CAM Protocol Demo

CAM governs any requester. · Human or AI. · The Circle of Trust is always human.

Node Architecture

Circle of Trust M=2 of N=3

CAM Decision Engine ● ACTIVE

TrustAudit Log ● LIVESEC EXAMINATION READYHIPAA §164.312 COMPLIANTSOC 2 TYPE II READY

Human-in-the-Loop · EU AI Act Art. 14 · HIPAA

Human-in-the-Loop · Zero Trust · SOC 2 Type II

← Any prior auth platform can embed CAM via API
No rebuild. No replacement. Drop-in governance.

← Existing security stack · CAM embedded via API
No platform replacement. Drop-in governance.

SOS · 40 MIN NON-RESPONSE · CIRCLE NOTIFIED

Victor Reyes holds direct abort authority outside the Circle

Insurance Reviewer

National Insurance Reviewer

PRIOR AUTH AI

SECURITY AI

EXECUTING

AGENT STATUS

Prior Auth Platform

Application Layer

CAM Protocol Engine

CAM Protocol API

0/3

APPROVALS

FRAUD RISK: ELEVATED

Supermajority Required: 3 of 4
Capital Threshold: >$5,000,000

THREAT CLASSIFICATION

ANALYZING

Zero Trust enforcement at the data layer, not the perimeter.

WORKER PRIVACY · PROTECTED

Victor Reyes

Data Owner · Abort authority

DATA OWNER ABORT

MONITORING

EHR / PHI Records

Marcus Ellis

LOCKED

ROOT ACCESS + 847 ACCOUNTS

🔴 HARDENED · AI AGENT SUSPENDED

Zero-touch until CAM authorization

🔒$2,400,000 — FUNDS HELD

$15,000,000

⏳ PENDING IC AUTHORIZATION

⚖ PRIVILEGE PROTECTED TOKEN EXPIRES: 8:00

Request Timeline

90s

WINDOW

Dr. Priya Nair

Attending Physician

CHIEF INFORMATION SECURITY OFFICER

REASON: False positive. Matches red team exercise #RT-2026-03. Production intact.

847 accounts protected from erroneous revocation.

Dr. J. Okonkwo

Supervising Physician

REASON: AI recommendation error. Contraindication not flagged.

Sarah Kim

HIPAA Compliance Officer

LP REPRESENTATIVE

SOC 2 AUDIT AUTHORITY

DATA OWNER

REASON: Undisclosed relationship. GP is portfolio company founder.

Jamie Reyes

Recovery Trustee

Response Window

T−90

Window: 90s · Threshold: M=2 of N=3

Dr. Nair

PENDING

Dr. Okonkwo

PENDING

S. Kim

PENDING

S. Chen

PENDING

Request Authentication

Request ID

Data Owner

Approval Window: 90s

Capital Amount

IC Window

Human Oversight Required

Oversight Window: 90s

AI threat classifications are probabilistic, not guaranteed.
Irreversible remediation requires human verification.
CAM enforces this at the protocol layer, not the policy layer.

Circle Notification (3 members)

Key Fragment Distribution

Threat signature transmitted

VETO INTERRUPT CHECK -- RUNS FIRST

Member 1: denial signal

Member 2: denial signal

Member 3: denial signal

Member 4: denial signal

Veto interrupt result

Veto evaluated as pre-emptive interrupt -- approval counter consulted ONLY after veto clears. (patent-pending)

Single-denial veto: one denial terminates the request. No override. Data never accessed. (Patent-pending)

AI clinical recommendations are irreversible once transmitted.
CAM intercepts before transmission, not after.
One physician denial is enough. (Patent-pending)

Insider threat protection: even if M security credentials are compromised,
any non-compromised Circle member can veto the access request cold.
Collusive credential attacks cannot succeed against CAM. (Patent-pending)

THRESHOLD EVALUATION -- RUNS SECOND

Approvals received vs required

Threshold result

Ephemeral key reconstruction

Data delivered to requester

Server memory cleared

TrustAudit entry appended

Hash chain link

SEC Rule 17a-4 record created

Clinical oversight documented

SOC 2 Type II record created

Bilateral · Append-only · Tamper-evident

REQUESTER ✓

CIRCLE ✓

REQ

NTFY

APR

DENY

DATA

Initializing