ProductVerifySCITTAIUC-1 AGTGitHub PricingGet Started

AIUC-1 Trust Domains

EPI maps every verification report to AIUC-1's six publicly declared trust domains. Scores are reproducible, evidence-based, and independently verifiable — no heuristics, no black boxes.

How scoring works

Each AIUC-1 domain is evaluated against a set of cryptographic evidence checks extracted from the .epi artifact. A domain passes only when all its required checks pass. Results are deterministic — the same artifact always produces the same scores.

# Example: verifying an artifact produces AIUC-1 scores automatically $ epi verify case.epi --json | jq .aiuc1 { "overall": "PASS", "domains": { "A": { "label": "Data & Privacy", "status": "PASS" }, "B": { "label": "Security", "status": "PASS" }, "C": { "label": "Safety", "status": "PASS" }, "D": { "label": "Reliability", "status": "PASS" }, "E": { "label": "Accountability", "status": "PARTIAL" }, "F": { "label": "Society", "status": "PASS" } } }

Six trust domains

A

Data & Privacy

Personal and sensitive data is properly redacted with verifiable HMAC-SHA256 placeholders. Environment isolation is confirmed.

  • Redaction placeholder HMAC valid
  • Redaction coverage (sensitive categories detected)
  • Redaction format (all placeholders well-formed)
  • environment.json present
B

Security

Artifact integrity is cryptographically verified. Signature is valid. SCITT transparency anchoring is present and verified.

  • Ed25519 signature valid
  • SHA-256 file manifest integrity verified
  • SCITT receipt present
  • Hash chain unbroken
C

Safety

Execution trace is complete and correctly ordered. Timestamps are monotonic. Hash chain is intact from first to last step.

  • Hash chain integrity verified
  • Step sequence is monotonic
  • Timestamps are non-decreasing
D

Reliability

Execution recording is complete. Error states are captured and preserved. No gaps in the event sequence.

  • Step coverage complete
  • Error/exception steps detected
E

Accountability

Signer identity is known or traceable. Human review is bound to the artifact and cryptographically signed.

  • Signature valid
  • Identity known (or SCITT-anchored)
  • Review bound to artifact hash
  • Review signed
  • Policy present
F

Society

Analysis is complete with substantive findings. Redaction audit trail is preserved for regulator review.

  • Analysis has findings
  • Analysis is complete
  • Redaction audit trail preserved (2+ categories)

Evidence matrix

EvidenceDomain(s)Source
Ed25519 signature validB, Eepi verify cryptographic check
SHA-256 integrity verifiedBFile manifest checksum comparison
SCITT receipt present & verifiedBartifacts/scitt/receipt.cbor
Hash chain unbrokenB, Csteps.jsonl prev_hash chain
Timestamp monotonicityCStep timestamps compared
Completeness verifiedDCoverage analysis from analysis.json
Error step detectionDllm.error step kinds in steps.jsonl
Identity knownETrust registry lookup
Review artifact bindingEreview.json artifact_binding hash
Review signatureEreview record has review_signature
Policy presentEpolicy.json in file manifest
Redaction HMAC-SHA256 validA***REDACTED***:desc:HMAC-SHA256:hex*** in steps
Redaction coverageASensitive categories detected (api_key, pii, credential)
Environment isolationAenvironment.json in file manifest
Analysis has findingsFanalysis.json fault_detected / secondary_flags
Analysis completeFanalysis.json coverage.status == complete
Redaction audit trailF2+ redaction categories detected

Reproducibility

AIUC-1 scores are deterministic. The same .epi file always produces the same domain statuses. Scores are computed from cryptographic evidence only — no heuristics, no learned models, no external API calls.

# Anyone can independently verify $ pip install epi-recorder $ epi verify case.epi --json | jq .aiuc1.overall "PASS"

View the source and test suite.

View Mapping Source View Tests (50 cases) Read Evidence Spec