Product / Citadel

Citadel: Trust and Admission Control for Deterministic Execution.

Citadel verifies origin, enforces policy boundaries, and controls the sealing path before any workload reaches runtime execution.

Start Building View Architecture API Contract Request Security Review

Trust context: ACTIVE

Policy scope: LOADED

Seal authority: READY

Admission pipeline: HEALTHY

Invalid workloads are rejected before runtime admission. Citadel blocks bad input before execution can start.

Citadel Gate System

Reject Before Runtime

Simulation phase: Origin request enters admission chain

Invalid workloads are cut before engine admission and never reach runtime execution.

Trust Flow

How Citadel controls trust flow.

Trust Context

Key context: ACTIVE

Verification scope: TENANT_A

Origin Verification

Origin: VERIFIED

Admission status: PASSED

Policy Boundary

Environment policy: MATCHED

Cross-boundary escalation: BLOCKED

Commit and Seal

Commit path: CONTROLLED

Seal state: AUTHORIZED

Verified Return

Approximation: REJECTED

Return state: VERIFIED

Why Citadel Exists

Deterministic execution is not enough without deterministic admission.

Axis

Without Citadel

With Citadel

Validation model

Best-effort checks with weak admission guarantees

Strict admission checks before runtime execution

Trust scope

Mixed trust context across tenants and environments

Explicit trust scope with enforced boundary controls

Return model

Uncontrolled return path with weak verification

Verified return only through controlled seal path

Core Layers

Policy gate, trust layer, sealing layer.

Policy Gate

Nothing enters runtime without policy-valid admission checks.

- Tenant rules enforced
- Environment rules enforced
- Untrusted workload blocked

Trust Layer

Trust context is explicit, scoped, and continuously enforced.

- Key and signature context bound
- Verification scope declared
- Admission record traceable

Sealing Layer

Finality is controlled through commit and seal authority.

- Commit review required
- Seal authorization required
- Verified output only

Control Boundaries

Citadel enforces boundaries before trust can be violated.

Tenant Boundary

Separates workloads and trust scope across tenant partitions.

Environment Boundary

Maintains strict separation between production and non-production policy scopes.

Signing Boundary

Defines who can authorize signatures and under which policy conditions.

Return Boundary

Only policy-valid and sealed results can leave the trust domain.

Citadel Verification Record

Trust Valid

Admission Record // Trust Verification v1

record_timestamp2026-03-19T12:08:22Z

Origin IdentityVERIFIED

policy_idcitadel-prod-v3

Admission PolicyPASSED

Tenant ScopePRODUCTION_A

verification_hash7A91...B3F1

Seal AuthorityACTIVE

Commit StateAUTHORIZED

Return StatusVERIFIED

Security Review Focus

Designed for teams that review trust models before deployment.

Security Architecture

Review signing authority, trust boundaries, admission policy, and controlled return behavior.

Platform Governance

Map tenant and environment partitioning to operational governance requirements.

Compliance Review

Map verification records to auditable trust control points before deployment.

Review the trust boundary before you deploy the execution boundary.

Request Security Review View Architecture

Preparing deterministic execution surface.

Restoring policy context, topology constraints, and proof pipeline metadata.

Validate

Route

Seal