The MEOK Dome

8 Layers of Sovereign Trust

Every layer is wired into the SOV3 substrate and can be inspected, audited, and verified offline. The Dome is the architectural view of what meok.ai runs on.

Layer 0 (CSOAI Council) is the certifying body that watches the Dome. Visit csoai.org →

🪪

Layer 1

Identity

Every AI agent has a signed sovereign identity — Ed25519 keypair, registered with the SOV3 trust registry, revocable on consent withdrawal.

Components

sovereign-keygenidentity-registrykey-revocationpassport-mint

📜

Layer 2

Certification

Auditable, regulator-recognised safety certs. CSOAI Watchdog Cert is the only AI safety cert with offline-verifiable Ed25519 signatures.

Components

watchdog-certceasai-auditarticle-50-attestscorecard-public

⚖️

Layer 3

Policy Engine

Runtime policy enforcement, not just assessment. PolicyEnforcementEngine <50ms/eval. PDCA cycle. Every action is checked before execution.

Components

policy-enginepdca-loopblock-on-violationexplainability

🌍

Layer 4

Cross-Regional

Region-aware: EU, UK, US, CA, APAC. Jurisdiction detection, regulation router, sovereign routing for data residency.

Components

jurisdiction-routerregion-selectordata-residencylaw-mapper

💳

Layer 5

Payments

Sovereign billing with signed receipts. 26 Stripe products, agent-to-agent x402 micropayments, multi-currency settlement.

Components

stripe-prodx402-routersigned-receiptsmulti-currency

🔍

Layer 6

Audit

Immutable hash-chain audit log. Every event signed. Every signature anchorable. Regulator-pullable.

Components

hash-chained25519-anchorregulator-exporttemporal-proof

🫂

Layer 7

Human Loop

Mandatory human oversight for high-stakes decisions. Care validation, dignity checks, maternal covenant enforcement.

Components

human-in-loopcare-validation-nndignity-checkmaternal-covenant

🧱

Layer 8

Legacy

COBOL/legacy bridge with signed parity proofs. Migrate mainframe systems to modern AI without breaking compliance.

Components

cobol-bridgeparity-proofmigration-runnerlegacy-cert

Cross-cutting substrates

The 8 layers are wired together by 5 substrate marketplaces — A2A, Governance, COBOL, BFT Council, and the Full Marketplace (255+ MCP servers).

20 MCPs

A2A Substrate

£999/mo

13 MCPs

Governance Substrate

£499/mo

Legacy bridge

COBOL Substrate

£499/mo

5 voters

BFT Council

£499/mo

255+ MCPs

Full Marketplace

Free tier

Frequently asked

What is the MEOK Dome?

The MEOK Dome is the 8-layer sovereign trust architecture that meok.ai runs on: Identity, Certification, Policy Engine, Cross-Regional, Payments, Audit, Human Loop, and Legacy. Every layer is wired into the SOV3 substrate and can be inspected, audited, and verified offline.

How does the Policy Engine enforce rules at runtime?

Layer 3 is the PolicyEnforcementEngine — runtime enforcement, not just assessment. It evaluates every action in under 50ms per eval, runs a PDCA loop, blocks on violation before execution, and produces explainability for each decision.

How can a regulator verify the audit trail?

Layer 6 (Audit) is an immutable hash-chain log where every event is signed with Ed25519 and anchorable. Logs are regulator-pullable and exportable with temporal proof, so any signature can be verified offline without trusting MEOK's servers.

How do I inspect a specific layer?

Every layer is exposed as a REST endpoint on meok.ai/api and as MCP tools on the MEOK_MCP server (port 3102). The full MCP fleet of 340+ servers is also available, and CSOAI Council provides council-led architecture reviews at csoai.org.

How to inspect a layer

Every layer is exposed as a REST endpoint on meok.ai/api and as MCP tools on the MEOK_MCP server (port 3102). The full MCP fleet (340+ servers) is also available.

For a council-led review of the architecture, see csoai.org · For signed attestations, see proofof.ai · For governance policies, see councilof.ai

CSOAI

Initializing...

Cross-cutting substrates

The 8 layers are wired together by 5 substrate marketplaces — A2A, Governance, COBOL, BFT Council, and the Full Marketplace (255+ MCP servers).

20 MCPs

A2A Substrate

£999/mo

13 MCPs

Governance Substrate

£499/mo

Legacy bridge

COBOL Substrate

£499/mo

5 voters

BFT Council

£499/mo

255+ MCPs

Full Marketplace

Free tier

Frequently asked

What is the MEOK Dome?

How does the Policy Engine enforce rules at runtime?

How can a regulator verify the audit trail?

How do I inspect a specific layer?

How to inspect a layer

Every layer is exposed as a REST endpoint on meok.ai/api and as MCP tools on the MEOK_MCP server (port 3102). The full MCP fleet (340+ servers) is also available.

For a council-led review of the architecture, see csoai.org · For signed attestations, see proofof.ai · For governance policies, see councilof.ai