Regulated entities — banks, trust authorities, sovereign wealth funds — now face three simultaneous pressures: AI-driven decisions that must be auditable under the EU AI Act, cryptographic foundations that must survive the post-quantum transition, and compliance infrastructure that cannot depend on intermediaries whose interests diverge from yours. Vauban is built to answer all three: private by default, post-quantum proof systems, no intermediary in the settlement path.
The architecture is chain-agnostic by invariant — deployable across public blockchains, permissioned networks, or conventional web infrastructure — with no vendor lock-in by design. Current proof system: ZK-STARK, hash-based, post-quantum-secure, no trusted setup, Starknet-anchored.
Why Vauban
The compliance, sovereignty, and AI-accountability requirements that regulated entities will face in 2030 are already knowable. Vauban is built backwards from those requirements — not forward from what is commercially convenient to ship today. We verify. We prove. We show our work at cryptographic precision.
Most production zero-knowledge systems today rely on elliptic-curve assumptions that a cryptographically-relevant quantum computer breaks. Vauban's proof stack uses ZK-STARKs: hash-based, post-quantum-secure by construction, with no trusted setup and no ceremony risk. Compliance attestations issued today remain cryptographically verifiable in 2035, regardless of advances in quantum hardware. Your audit trail does not deprecate.
When an AI agent makes a recommendation, executes a transaction, or produces a compliance assessment under EU AI Act Article 12, regulators may require an audit trail that cannot be retroactively altered. Brain Protocol anchors every AI decision chain with a Poseidon-hashed Merkle root, published on-chain. Every knowledge entry consulted, every reasoning step, every output is replayable and independently verifiable — not by policy, by cryptographic proof.
EUDI Wallet and eIDAS 2.0 require identity assurance at Substantial and High levels — without centralising biometric data under a single custodian. Glacis Protocol delivers verifiable personhood via STARK proofs of ICAO CSCA passport data: the verifier learns the minimum required by compliance (age range, uniqueness) and nothing more. Personal data never touches the chain. V2 trustless live on Starknet mainnet ; 83 countries supported ; ~5.24 BILLION users supported (~65% of global passport-eligible population). Schengen core + UK, Turkey, Ukraine, Balkans, micro-states, plus USA, India, China, Brazil, Japan, Australia, South Korea, Malaysia, Russia, and more. Designed for regulated onboarding, sovereignty-grade KYC, and EU Digital Identity Wallet integration.
Institutional participation in decentralised finance has been structurally blocked by one unsolved problem: compliance requires knowing your counterparty, but DeFi mechanics assume pseudonymous participants. Bastion resolves this through verified transaction claims — STARK-backed attestations satisfying AML and MiCA requirements without routing assets through a custodian. Vault management and solver execution run directly on Starknet mainnet, with every action cryptographically receipted.
Venture capital introduces a structural conflict in sovereignty infrastructure: the pressure to grow user numbers quickly degrades the security posture and institutional credibility that make a system worth trusting. Vauban is bootstrapped by design. Walk-away discipline: no institutional relationship accepted below threshold. No obligation to compromise cryptographic architecture to close a round. Governance decisions logged publicly.
A proprietary standard for cryptographic claims is a vendor dependency, not a trust anchor. Vauban has filed an IETF Internet-Draft to standardise the Vauban Claim Algebra specification, following the precedent of RFC 9449 (DPoP) and the W3C Verifiable Credentials framework. Every published SDK tarball is supply-chain-signed via Sigstore, with verification bundles recorded in the public Rekor transparency log. You can verify what you depend on.
Four interdependent layers, each independently sovereign. Each can be audited, operated, or replaced without disrupting the others. The stack is a consequence of the claim-algebraic design — not an integration: each layer produces and consumes cryptographically verifiable claims in a shared grammar.
Brain Protocol — verifiable cognitive infrastructure, open agent standards, cryptographic provenance on every decision
AI-augmented decisions cannot be trusted in regulated contexts unless every step of the reasoning chain is provable. Brain Protocol provides institutional-grade memory for AI systems: every knowledge retrieval, every decision, every pattern consulted is Poseidon-hashed, Merkle-anchored on-chain, and replayable. Designed for environments where hallucination is not merely a quality problem — it is an EU AI Act Article 22 liability.
Command Center — 5 AI agents, every action signed + audit-logged + on-chain anchored
Autonomous agents that act without cryptographic accountability are undeployable in regulated environments. Command Center answers three questions that conventional agent observability tools do not pose: what did each action cost in outcome terms, not token terms? Who approved it? Can you prove it? Every agent action produces a RunProofCertificate — a signed, on-chain-anchored attestation of the full decision-execution chain, independently verifiable by auditors and regulators.
Vauban Claim Algebra (VPSF) — composable claim grammar above any settlement layer, Starknet-anchored today
Cryptographic compliance claims from different systems — identity attestations, financial transaction proofs, AI decision receipts — cannot be composed without a shared grammar. The Vauban Claim Algebra provides that grammar: chain-agnostic by invariant, with no blockchain-specific types in the core specification. Claims compose algebraically across products and settlement layers. Current reference implementation anchored on Starknet via ZK-STARK proofs.
Bastion (DeFi mainnet), Glacis (post-quantum PoH ; 83 countries mainnet ; ~5.24B users), Vauban Finance (wealth tech), and more
The claim algebra is not theoretical. Bastion runs institutional DeFi vault management on Starknet mainnet today — verified transaction claims, ZK-anchored settlement, STARK proof of solver execution. Glacis delivers ICAO-rooted identity attestations for EUDI Wallet integration ; V2 trustless live ; 83 countries ; ~5.24 BILLION users supported (~65% global). Vauban Finance produces AI Act-compliant audit trails for wealth management recommendations. These are running systems, not proofs of concept.
Vauban Agent SDK
The open-source toolkit for institutional AI agent development. Every action signed. Every memory cryptographically anchored. Every decision audit-replayable.
Agent frameworks built for developer productivity treat audit as an afterthought — observability dashboards, token counts, latency traces. None of this satisfies a regulator asking 'prove to me that this AI recommendation was grounded in verified data and approved by an accountable human.'
The Vauban Agent SDK makes cryptographic accountability the default, not the exception. Every run produces a RunProofCertificate: a signed, Poseidon-hashed decision chain anchored on-chain, independently verifiable without access to Vauban infrastructure. HITL (Human-in-the-Loop) approvals are themselves cryptographically signed, so the approval chain is as auditable as the action chain. Brain Protocol integration means every knowledge entry consulted by an agent carries its own provenance — no hallucination can silently enter the decision chain without leaving a cryptographic trace.
Supply chain: every published SDK tarball is Sigstore-signed with a Rekor transparency log entry. You can verify the build provenance, the SBOM, and the OIDC identity of the signing workflow before deploying to a regulated environment.
Key capabilities
Each Vauban product is an independently sovereign layer — its own cryptographic boundary, its own audit trail, its own deployment footprint. For institutional adopters, this means you can integrate a single capability (AI memory provenance, identity attestation, DeFi compliance) without committing to the full stack, then extend as requirements evolve. Every product produces and consumes claims in the shared Vauban Claim Algebra grammar.
Platform infrastructure
Verifiable Cognitive Infrastructure for AI agents
Institutional memory for AI systems. Every knowledge retrieval, decision chain, and contradiction resolution is Poseidon-hashed, Merkle-anchored, and audit-replayable. Open agent standards. Designed for environments where hallucination is an EU AI Act liability.
Post-quantum Proof of Humanity ; 83 countries ; ~5.24 BILLION users
ICAO CSCA-rooted identity attestations backed by STARK proofs. V2 trustless live on Starknet mainnet. 83 countries with CSCA registered: 🇫🇷🇩🇪🇬🇧🇺🇸🇯🇵🇨🇳🇮🇳🇧🇷🇰🇷🇷🇺🇲🇾🇻🇳🇦🇷🇨🇴🇵🇱🇨🇿🇩🇰🇧🇬🇦🇪🇴🇲 + 62 more — ~5.24 BILLION users supported (~65% global). Schengen core + UK, Turkey, Ukraine, Balkans, and micro-states ; plus USA, India, China, Japan, Brazil, Australia, South Korea, Russia, Malaysia, and major emerging markets. eIDAS 2.0 and EU Digital Identity Wallet aligned. Zero personal data on-chain ; only nullifier and age-range attestation.
Wealth tech for institutional and high-net-worth clients
Institutional portfolio analytics and AI-assisted wealth optimisation with EU AI Act Article 12 audit trail on every recommendation. Via accredited intermediaries — no retail self-service.
Autonomous agent orchestration with cryptographic accountability
Outcome-level accountability for AI agent operations — not just telemetry. Every run produces a signed RunProofCertificate: cost, approval chain, decision trace, and on-chain anchor. Built for CTOs and Heads of AI in regulated environments.
Sovereign governance and community tooling
Community governance tooling — Discord integration, on-chain voting, and reputation management. Self-hosted, open governance. Operates under the Vauban institutional umbrella.
DeFi products
Institutional DeFi vault — verified settlement, ZK-anchored
The reference production deployment of Vauban Claim Algebra for verified financial transaction claims. Solver-based CoW execution on Starknet mainnet. STARK proof of solver execution and non-discriminatory matching — publicly verifiable, every batch. Institutional vault management and DeFi compliance without custodial intermediaries.
Cryptographic proof layer for regulated AI and agent payments
Post-quantum STARK proof of payment conditions for x402-native flows. Designed for EU AI Act Article 12 logging obligations and MiCA Article 76 record-keeping. Phase 0 spec track on the Linux Foundation x402 working group ; four-actor coalition with FeedOracle (hybrid post-quantum signatures), andysalvo (work-receipt binding), and AlgoVoi (JCS substrate determinism) ; reproducible interop fixtures published across Rust, Python, Node.js, Go, Java.
The Vauban Proof Stack Framework (VPSF) defines a composable claim algebra — a chain-agnostic formal grammar for cryptographic claims that operates above any settlement layer. The core specification contains no blockchain-specific types: chain adapters implement the grammar for each target environment. Today's reference implementation anchors on Starknet via ZK-STARK proofs — hash-based, post-quantum-secure, no trusted setup.
The architecture preserves institutional sovereignty at the specification level: no vendor lock-in by invariant, not just by policy. Claims produced today against Starknet are consumable by future adapters targeting other settlement environments. An IETF Internet-Draft to standardise the Vauban Claim Algebra is in preparation, following the precedent of RFC 9449 (DPoP) and W3C Verifiable Credentials.
VPSF is chain-agnostic by invariant. Starknet is the premium technical partner and current reference implementation (ZK-STARK, no trusted setup).