AI Decision Evidence

How EVE Proof works

EVE Proof is the evidence plane of the EVE control-plane stack. It sits downstream of enforcement — it cannot change a verdict, only witness and attest it. Here is the full path from a decision to a record an examiner can verify themselves.

Verify a CertificateSee the API & SDK
Architecture

Where the evidence comes from

Three planes, one direction of flow. Governance decides, CoreGuard enforces, EVE Proof attests — each plane independent and auditable.

PLANE 01 · CONTROLEVE GovernancePLANE 02 · ENFORCEMENTEVE CoreGuardPLANE 03 · EVIDENCEEVE Proofevaluate actionallow / block / modifysign · chain · aggregateOUTPUTSigned · replay-verifiable · offline-checkable certificate → Merkle-anchored evidence pack

EVE Proof sits downstream of enforcement. It cannot change a verdict — only witness and attest it.

The Lifecycle

Decide → sign → chain → aggregate → verify

ApplicationCoreGuardEVE ProofAuditorevaluate(action)deterministic verdictverdict + reason → sign (Ed25519)hash-chain + Merkle aggregatecertificate + evidence packverify offline (public key only)
Step by Step

Five stages, one certificate

1

Deterministic evaluation

The governance layer evaluates the proposed action against a named, versioned policy and returns a verdict with a reason code — the same inputs always yield the same result.

2

Sign at issue

The verdict, policy id, request digest and timestamp are canonicalized (RFC 8785) and signed with Ed25519. The private key never leaves the signer.

3

Hash-chain

Each certificate references the prior record by hash, so removing or reordering a decision is detectable.

4

Merkle-aggregate

Certificates are batched into a Merkle tree whose signed root is published — enabling compact inclusion proofs per decision.

5

Verify anywhere

Anyone with the certificate and the public key confirms the signature offline. No EVE service in the loop.

Keep Reading

Related

Verification
Offline Verification
The four-step verify, in detail.
Verification
Replay Verification
Reproduce a verdict from its inputs.
Platform
Platform Architecture ↗
The full EVE AI Core architecture and threat model.

See a real certificate verify

Verify a live decision certificate in your browser — then hand the evidence to your own auditor and watch them verify it without us.

Verify a Certificate Book a Pilot
FAQ

Common questions

Does EVE Proof change AI decisions?
No. It is the evidence plane — it sits downstream of enforcement and can only witness and attest a verdict, never alter it.
What signs the certificate?
An Ed25519 signer (KMS-ready in production). The private key never leaves the signer; verification needs only the public key.
How are certificates linked?
Each references the prior record's hash (a chain) and is aggregated into a Merkle tree with a signed root, giving both ordering integrity and compact inclusion proofs.
One Control-Plane Stack

Governance decides. Enforcement acts. Proof attests.

Decides
EVE Governance ↗
Deterministic policy — the same verdict every time, with a reason.
Enforces
EVE CoreGuard ↗
Blocks, allows, or modifies the action before it executes.
Attests
EVE Proof
Signs the decision into a certificate anyone can verify.
The EVE Control-Plane Stack

Explore the ecosystem

evecore.com
EVE Core
The brand hub for the EVE control-plane stack.
eveaicore.com
EVE AI Core
The deterministic governance platform, docs & trust center.
evecoreguard.com
EVE CoreGuard
The enforcement engine that blocks before execution.
evegovernance.com
EVE Governance
Deterministic AI governance, principles & mappings.