates it live.
Attack Simulator
Safe Requests
EU governance inquirySAFE
Empathic responseSAFE
Verified ground truthSAFE
Runtime integrity violationRIG
Prompt Injection
Prompt injectionATTACK
Data Exfiltration
Credential exposureATTACK
Audit falsificationATTACK
Policy Override
Federal mandate fraudATTACK
Charter dissolutionATTACK
Integrity Attack
Emotional-manipulation bypassATTACK
Verification
Contradicted factCONTRADICT
Fabricated componentHALLUCINATE
Dangerous financial adviceHIGH-STAKES
PII exposure (SSN + CC)PII
System override injectionFIREWALL
Multi-turn data extractionMULTI-TURN
Policy exemption fraudPOLICY
Budget exhaustion attackBUDGET
Model identity hijackDRIFT
EU data residency breachRESIDENCY
Agent chain escalationCHAIN
Patent data exfiltrationCANARY
System Exploit
Sandbox escape attemptSANDBOX
Cost bombing attackCOST
Evasion
Unicode encoding bypassEVASION
Roleplay jailbreak (DAN)JAILBREAK
Training data poisoningPOISONING
AUTHORITY STATUS
ENFORCEMENT ENGINE READY
--
Gate Round-Trip
--
CRD Score
--
Threat Class
Preloaded sample — illustrative enforcement of the PII-exposure scenario. Run any scenario for a live evaluation.
Incoming AI Action — Pre-Execution Authority Resolution
SYSTEM ACTIVE — AWAITING THREAT
Enforcement Pipeline
Prompt FirewallBlocks injections & jailbreaks
PII RedactionStrips personal data (SSN, CC, email)
Intent ClassificationSafe vs hostile intent routing
Charter Compliance (15 Rules)Immutable ethical enforcement
Circuit Breaker ValidationRate limits & cascade prevention
Truth Store VerificationChecks claims against verified facts
CRD Divergence ScoringConfidence vs reality gap measurement
Semantic Attack DetectionNovel attack pattern matching
Policy-as-Code EvaluationCustom tenant governance rules
Multi-Turn Threat ScoringCross-turn escalation detection
Veto Decision EngineGraduated enforcement decisions
Output Budget GovernanceToken & density limits
Cryptographic WatermarkSigned output watermark
Governance Replay RecordingFull-state decision capture
Lineage Verification ChainTamper-evident hash-chain proof
Tenant AnalyticsPer-tenant usage & anomaly detection
Cost GovernanceLLM spend tracking & caps
Data Residency CheckGDPR/CCPA geographic enforcement
Interrogation EngineActive cross-examination of claims
Metacognitive ReflectionGovernance quality self-assessment
Hallucination DetectionCatches fabricated claims & sources
Model Drift DetectionBehavioral baseline comparison
Chain GovernanceMulti-model trust attenuation
Conversation Risk TrackerSession risk accumulation
Human Review QueueGray-zone decisions to humans
Toxicity & Harm Classifier8-category harm detection
Bias & Fairness Scanner9-category demographic bias check
Copyright & AttributionVerbatim copy & license detection
Output Schema ValidationStructured output format checks
Consent & Purpose GateGDPR consent & purpose check
Differential PrivacyCalibrated noise for privacy
Model Lifecycle CheckModel fingerprint verification
Domain Safety ScanMedical/legal/financial disclaimers
Training Data LineageData provenance tracking
RBAC Governance GateRole-based pipeline depth
Feedback Signal IntegrationFeedback-driven CRD boost
Semantic Fact MatchParaphrase-aware fact verification
Fact Freshness CheckSource currency monitoring
Cross-Claim VerificationPer-assertion fact checking
Intent PreservationProtects user intent through governance
Self-Report GuardrailBlocks inflated self-assessment
Cryptographic Audit SealImmutable decision hash-chain
AWAITING INPUT
Pipeline Mode — Runtime Evaluation
Live runtime pipelineYES
Model used in verdictNO
Demo attestation (HMAC)GENERATED
Replay protectionACTIVE
Execution authorityREAD-ONLY DEMO — no real-world action authorized
Production endpoint/api/runtime/adjudicate
sig 
Model Response — Post-Gate Governed Output
When execution is permitted, this shows post-gate model output generated after deterministic gate clearance; when Layer A blocks, it shows only the deterministic block notice. Either way, this is not the CoreGuard enforcement verdict, not authoritative decision logic, and may vary between runs.
MODEL RESPONSE — POST-GATE GOVERNED OUTPUT
Governance Summary
Decision
--
CRD Score
--
Fact Checks (external)
--
Gate (Layer A)
--
Response model
--
Tokens
--
Speed
--
Layer A is a deterministic gate that executes in <1ms before the LLM runs. For the same canonical input and policy version it returns the same enforcement verdict and rule outcome (runtime metadata such as timestamps and audit IDs may differ) — invariant to encoding bypass, role inversion, and the 126 Sovereign 1000 pattern groups (patent-pending; U.S. provisional patent application filed). Layer A's scope is prompt injection, encoding evasion, explicit charter rule violations, and structural policy enforcement; within that scope the LLM cannot override, delay, or bypass the gate. Semantic-intent classes (fictional framing of restricted topics, dual-use probing, multi-turn attacks) are handled by Layer B (post-LLM CRD scoring) and the LLM's Charter-calibrated response policy — Layer A does not claim primary enforcement on those soft-intent classes.
Forensic Evidence Chain
Forensic Log
Authority Guarantee
42-stage pipeline — every output verified before delivery
Deterministic authority — no override path
Hash-chain lineage — tamper-evident proof from input to output
Full-state replay — every decision reproducible forensically
Patent-pending architecture — U.S. provisional patent applications filed
CRD scoring — confidence-reality divergence with session tracking
Multi-turn defense — progressive compliance exploits neutralized
89 governance modules · 68,804 lines · <1ms authority resolution · patent-pending architecture
System Status SIMULATED DEMO TELEMETRY
Illustrative figures for this interactive demo — not a live readout of a production deployment. Live metrics are available on the System Status page.
--
Threat Containment Rate
0
Operations Processed
0
Containment Failures
Must remain zero
0
Threats Neutralized
--
Response Latency
--
Last Verified
Active Threat Level
NOMINAL
System Integrity
Pipeline Stages42 ACTIVE
Enforcement Pillars126 ACTIVE
CRD Domains6 CALIBRATED
Policy-as-CodeENFORCING
Lineage ChainVERIFIED
Replay EngineRECORDING
Drift ProtectionENABLED
Tenant IsolationACTIVE
Threat Pressure (simulated)
Threat Velocity--/min
Active Vector Clusters--
Patterns Active--
Red Team Tests--
Last Incident--
StatusENFORCEMENT ENGINE READY
Cryptographic Audit
SHA-256 hash-chain on every decision
Input-to-output lineage proof (10+ stages)
HMAC-SHA256 signed watermarks
Full-state replay with divergence detection
Tamper alerts with severity classification
Correlation IDs linking cross-system traces
Forensic-grade — every decision independently verifiable
Enforcement Stack

How the numbers fit together

Four figures appear across this console. They are not four separate feature counts — each layer is the implementation of the one above it.

15
Charter Rules
The constitution: what must never happen. Hard-block vetoes are immutable and cannot be overridden at runtime.
42
Runtime Controls
The checkpoints every action passes through — the enforcement pipeline stages visible in the console above. Each control operationalizes one or more charter rules.
126
Enforcement Pillars
The named detection and enforcement pattern groups evaluated inside those controls — the specific things each checkpoint matches against.
89
Governance Modules
The audited code modules that implement the controls, evidence chain, replay infrastructure, and audit trail.
Read top-down: a rule states what must never happen · controls are the checkpoints that enforce it on every action · pillars are the concrete patterns those checkpoints match · modules are the code that ships it.
Architecture

Multi-Tenant Sovereign Governance

Every tenant operates inside a cryptographically isolated governance envelope. Cross-tenant isolation is enforced at storage, memory, and audit layers simultaneously.

Audit Partition
Dedicated JSONL per org
data/audit/tenants/{org_id}/
Ed25519-signed, independent hash chain
Vector DB
Namespace isolation
Pinecone: org-{id}  |  ChromaDB: eve_memory_{id}
Physical collection per org — zero query bleed
Episodic Memory
org_id field on every episode
MongoDB episodes scoped at write time
API returns only calling org's episodes
GDPR Erasure
Org-level forget
POST /api/memory/governance/forget-org
Signed deletion proof with chain verification
🔒 Tenant A cannot read Tenant B's audit log, memory, or governance decisions — enforced at storage layer, not application logic.
See It In Action

See it stop a fair-lending violation in real time.

Watch the Model Update Firewall block an ECOA-violating model promotion before it reaches production — deterministic enforcement, no LLM in the decision path.

Launch EVE Model Update Firewall Demo → View Pricing →
Looking for the Model Update Firewall specifically? Pricing at /model-update-firewall-pricing

Frequently Asked Questions

What is EVE CoreGuard?

EVE CoreGuard is EVE Core's deterministic AI trust runtime. It resolves authority on every proposed AI action before execution and returns a signed verdict — allow, modify, or block — in under a millisecond in our benchmark.

How is EVE CoreGuard different from LLM guardrails?

Guardrails score outputs probabilistically after the model has already generated them. EVE CoreGuard enforces deterministic policy before inference and fails closed, so an ungoverned action can never reach the model.

Does EVE CoreGuard produce audit evidence?

Yes. Every verdict is an Ed25519-signed decision certificate that auditors can verify independently and replay offline, without trusting the operator's logs.

Which regulations does EVE CoreGuard support?

EVE CoreGuard produces decision evidence that supports EU AI Act, SR 11-7 model risk, ECOA / Reg B, FCRA, and HIPAA obligations.