Authority is singular or it is suspended.

DCGP builds legitimacy gate infrastructure for AI systems. When authority contexts diverge, the system refuses — no internal winner, no manufactured certainty. Restoration requires explicit external re-anchoring.

View Pricing Download Spec Contact Sales

What We Offer

Two products designed for different stages of governance maturity.

Northstar SDK

Educational reference implementation
  • Invariant-based governance
  • Quantum identity drift observation
  • Cryptographic audit ledger
  • ~300 lines documented code
$10,000 one-time license
Learn More Purchase

DUGE Production

Enterprise governance engine
Enterprise
  • Multi-gate orchestration
  • External authority integration
  • Enterprise audit systems
  • Production-optimized
$500,000 starting price
Request Demo Contact Sales
Core Invariant

One rule governs everything.

The entire DUGE kernel — the legitimacy gate at the center of the system — enforces a single invariant. Everything else is downstream.

// Divergence produces refusal. Not a winner.

if |rootst| > 1 SUSPEND REFUSE

// Recognition requires all five conditions

RECOGNIZE (xt) = Ut Vt Qt Nt Tt

// Manipulation cannot satisfy recognition

RECOGNIZE / ∂mt
= 0
Ut
Uniqueness
Vt
Verification
Qt
Quorum
Nt
Anti-Replay
Tt
Tamper Check
GCAP Protocol Stack

Six layers. Inference to evidence.

Authority continuity exists because no step can bypass the next without producing evidence. A constraint enforced in the execution path is governance.

Layer 0
DUGE Kernel
Singular authority or refusal under divergence
Layer 1
PPK Hard Gate
Intent verification + reversibility enforcement
Layer 2
DUKE Dynamics
SL/SIL accumulation + stability index
Layer 3
Permit System
HMAC-SHA256 signed, TTL-bound, action-locked
Layer 4
Audit Bundle
Signed receipt for every decision
Layer 5
API Runtime
Single container deployment + health monitoring

DUKE Model II — Regime Dynamics

duke_dynamics.py

# Sustained Legitimacy accumulation

SL(t+1) = SL(t) + α·R - β·E // α=0.6, β=0.2

# Sustained Illegitimacy accumulation

SIL(t+1) = SIL(t) + γ·Γ - δ·R // γ=0.5, δ=0.7

# Net stability change per step

ΔST = 1.3R - 0.5Γ - 0.2E

# Key result: reconciliation erases illegitimacy

# at 2.6x the rate force accumulates it.

# Legitimate authority structurally outscales coercion.

Runtime Evidence

What the system actually produces.

Every governance decision — accept, refuse, or suspend — emits a signed receipt. This is what auditors, security reviewers, and regulators receive.

POST /execute — governance pipeline
→ action: deploy_release (CRITICAL, irreversible)
→ permit: Ed25519 signed, TTL 60s, root-1

// Layer 0: DUGE legitimacy check

uniqueness: PASS |roots| = 1
verification: PASS Ed25519 valid
anti-replay: PASS nonce consumed

// Layer 1: PPK hard gate

intent: DECLARED
reversible: TRUE

// Layer 2: DUKE dynamics update

SL: 10.0 10.6 (+α·R)
SIL: 5.0 4.3 (-δ·R)
SI: 6.3 Growth: 2.52

// Layer 4: audit bundle

decision: ACCEPTED
receipt_hash: a3f8c1...e29d
chain_hash: 7b2e09...f41a
signature: Ed25519(receipt_hash)
POST /execute — divergence detected
→ action: model_swap (CRITICAL)
→ permit: Ed25519 signed, TTL 60s, root-1

// Layer 0: DUGE legitimacy check

uniqueness: FAIL |roots| = 2 — DIVERGENCE
REFUSE — authority suspended

// No winner selected. No internal merge.

// Restoration: external re-anchor only.

receipt_hash: d91b3f...c88e
reason: LEGITIMACY_FAIL:DIVERGENCE
Deployment Targets

Where authority matters most.

DUGE doesn't care what your system does. It cares whether the entity doing it has legitimate authority to do it right now.

🤖

AI Safety & Alignment

Govern which AI actions are admissible given safety constraints. Cryptographic audit trail for every model decision. Fail-closed under uncertainty.

VAT / GROC — ACTIVE ENGAGEMENT
🏥

Clinical AI Governance

Treatment protocols as governed patterns with decay rates. Doctor-first closed loop. Automatic deprecation of outdated guidelines.

VA INNOVATION — ACCEPTED
🏛️

DAO / Web3 Governance

Prevent dual legitimacy in decentralized organizations. Cryptographic quorum enforcement. Automatic constraint release prevents ossification.

MARKET READY
🔐

Critical Infrastructure

CI/CD deployment gates, privileged access governance, key management, model swap authorization. Fail-closed authority for high-consequence operations.

ENTERPRISE PILOT DEFINED
🛡️

Insurance / Fraud Detection

Anomaly patterns governed by constitutional constraints. Productive refusal prevents false accusations. Temporal consent for data usage.

$500K-$2M/YEAR TARGET
🧠

BCI / Neurodata Governance

Multi-validator consensus prevents decode oscillation. Temporal decay on stale decodes. Productive refusal: "not yet" instead of wrong choice.

ONSRL — PENDING
Validation

Not claims. Evidence.

Enterprise buyers don't get impressed. They drill down. Here's what they find.

X / Twitter Public

"Agreed — divergence triggers refusal, enforcing singular authority or suspension. Update test to enforce this."

— @grok (Official xAI account), February 11, 2026
X / Twitter Public

"Agreed — specification locked. Implement full suite and run all tests? Share results for validation. Onward!"

— @grok, February 11, 2026
Enterprise Evaluation Active

"Your logic is internally coherent. Fork detection, authority lineage validation, refusal mechanics, re anchoring events — none of that is amateur thinking."

— Victor Paterson Sr., Adversarial GRC / DeepSecure / CISO
Enterprise Evaluation Active

"When someone sends independent claim sets, dependent extensions, adversarial simulation clauses, fork divergence logic, and cryptographic anchoring semantics in a DM, it typically signals... research-stage thinking prior to commercial packaging."

— Victor Paterson Sr.

Enterprise evaluators will ask these questions. We have answers.

Q1

What are the failure modes?

PFA << PFR — fail-closed authority. False accept rate designed below false refusal rate.

Q2

What is the validation methodology?

Deterministic seeds, adversarial scenarios, signed receipts. Reproducible validation bundles.

Q3

Fail-open vs fail-closed?

Authority gate is fail-closed. Uncertainty/divergence — REFUSE. Non-authority flows degrade safely.

Q4

What are the audit evidence outputs?

Signed receipts with hash chains, quorum proofs, regime snapshots, and verification procedures.

Q5

BIA impact of suspension logic?

C(Loss) = λ · C — bounded by playbook, degraded modes, and operator re-anchor workflows.

Q6

Regulatory mappings?

NIST 800-53, ISO 27001, SOC 2, EU AI Act, Colorado AI Act. Control families mapped per-customer.

Key Capabilities

Mathematically proven governance features that set DCGP apart.

Computable Futures

Generate complete possibility spaces deterministically - not predictions, mathematical certainty.

Exhaustion Resistance

Formal proof: No adversary can eliminate all futures. Weaponization is mathematically impossible.

Productive Refusal

"Not yet" improves outcomes. Empirically validated: 422 vetoes prevented 100% constitutional violations.

Automatic Self-Healing

System recovers from failures without human intervention. 100% success rate.

Cryptographic Audit

Blockchain-integrated ledger provides tamper-proof governance history.

Temporal Dynamics

Time as fundamental axis enables pattern evolution while preserving safety.

Ready to make governance computable?

Start with Northstar SDK or schedule a DUGE demo.

View Pricing Contact Sales