Safety Infrastructure for Autonomous Systems

_

AUTHREX is a safety governance layer for AI-controlled systems, a virtual force field that catches autonomous mistakes before they cause damage. When a self-driving car, a drone, or an aircraft is about to make an unsafe decision, AUTHREX intervenes, pauses the action, degrades authority, and recovers control.

What Is AUTHREX?

A circuit breaker for AI-controlled systems.

Your home has circuit breakers. When something goes wrong with the electricity, they cut power before the house burns down. AUTHREX does the same thing for autonomous systems.

When an AI system is about to make an unsafe decision, AUTHREX catches it, forces a pause, strips the system's authority to act, and hands control back to a human. The AI keeps the intelligence. Humans keep the authority.

STEP 1 · SENSE
Is the sensor data trustworthy?

AUTHREX continuously checks whether what the AI is seeing matches reality. If a GPS signal is being jammed, a camera is glare-blinded, or radar data is corrupted, the system knows it cannot trust itself.

STEP 2 · DECIDE
Is it safe to act?

Before any irreversible action, a mandatory pause happens. The system reviews the evidence, checks whether humans should weigh in, and only proceeds if the confidence bar is high enough. No split-second catastrophes.

STEP 3 · RECOVER
If trust breaks, what happens?

When the system detects it can no longer operate safely, AUTHREX doesn't crash, it degrades gracefully. Full autonomy becomes supervised, supervised becomes hold-position, and humans regain control in a structured way.

THE SO WHAT

Every autonomous disaster in the last 40 years, friendly fire, misidentified airliners, drone strikes on civilians, self-driving crashes, follows the same pattern: a system acted on bad information, too fast, with no authority check.

AUTHREX is the engineering layer that prevents it. Not by making AI smarter. By making sure AI never acts without verified trust, authorized intent, and a recovery path.

WHAT MAKES THIS DIFFERENT

Heterogeneous sensing with reasoning about what can be trusted

Three approaches to autonomous safety have shaped the field. AUTHREX adopts what works in each, and adds the missing layer: the system reasoning, in real time, about whether its own inputs and decisions can be trusted.

APPROACH 1

Redundancy & Voting

Three identical sensors, take the majority. Three identical computers, vote on the answer. Used in commercial aviation since the 1970s.

LIMITATION

All three sensors can be wrong the same way. Cosmic rays, GPS spoofing, glare. Identical voters share identical blind spots.

APPROACH 2

Runtime Assurance (RTA)

Watch the autonomous system. If it tries to do something unsafe, override with a known-safe controller. Simplex architecture. Used in aerospace.

LIMITATION

Binary thinking. Either the safe-controller takes over or it doesn't. No gradient between full autonomy and full intervention.

AUTHREX

Heterogeneous Sensing + Trust Reasoning

Different sensor modalities (camera, radar, GPS, INS, celestial). Continuous trust assessment per source. Authority allocated in proportion to trust, with formal recovery when trust collapses.

CONTRIBUTION

The system reasons about its own inputs. Authority is graded, not binary. The fallback is structured, not last-resort.

AUTHREX does not replace redundancy or RTA. It composes with both. The novelty is in treating authority itself as a graded, trust-proportional resource governed by a formal lifecycle, rather than a binary on/off held by either the autonomous system or the safety override.

Examples · What AUTHREX Does in Your Domain

Same problem. Nine domains.

Autonomous systems fail the same way across industries, bad sensor data, rushed decisions, no safe fallback. Here's what AUTHREX does in the nine domains where it matters most, in plain English.

THE SCENARIO
An airliner's flight control computer is corrupted by a cosmic ray.

A high-energy particle strikes a memory cell inside the autopilot. A single bit flips. The computer now has corrupted sensor data, but it doesn't know it's corrupted. It commands an uncommanded pitch-down. The aircraft drops 190 feet in 4 seconds. Passengers hospitalized.

REAL INCIDENT
JetBlue Flight 1230 · 30 Oct 2025 · Airbus issued recall for ~6,000 A320-family aircraft
WITHOUT AUTHREX ↯ cosmic ray DIVE 190 ft lost · 15 injured fleet grounded worldwide WITH AUTHREX ↯ cosmic ray MAIVA VOTES ELAC1 ≠ ELAC2 → reject bit autopilot → supervised mode Bit-flip detected in 8ms · Flight continues safely
FRAMEWORKS: SATA · MAIVA · CARA · FLAME
SATA · SENSOR TRUST

Treats corrupted ELAC-1 data as untrusted. The computer knows it cannot trust its own reading.

MAIVA · FAULT VOTING

ELAC-1 says "dive," ELAC-2 says "hold." Byzantine vote rejects the corrupted command before actuators move.

CARA · RECOVERY

Autopilot drops to supervised mode, crew regains authority in a defined state, no cascading failure.

SEE FEDERAL APPLICATIONS →

Same governance layer · Nine domains · Zero retraining of the AI itself

THE APPLICATION SET

One framework, five worked examples.

The AUTHREX pipeline applied to five documented U.S. federal needs, each anchored to a real DOI-registered hardware platform. Two cited variants and two hardware/ledger features round out the set, labeled as what they are.

1 product·5 applications·2 variants·2 features·1 verified pipeline
The Product
PRODUCT · AGENTIC AI
AUTHREX-AGENT
Authority lifecycle governance for agentic AI. The software shim that wraps any LLM-based agent runtime with the seven-stage AUTHREX pipeline, no hardware dependency. The applications below are the same pipeline pointed at federal needs.
OPEN AUTHREX-AGENT →
 AUTHREX-AGENT-SIM · mission-level governance simulation · 7 gates · 10 failure modes · hash-chained ledger · 55-test V&V · synthetic data only RUN THE MISSION SIMULATION →
Lead Applications
01AUTHREX-ASSURELEAD
Pre-deployment authority governance
Gates an autonomous system's transition from test to production behind a signed assurance decision. Fills the validation gap the 2026 National Cybersecurity Strategy names; NDAA §1533 framework due June 2027.
HARDWARE: BLADE-AGENT-HSMRUN THE GATE →
 AUTHREX-ASSURE-SIM · pre-deployment assurance console · 7 gates · hash-chained ledger · in-browser V&V · synthetic data only RUN THE SIMULATION →
02AUTHREX-ICS-GATELEAD
OT authority governance for critical infrastructure
Authorizes the deterministic safety logic for AI in operational technology, it never makes the safety decision itself. Anchored to the CISA/NSA AI-in-OT principles (3 Dec 2025).
HARDWARE: BLADE-INFRA-OTRUN THE GATE →
 AUTHREX-ICS-GATE-SIM · IT/OT authority console · 7 gates · hash-chained ledger · in-browser V&V · synthetic data only RUN THE SIMULATION →
Supporting Applications
03AUTHREX-AGENT-CYBER
Autonomous cyber-defense authority
Governs whether an autonomous cyber-reasoning system may patch live infrastructure. Anchored to DARPA AIxCC and Five Eyes agentic-AI guidance. Governance only.
HW: BLADE-AGENT-HSMOPEN →
 AUTHREX-AGENT-CYBER-SIM · autonomous cyber-defense console · 7 gates · hash-chained ledger · in-browser V&V · synthetic data only RUN THE SIMULATION →
04AUTHREX-SPACECYBER
Onboard authority for orbital autonomy
Signal delay removes the human from the loop, so authority is governed onboard. Anchored to NASA SBIR EXPAND.3.S26B and SPD-5.
HW: BLADE-SPACEOPEN →
 AUTHREX-SPACECYBER-SIM · orbital autonomy console · 7 gates · hash-chained ledger · in-browser V&V · synthetic data only RUN THE SIMULATION →
05AUTHREX-SANDBOX
Test-and-evaluation authority
Governs the test/evaluation environment itself, not production. Matches NDAA §1534's AI sandbox task force.
HW: Rover + UAVOPEN →
 AUTHREX-SANDBOX-SIM · test-and-evaluation console · 7 gates · hash-chained ledger · in-browser V&V · synthetic data only RUN THE SIMULATION →
Cited Variants · folded into AGENT-CYBER
AUTHREX-ZTAGENTZero Trust for autonomous agents. The same agentic surface, not a separate application.
AUTHREX-MCPGOVModel Context Protocol server governance. Folded into AGENT-CYBER as a citation layer.
Features · not applications
AUTHREX-PQCPost-quantum-ready signing, a property of how BLADE-AGENT-HSM signs. A hardware feature.
AUTHREX-AISBOMAn AI software bill of materials the ERAM ledger emits. A ledger feature.
Explore the Full Application Set
Heilmeier Catechism · The DARPA Questions

Eight questions. Plain answers.

Every DARPA program is evaluated against the Heilmeier Catechism, eight questions developed by former DARPA Director George Heilmeier that cut through jargon and force a researcher to explain the what, the why, and the so-what in plain language. Here are our answers for AUTHREX.

Q1 What are you trying to do? Articulate your objectives using absolutely no jargon. +

We are building a safety layer for autonomous systems. When an AI-controlled system, a self-driving car, an aircraft, a ship, a power grid controller, is about to do something unsafe, our layer catches the error before damage happens. It pauses the action, strips the AI's authority to act, and hands control back to a human in a controlled way. The AI stays smart. Humans stay in charge.

Q2 How is it done today, and what are the limits of current practice? +

Today, safety for autonomous systems is handled three ways: (1) testing to try to catch every failure case before deployment (impossible in the real world), (2) watchdogs that shut everything off when something looks wrong (expensive, kills productivity), or (3) rule-based safety rails that only work for scenarios the designers imagined.

None of these handle the real problem: AI systems are asked to act on sensor data that might be wrong, at speeds where humans cannot supervise every decision, in environments where an adversary may be actively lying to the system. The result is that when something goes wrong, there is no graceful path back to safe operation. You get Iran Air 655, Patriot fratricides, Kabul drone strikes, Tesla Autopilot crashes, Colonial Pipeline shutdowns, all different failure modes, same missing layer.

Q3 What is new in your approach and why do you think it will be successful? +

What is new: AUTHREX is the first integrated framework to treat authority itself as an engineered lifecycle, computed in real-time from sensor trust, verified against formal logic, and enforced at the hardware boundary. Instead of building more rules on top of the AI, we built a governance layer that sits between the AI and the actuators. The AI can still think whatever it wants; it just cannot move a motor, fire a missile, or issue a pipeline command without AUTHREX's authorization.

Why it will succeed: Every piece is built on mathematics and formal verification, not heuristics. Sensor trust uses Dempster-Shafer evidence theory. Multi-agent agreement uses Byzantine fault tolerance. Authority state machines are proven correct in TLA+. The approach is domain-independent: the same pipeline works on a drone, a car, a ship, and a power grid. We have 17 documented incidents the framework explicitly addresses.

Q4 Who cares? If you are successful, what difference will it make? +

Defense: The DoD Replicator Initiative and the Collaborative Combat Aircraft program are fielding autonomous systems faster than they can be supervised. AUTHREX is the governance layer that lets commanders delegate more authority because the boundaries are hardware-enforced, not because the AI is trusted implicitly.

Commercial automotive: The 467 crashes and 14 deaths in the NHTSA Tesla investigation are not a Tesla-specific problem; they are a structural problem that will repeat in every ADAS/ADS system until manufacturers add governance. AUTHREX provides that layer.

Critical infrastructure: Colonial Pipeline, Ukraine grid, and dozens of other industrial control system compromises force operators to choose between contaminated operation and full shutdown. AUTHREX provides graceful degradation so you can keep critical functions running while containing the breach.

Q5 What are the risks? +

Technical risk: Moving governance to the hardware boundary requires FPGA or ASIC integration at the actuator level. We have the FPGA governance bitstream designed with BOM-specified components but not yet tested on live silicon. This is where SBIR Phase II funding would validate the design.

Adoption risk: Integrators may resist adding a layer between their AI and their actuators. The counter is that AUTHREX makes AI systems more deployable, not less, because legal and certification risk drops dramatically when the boundaries are hardware-enforced.

Adversarial risk: An adversary who understands AUTHREX may try to manipulate the sensor trust calculus or the authority handoff conditions. We address this through ADARA (adversarial deception detection) but require red-team evaluation, which is part of the research roadmap.

Q6 How much will it cost? +

Research phase (current, internally funded): 33 DOI-verified publications, 7 governance frameworks, 4 provisional patents, 19 browser-based simulations, 10 BLADE hardware platform designs plus 2 testbeds (BOM-specified, $199 – $505K per platform).

Phase I (SBIR, ~$300K over 6 months): FPGA bitstream commissioning on Zynq UltraScale+ development board. Hardware-in-the-loop validation of SATA-FLAME pipeline. Red-team evaluation on the Rover testbed.

Phase II (SBIR, ~$2M over 24 months): Full BLADE platform integration, one defense domain (suggested: BLADE-EDGE directed energy or BLADE-AV autonomous ground). Independent verification campaign. TRL 4 → TRL 6.

Q7 How long will it take? +

Q2 2026 (current): Foundation complete. All 7 frameworks published, 10 BLADE platforms designed, 4 patents filed, Rover and UAV testbeds documented.

Q3-Q4 2026: BLADE-EDGE prototype assembly · FPGA governance bitstream RTL commissioning · UAV testbed flight validation · Provisional-to-utility patent conversion for all 4 applications.

Q1-Q2 2027: SATA-FLAME on FPGA (TRL 4-5) · SBIR Phase II submission · BLADE-MARITIME hardware integration · Rover testbed governance validation campaign.

Q3 2027+: TRL 6 target across multi-framework governance on physical hardware · Utility patents granted (projected) · Research partnership or CRADA engagement (planned) · BLADE-AV autonomous vehicle integration testing.

Q8 What are the mid-term and final "exams" to check for success? +

Mid-term exam (Phase I end, ~12 months): SATA-FLAME pipeline running on FPGA hardware. Red-team evaluation under six attack vectors (sensor spoofing, authority hijack, Byzantine node compromise, jamming, credential theft, physical tampering). Proof of hardware-enforced governance that cannot be bypassed in software.

Final exam (Phase II end, ~36 months): Full BLADE platform, one defense and one civilian domain, demonstrated under independent evaluation. Success = the governance layer correctly prevents action in adversarial or low-trust scenarios AND correctly allows action in nominal scenarios, measured against the 17-incident evidence table.

Commercial exam: One OEM adoption in automotive ADAS or maritime USV, with measurable reduction in false-positive disengagement and false-negative incident rate. Independent safety certification (ISO 26262 ASIL-D pathway for automotive, MIL-STD-882E for defense).

Original Heilmeier Catechism: darpa.mil/about/heilmeier-catechism

The Problem

Intelligence is scaling.
Control is not.

Autonomous systems are making decisions faster than humans can supervise. The industry is optimizing for intelligence while the governance layer remains absent.

Without structured authority governance, systems operate with unconstrained delegation. No mechanism for degrading authority when trust erodes, no protocol for recovering control when autonomy fails.

AUTHREX addresses this as an engineering problem, not a policy aspiration.

WHY NOW

The DoD's Replicator Initiative is scaling autonomous mass across every domain. The Collaborative Combat Aircraft program is fielding AI wingmen alongside human pilots. Both demand governance infrastructure that does not yet exist, the gap between DoDD 3000.09's safety mandates and operational autonomy at scale is widening with every deployment cycle.

The Solution

One Unified Governance Architecture

AUTHREX SYSTEMS is a research program developing authority governance infrastructure, frameworks, hardware designs, and simulations operating under a single integrated architecture.

AUTHREX SYSTEM
UNIFIED AUTHORITY GOVERNANCE ARCHITECTURE
RESEARCH FRAMEWORK

A single integrated research architecture combining seven governance frameworks, 10 BLADE hardware platforms (plus 2 testbeds), and 19 browser-based simulations, providing end-to-end authority lifecycle control for autonomous systems across defense, maritime, infrastructure, autonomous vehicle, and robotics domains.

7
FRAMEWORKS
10
BLADE PLATFORMS
19
SIMULATIONS
5
DOMAINS
4
PATENTS
SYSTEM TOPOLOGY, INTEGRATION MAP
AUTHREX SYSTEM Governance Pipeline 7 frameworks SATA → HMAA → ... → ERAM BLADE Hardware 10 platforms EDGE · MARITIME · INFRA · AV Simulations 14 environments 10 platforms · browser-based computes executes validates ← cross-validated →
GOVERNANCE PIPELINE
7 PUBLISHED
Authority Lifecycle Frameworks
Seven-stage pipeline governing trust computation, authority allocation, deception filtering, consensus, deliberation, recovery, and escalation monitoring.
SATA
Sensor trust fusion
HMAA
Authority allocation
ADARA
Deception filtering
MAIVA
Byzantine consensus
FLAME
Deliberation gate
CARA
Recovery cascade
ERAM
Escalation monitor
HARDWARE PLATFORMS
4 DESIGNED
BLADE Family Architecture
Domain-specific hardware governance nodes with BOM-specified components, interface control documents, and FPGA bitstream integration.
BLADE-EDGE
Directed energy · 72 components · $139K
BLADE-MARITIME
Maritime surveillance · 84 components · $43K
BLADE-INFRA
Critical infrastructure · 92 components · $12K
BLADE-AV
Autonomous vehicle · 62 components · $16K
SIMULATION PORTFOLIO
19 VALIDATED
Validation & Demonstration
Browser-based computational simulations validating each framework independently and in integrated scenarios across five operational domains.
DEFENSE
Fratricide · swarm · directed energy
MARITIME
GPS spoofing · patrol governance
INFRASTRUCTURE
SCADA · command injection
AUTONOMOUS VEHICLES
Sensor degradation · convoy
ROBOTICS
Rover · UAV testbeds
PIPELINE → HARDWARE
Frameworks execute on BLADE nodes
HARDWARE → SIMULATION
Platforms validate through simulation
SIMULATION → PIPELINE
Simulations prove the governance logic
Why This Matters

Authority governance failures have real consequences

Between 1983 and 2026, documented incidents involving misidentification, sensor-trust collapse, rushed escalation, and coordination failures have caused hundreds of casualties.

AUTHREX is designed to reduce the probability of exactly these classes of failures.

Adversarial Threat Taxonomy, Framework Coverage Matrix
SATA HMAA ADARA MAIVA FLAME CARA ERAM ADV. LEVEL

● = primary defense   ◐ = contributing defense   Adversary capability: sophistication level required to execute threat class

Documented Authority Governance Failures (1983–2026)

Sources: CENTCOM, ICAO, GAO, NTSB, NHTSA, FAA, CISA, CNAS, DoD investigations. All publicly documented. ALIGN = framework alignment to documented failure mode (HIGH = strong match to 3+ frameworks; MED = partial match).

Incident Frequency Trend (2000–2026)

Publicly documented incidents globally across three governance-relevant categories. Counts are lower-bound estimates derived from NHTSA SGO reports, CSIS Significant Cyber Incidents database, ICAO/ASN aviation records, and national investigation releases (GAO, NTSB, DSB, NATO). The upward trend reflects both rising deployment of autonomous and automated systems and improved incident reporting infrastructure after 2021.

Automated Weapons / Air Defense
Autonomous Systems / Vehicles
Cyber-Physical / Infrastructure
80 60 40 20 0 INCIDENTS PER YEAR 2000 '01 '02 '03 '04 '05 '06 '07 '08 '09 2010 '11 '12 '13 '14 '15 '16 '17 '18 '19 2020 '21 '22 '23 '24 '25 '26* NHTSA SGO begins * through Apr '26
AUTOMATED WEAPONS / AIR DEFENSE
Fratricides, shootdowns, misidentifications. Sources: CENTCOM, ICAO, GAO, DSB, NATO. Typically 1–4 publicly documented events per year; spikes during active combat operations.
AUTONOMOUS SYSTEMS / VEHICLES
ADAS and ADS crashes reported under NHTSA Standing General Order (2021-01). Pre-2021 figures reflect limited systematic reporting. Cumulative ~3,200 crashes reported by Mar 2025.
CYBER-PHYSICAL / INFRASTRUCTURE
Significant ICS/SCADA and critical-infrastructure cyber incidents with operational impact. Source: CSIS Significant Cyber Incidents database, EuRepoC, CISA advisories.
METHODOLOGY NOTE
Counts are conservative lower-bound estimates derived from publicly available datasets. No single authoritative global registry of authority-governance failures exists. Reporting infrastructure improved markedly after 2021 (NHTSA Standing General Order, CISA Joint Cybersecurity Advisories, CSIS tracker expansion), so pre-2021 counts in the autonomous and cyber categories are under-represented relative to actual incident rates. The automated-weapons category reflects only publicly disclosed military investigations. These numbers establish a trend, not an absolute count. Individual cases are detailed in the Documented Authority Governance Failures table above.
Operational Impact

Six Failure Classes. One Governance Architecture.

Every catastrophic autonomy failure in the record follows one of six recurring patterns. AUTHREX maps each class to a specific combination of frameworks that prevents, contains, or recovers from it.

01 · MISIDENTIFICATION
SENSOR AMBIGUITY
Engagement under false-positive target identification

Weapons, vehicles, or actuators engage targets based on corrupted, spoofed, or incomplete sensor data. Historically the single largest category of fratricide and civilian-harm incidents.

PREVENTED BY
SATA HMAA ADARA
DOCUMENTED IN
Iran Air 655 · PS752 · Red Sea F/A-18 · Azerbaijan J2-8243 · Kuwait F-15
02 · FLASH ESCALATION
COMPRESSED TIMELINE
Kinetic commitment before human verification gate

Automated engagement chains compress decision timelines below the threshold at which meaningful human judgment or cross-check is possible. Risk compounds in multi-agent and swarm contexts.

PREVENTED BY
FLAME HMAA ERAM
DOCUMENTED IN
Soviet 1983 · Patriot 2003 · Przewodów · Iran Air 655 · Kabul Drone Strike
03 · AUTHORITY PERSISTENCE
TRUST DEGRADATION
Continued autonomy after sensor or system integrity loss

Systems retain full operational authority even as their epistemic foundations collapse, no graceful degradation, no automatic authority reduction under trust decay. The default bias is optimism rather than caution.

PREVENTED BY
HMAA CARA SATA
DOCUMENTED IN
Tesla Autopilot · MV Dali · GNSS Spoofing · Patriot 2003
04 · CONSENSUS COLLAPSE
MULTI-AGENT COORDINATION
Byzantine faults and deconfliction breakdowns

Multiple autonomous agents or redundant computers reach incompatible conclusions and act on them. Without fault-tolerant voting, a single compromised node can cascade into systemic failure.

PREVENTED BY
MAIVA SATA ERAM
DOCUMENTED IN
Black Hawk Friendly Fire · Red Sea F/A-18 · JetBlue A320 ELAC Bit-Flip
05 · ACTION UNDER UNCERTAINTY
MISSING DELIBERATION
Commitment without evidentiary threshold or pause gate

Systems execute irreversible actions before confidence thresholds are met, without a deliberation window, and without a forced pause for evidence review. Particularly acute under hardware-level radiation or jamming.

PREVENTED BY
FLAME ADARA ERAM
DOCUMENTED IN
Soviet 1983 · Kunduz Hospital · WCK Convoy · Kabul Drone Strike
06 · ADVERSARIAL CORRUPTION
HOSTILE ENVIRONMENT
Sensor, network, or control corruption under active attack

Adversarial jamming, spoofing, ransomware, or physical environment effects (cosmic particle SEUs, electronic warfare) corrupt the inputs or control infrastructure the autonomous system depends on.

PREVENTED BY
ADARA SATA CARA
DOCUMENTED IN
GNSS Spoofing · Colonial Pipeline · Azerbaijan J2-8243 · JetBlue A320
17 incidents · 6 failure classes · 7 frameworks
Each failure class addressed by 2–3 framework combinations · 43 year record span
REVIEW EVIDENCE ↓
Why It Matters

Not just what the AI can do, but when it should act

Traditional autonomous systems focus on what the AI can do. AUTHREX adds the missing layer: governance that decides when action is safe, under what authority, based on real-time trust, threat, and context. That shift matters in six concrete ways:

01 · FAIL-SAFE
Better Fail-Safe Behavior

When sensors become untrustworthy, the system reduces authority or blocks action, it does not continue optimistically. The default state is safe / no actuation unless governance explicitly allows it.

02 · HARDWARE ENFORCEMENT
Harder to Bypass Than Software Alone

Enforcement lives at the hardware boundary, a normally-open relay between AI and actuator. Compromising the AI stack would not automatically let an attacker command the weapon, motor, or controller.

03 · GRADUATED AUTONOMY
More Nuanced Than On / Off

Autonomy is not binary. AUTHREX uses tiers from emergency stop through restricted, standard, and full autonomy, matching how real operations demand different control levels under different threat conditions.

04 · SAFE RECOVERY
Evidence-Driven Re-Entry

Most systems know how to stop. Few know how to safely restart. AUTHREX treats recovery as its own governance problem, requiring evidence that the threat has cleared before restoring authority, not just a manual reset.

05 · CROSS-DOMAIN REUSE
One Architecture, Nine Domains

The same governance pipeline applies across aircraft, drive-by-wire vehicles, maritime autonomy, defense drones, power grid, space vehicles, underwater UUVs, agentic AI, and autonomous cyber-defense, making it governance infrastructure, not a single-domain product.

06 · MISSION ENABLEMENT
Enables More Autonomy, Not Less

Operators can authorize more aggressive autonomy precisely because the boundaries are hardware-enforced. Without governance, you throttle the AI out of caution. With it, routine decisions happen at machine speed while risky ones escalate by design, faster operations with bounded failure modes.

HONEST READINESS STATEMENT

AUTHREX is currently a research-stage architecture at TRL 2–4. Simulations validate governance logic. Hardware platforms are BOM-specified but not yet built. Independent peer review and red-team evaluation are planned as part of SBIR Phase I team formation. The idea is important, the architecture is coherent, but it is not yet proven deployment-ready infrastructure.

Governance Architecture

Seven-Stage Authority Lifecycle

End-to-end pipeline governing trust, authority, constraints, consensus, deliberation, recovery, and escalation.

SYSTEM ARCHITECTURE // DATA FLOW & FEEDBACK LOOPS
FORWARD RECOVERY MONITORING
CONTINUOUS MONITORING LAYER DECEPTION → FORCE DELAY CARA → SATA TRUST RE-EVALUATION RISK CALIBRATION SATA SENSE τ fusion HMAA ASSIGN ADARA CONSTRAIN MAIVA AGGREGATE BFT vote FLAME DELIBERATE latency gate CARA RECOVER deterministic ERAM MONITOR SENSORS ACTION
PARALLEL EXECUTION
SATA feeds HMAA and ADARA simultaneously, authority and deception analysis run in parallel, not sequentially
RECOVERY FEEDBACK
CARA recovery feeds back to SATA for trust re-evaluation, closed-loop control, not one-shot pipeline
CONTINUOUS MONITORING
ERAM monitors all stages simultaneously and feeds risk calibration back to HMAA authority computation
Academic Terminology Mapping

AUTHREX uses domain-specific nomenclature for its governance modules. The table below maps each framework to its equivalent concepts in the academic literature, enabling cross-referencing with established research in autonomy governance, runtime assurance, and safe control.

AUTHREX ACADEMIC EQUIVALENT RESEARCH DOMAIN KEY REFERENCES
SATATrust estimation · Sensor fusion · Anomaly detectionRuntime assurance, Bayesian trust modelsDempster-Shafer theory, Subjective Logic (Jøsang)
HMAAShared autonomy · Adjustable autonomy · LOA managementHuman-robot interaction, levels of autonomySheridan & Verplank LOA, Parasuraman et al.
ADARAAdversarial robustness · Deception detection · EW resilienceAdversarial ML, electronic warfare defenseGoodfellow et al. adversarial examples, DARPA GARD
MAIVAByzantine fault tolerance · Distributed consensus · Multi-agent coordinationDistributed systems, swarm intelligenceCastro & Liskov PBFT, Lamport BFT
FLAMEStrategic latency · Deliberation gating · Decision delaySafe control, meaningful human controlScharre strategic latency, ICRC MHC framework
CARARuntime assurance · Safe fallback · Controlled degradationSimplex architecture, safety controllersSha Simplex, ASTM F3269 runtime assurance
ERAMRisk assessment · Escalation modeling · Situational awarenessDecision support, command and controlEndsley SA model, MIL-STD-882E risk matrix
AUTHREX INTEGRATES CONCEPTS FROM RUNTIME ASSURANCE · SHARED AUTONOMY · SAFE CONTROL · BFT · ADVERSARIAL ML INTO A UNIFIED AUTHORITY LIFECYCLE PIPELINE
Subsystem Demonstrations

Framework Proof of Computation

Live computational demonstrations of all seven AUTHREX frameworks operating independently, showing the math, the logic, and the real-time behavior of each subsystem.

A lie detector for sensor data
SATA · SENSOR & ACTOR TRUST ASSESSMENT

Continuously tests whether each sensor reading matches what other sensors are saying, what the world should look like, and what known-good baselines report. When a sensor lies, SATA knows.

Who gets to decide what, and when
HMAA · HUMAN-MACHINE AUTHORITY ALLOCATION

Computes in real-time how much authority the AI should have given current trust, situation risk, and operator availability. Authority is not a static permission, it is a dynamic variable that rises and falls with conditions.

Did an adversary just lie to us?
ADARA · ADVERSARIAL DECEPTION-AWARE REASONING

Detects when inputs have been manipulated, GPS spoofed, cameras blinded, cyber intrusion into sensors, and distinguishes honest confusion from hostile attack. Actively tests hypotheses, not just failure modes.

Can multiple systems agree before acting?
MAIVA · MULTI-AGENT INTEGRITY VOTING

For drone swarms, redundant computers, and multi-sensor fusion, uses Byzantine fault tolerance (the same math cryptocurrencies use to reach consensus) so one compromised or faulty node cannot corrupt the whole system.

The forced pause before a big mistake
FLAME · FORCED LATENCY FOR AUTHORITY-MANAGED ESCALATION

Before any irreversible action (firing a weapon, commanding a grid shutdown, committing to a high-speed maneuver), FLAME imposes a mandatory delay window scaled to the consequence severity. No instant catastrophes.

The safe way to step back
CARA · CONTROLLED AUTHORITY RECOVERY ARCHITECTURE

When trust collapses, CARA walks the system down through defined safe states: full autonomy → supervised → safe loiter → human control → powered down. Never a cliff, always a staircase.

When does this become someone else's problem?
ERAM · ESCALATION RISK ASSESSMENT MODEL

Monitors whether a local incident is likely to cascade (single drone compromise → swarm failure → mission failure → international incident) and auto-escalates to appropriate command echelons before the situation owns the operator.

Below: live interactive demonstrations of each framework's underlying computation. [ SIMULATED SUBSYSTEM COMPUTATION ]

HMAA // AUTHORITY COMPUTATION MATRIX
HMAA Authority Output: A = f(Q, C, E, τ)
0.82
FULL AUTONOMY PERMITTED
⚠ DECISION THRESHOLD CROSSED
Q C E τ HMAA ENGINE EXECUTE
SATA // SENSOR TRUST FUSION
LiDAR Array99%
Optical ISR96%
GPS/INS98%
COMPOSITE TRUST
0.97
ADARA // DECEPTION FILTER
ANALYZING KINEMATICSTRACK VALID
MAIVA // KINETIC SWARM CONSENSUS SIMULATED
BYZANTINE FAULT ISOLATED: UAV-03
ERAM // ESCALATION TRAJECTORY CARA STANDBY
Active Subroutines
FLAME // DELIBERATION GATE
IDLE
WAITING FOR ACTION SIGNAL
CARA // RECOVERY CASCADE
1. FULL AUTONOMY
2. SUPERVISED (HUMAN-IN-LOOP)
3. SAFE LOITER (HOLD POSITION)
4. RETURN TO BASE (RTB)
Simulation Laboratory

Full-Scale Research Simulations

Standalone browser-based simulations demonstrating AUTHREX governance frameworks, grouped by domain: application governance, strategic and multi-domain command, tactical engagement, and distributed consensus.

[ ALL SIMULATIONS RUN CLIENT-SIDE, ZERO EXTERNAL DEPENDENCIES, SEEDED PRNG ]

◇ AUTHREX SIMULATION TREE
12 standalone simulations · grouped by domain · client-side execution · seeded PRNG · synthetic data only
BRANCH 01Application Governor Consoles6 SIMS
The product and its five federal applications. Each is a standalone console with a SHA-256 hash-chained decision ledger, replay determinism, and an in-browser V&V suite. Synthetic data only.
AUTHREX-AGENT-SIM240 KBPRODUCT
Mission-level governance of the full seven-gate pipeline over an autonomous cyber-defense campaign. Ten injectable failure modes, 55-test V&V verified in browser and headless Node.
SATA · ADARA · IFF · HMAA · MAIVA · FLAME · CARA
RUN →
AUTHREX-ASSURE113 KB
Pre-deployment authority gate. Governs the transition from test to production, gate by gate.
SATA · HMAA · MAIVA · CARA
RUN →
AUTHREX-ICS-GATE124 KB
IT/OT authority boundary. Governs control transitions into operational technology.
SATA · HMAA · CARA · ADARA
RUN →
AUTHREX-AGENT-CYBER117 KB
Autonomous cyber-defense authority. Governs whether an autonomous cyber-reasoning system may patch live infrastructure, at what authority tier, with what human review.
SATA · ADARA · HMAA · MAIVA · FLAME · CARA
RUN →
AUTHREX-SANDBOX114 KB
Test-and-evaluation environment governance under controlled scenarios.
SATA · ADARA · MAIVA · HMAA
RUN →
AUTHREX-SPACECYBER114 KB
Onboard orbital autonomy under light-speed command delay.
FLAME · HMAA · ERAM · CARA
RUN →
BRANCH 02Strategic & Multi-Domain C23 SIMS
Escalation risk, joint all-domain theater command, and multi-domain authority handoffs.
ERAM v1.0, Escalation Risk86 KB
Cross-domain escalation risk for AI-enabled C2. Six scenarios, 600 Monte Carlo runs, formal property checks, Merkle provenance.
ERAM · SATA · FLAME · CARA · Monte Carlo
RUN →GUIDE ↓
APEX v6.0, JADC2 Theater28 KB
Full seven-stage pipeline in a joint all-domain theater. Byzantine fault detection and Merkle audit trails.
All 7 · PBFT · Merkle
RUN →GUIDE ↓
MDO Digital Twin21 KB
Authority handoffs and Byzantine fault isolation across Air, Maritime, and Kinetic domains.
HMAA · CARA · MAIVA · PBFT
RUN →GUIDE ↓
BRANCH 03Tactical Engagement2 SIMS
Kinetic guidance and fratricide prevention at the engagement layer.
Tactical COP, Blue-on-Blue21 KB
Fratricide prevention. HMAA intercepts a compromised UCAV targeting a friendly naval asset via common operating picture.
HMAA · CARA · SATA · ADARA
RUN →GUIDE ↓
Tactical Core, Kinematic Engine
Zero-dependency kinematic engine. Proportional Navigation guidance, CARA flight-termination, HMAA governance, pure HTML5 Canvas.
HMAA · CARA · Zero-Dep
RUN →GUIDE ↓
BRANCH 04Distributed Systems & Consensus2 SIMS
Web Worker node architectures and Byzantine consensus across distributed governors.
AUTHREX OS v4.0
Unified JADC2 architecture. Distributed Web Worker nodes, tactical COP, ERAM analytics, and Merkle provenance.
All 7 · Web Workers
RUN →GUIDE ↓
Mesh Kernel, MAIVA PBFT
Decentralized actor model. Isolated Web Workers, MAIVA PBFT consensus, and emergent CARA interlock.
MAIVA · CARA · PBFT
RUN →GUIDE ↓
📄
AUTHREX-TSD-2026-001 Rev D, Technical Specification Document
32 PAGES · CONOPS · SYSTEM ARCHITECTURE · 27 SHALL REQUIREMENTS · ICD · RISK REGISTER · V&V PLAN · RTM
DOWNLOAD PDF ↓
📊
AUTHREX Technical Portfolio Assessment
55 PAGES · FRAMEWORK ANALYSIS · MATHEMATICAL REFERENCE · DARPA ALIGNMENT · DEPLOYMENT SCENARIOS · SYSTEM COMPARISONS
DOWNLOAD PDF ↓
Standards Alignment

Built against the standards certification authorities use

AUTHREX is designed to be evaluable against the safety and assurance standards that govern airworthiness, defense system safety, and formal-methods software. The mappings below describe how each AUTHREX framework relates to the relevant clauses of these standards. Mappings are research artifacts; they are not certification claims and do not constitute an audit or DER finding.

RTCA · AIRBORNE SOFTWARE

DO-178C

Software Considerations in Airborne Systems & Equipment Certification

FAA-recognized standard for safety-critical airborne software. Defines five Design Assurance Levels (DAL A through E) based on failure-condition severity, from catastrophic to no-effect.

AUTHREX MAPPING
SATA  Sensor data trust assessment supports DAL-A boundary conditions on sensor inputs.
CARA  Recovery cascade aligns with the safe-state and failure-containment requirements for DAL-A and DAL-B systems.
FLAME  Forced deliberation gate maps to the human-in-the-loop interlocks expected for high-DAL autonomy.
RTCA · FORMAL METHODS

DO-333

Formal Methods Supplement to DO-178C

Defines how formal methods may be used to satisfy DO-178C objectives. Recognizes formal verification as an alternative to testing for many objectives at higher DALs.

AUTHREX MAPPING
HMAA  Authority state machine specified in TLA+, suitable for formal property checks aligned with DO-333 verification objectives.
MAIVA  Byzantine consensus protocol amenable to formal verification of agreement and termination properties.
ALL FRAMEWORKS  Specified with intent suitable for formal-methods review under DO-333's framework for formal analysis.
DOD · SYSTEM SAFETY

MIL-STD-882E

Department of Defense Standard Practice for System Safety

DoD's framework for managing safety risk across the system lifecycle. Defines hazard severity, probability, and risk-acceptance levels for defense systems including autonomous platforms.

AUTHREX MAPPING
ERAM  Escalation risk modeling provides runtime input compatible with MIL-STD-882E hazard-tracking processes.
FLAME  Mandatory deliberation gate aligns with risk-acceptance authority requirements before unsafe actions are permitted.
TSD RISK MATRIX  The 10-risk register in the AUTHREX Technical Specification Document follows MIL-STD-882E's severity-and-probability matrix structure.
DOD · AIRWORTHINESS

MIL-HDBK-516C

Airworthiness Certification Criteria

DoD handbook of airworthiness criteria for fixed-wing, rotary-wing, and unmanned aerial systems. Used by USAF, USN, USA, and USMC airworthiness authorities to evaluate fitness for flight.

AUTHREX MAPPING
HMAA  Authority lifecycle addresses crew-systems authority-allocation criteria for autonomy.
SATA + ADARA  Heterogeneous sensor trust supports avionics sensor-redundancy and integrity requirements.
CARA  Graceful degradation profile relevant to subsystems failure-mode and reversion criteria.
SCOPE OF THESE MAPPINGS

These mappings are intended to position AUTHREX within the certification landscape and to guide future work toward a fielded artifact. They are not certification claims, and they do not represent findings by an FAA Designated Engineering Representative, a DoD airworthiness authority, a DER, or any system safety review board. Formal evaluation against these standards requires a target platform and a System Safety Program Plan that AUTHREX does not yet have. The TSD risk register, formal TLA+ specifications, and architecture documentation are designed to support such a program when one is initiated.

Operational Simulations

Mission Environment Scenarios

Six operational scenarios across air, ground, sea, infrastructure, and orbital domains, each showing what happens without governance vs. with AUTHREX authority control.

[ ALL SCENARIOS ARE SIMULATED ENVIRONMENTS, NOT FIELDED SYSTEMS ]

Evidence Layer

Research artifacts, not marketing claims

Every component backed by published research, reproducible simulations, and documented engineering specifications.

Simulated Performance Characteristics
HMAA DECISION LATENCY
<12ms
Authority computation cycle (simulated)
MAIVA BFT THRESHOLD
f<n/3
Byzantine tolerance: 2 of 5 nodes max
FLAME MIN DELIBERATION
3.0s
Configurable: 1.5s–30s by mission class
CARA RECOVERY TIME
<2.2s
Full cascade: Autonomy → RTB (simulated)

All metrics are simulated values from browser-based validation environments. Hardware-validated metrics pending BLADE platform assembly.

Verification & Validation (V&V) Protocol
From Simulation to Physical Proof

Each governance framework undergoes a four-stage verification pipeline designed to meet MIL-STD-882E safety-critical requirements, progressing from computational validation through formal mathematical proof to physical hardware execution.

Formal Methods Verification
TLA+ state-space modeling applied to MAIVA consensus and FLAME deliberation logic. The rover testbed baseline includes 200,000 FSM conformance comparisons proving absence of unsafe states.
Monte Carlo Validation
Statistical validation across randomized initial conditions and adversarial injection scenarios. The HMAA-UAV simulation executes 6DOF physics with EKF2 state estimation under six distinct attack vectors.
Hardware-in-the-Loop (HITL)
SATA-FLAME governance bitstream commissioning on Zynq UltraScale+ FPGAs. Validates deterministic latency and recovery behavior against live corrupted sensor injections.
Physical Testbed Validation
Rover and UAV platforms executing governance pipelines in physical environments. 42-file Python engineering baseline with 98 tests and TLA+ formal specification.
V&V ESCALATION PIPELINE
1. COMPUTATIONAL SIMULATIONCURRENT
2. FORMAL LOGIC VERIFICATIONIN PROGRESS
3. HARDWARE-IN-THE-LOOP (HITL)Q3 2026
4. PHYSICAL TESTBED FLIGHT/DRIVEQ4 2026
ALIGNED WITH MIL-STD-882E · NIST AI RMF · DoDD 3000.09 · ISO 26262 · NERC CIP · IEC 61850

Stage 1 of the pipeline is complete and public. Every governance stage and every hardware platform below is implemented as a browser-based simulation that executes the actual published algorithm with seeded PRNG for bit-exact reproducibility, and each carries a permanent DOI. Reviewers can launch any simulation or open any deposit directly.

GOVERNANCE ARCHITECTURES · SEVEN PIPELINE STAGES
ARCHITECTURE ROLE IN PIPELINE SIMULATION PUBLIC RECORD
SATASensor / input trust attestationLaunchZenodo 18936251 · Patent 64/002,453
HMAATiered authority computation (T3 to T0)LaunchZenodo 18861653 · Patent 63/999,105 · TLA+ 48,751 states
ADARAAdversarial deception-aware adjustmentLaunchZenodo 19043924
MAIVAByzantine-resilient multi-agent consensusLaunchZenodo 19015517 · TLA+ spec
FLAMELatency-bounded deliberation windowLaunchZenodo 19015618 · Patent 64/005,607
CARADeterministic recovery and safe-state fallbackLaunchZenodo 18917790 · Patent 64/000,170
ERAMRisk-based escalation gatingLaunchSSRN 6176802 · cited, U. Toronto LexAI
HARDWARE REFERENCE PLATFORMS · SAME PIPELINE, NINE DOMAINS
PLATFORM DOMAIN SIMULATION ZENODO DOI
Rover TestbedGround UGV (~$484)Launch19143190
UAV PlatformAerial / contested (~$4,200)Launch19128769
BLADE-EDGEDefense, directed energy (~$139K)Launch19177472
BLADE-AVAutomotive, ISO 26262 ASIL-D (~$16K)Launch19232130
BLADE-MARITIMEMaritime surveillance (~$43K)Launch19246785
BLADE-INFRACritical infrastructure, SIL 3 (~$12K)Launch19277887
BLADE-SPACEOrbital LEO, NASA EXPAND aligned (~$505K)Launch20183269
BLADE-CUASCounter-UAS, EO 14305 (~$43.5K)Launch20299604
BLADE-AGENT-HSMAgentic-AI hardware root of trust (~$199)Launch20299821

16 BROWSER-BASED SIMULATIONS · 15 ZENODO DEPOSITS + ERAM SSRN · CC BY 4.0 · GEORGETOWN UNIVERSITY · FULL INDEX AT BURAKOKTENLI.COM/PUBLICATIONS

System Publications & Technical Deposits (DOI-Verified)
TITLE VENUE DOI DOMAIN
Mission

Human authority must be engineered into autonomous systems, not assumed.

This research program exists because the gap between autonomous capability and authority governance is widening. Current approaches treat control as a policy overlay. AUTHREX treats it as an engineering problem.

The governance architecture provides the operational mechanisms for assigning, monitoring, degrading, revoking, and recovering authority in high-speed autonomous environments.

This is not AI safety in the abstract. This is control engineering research for real systems operating under real constraints.

Principal Researcher
Burak Oktenli
MPS Applied Intelligence (STEM), Georgetown University
MBA International Business, Lynn University
B.Sc. Computer Science Engineering (STEM), University of South Florida
ORCID: 0009-0001-8573-1667
Provisional Patents (USPTO)
63/999,105, HMAA Authority Allocation
64/000,170, CARA Recovery Architecture
64/002,453, SATA Sensor Trust Anchoring
64/005,607, FLAME Escalation Latency
Professional Memberships
IEEE
Institute of Electrical and Electronics Engineers
Member #102193505
AIAA
American Institute of Aeronautics and Astronautics
Member #1936005
ACM
Association for Computing Machinery
Member #9952787
AAAI
Association for the Advancement of Artificial Intelligence
Member #656504
INFORMS
Institute for Operations Research and the Management Sciences
Member #2009712
NDIA
National Defense Industrial Association
Member #1700222
Standards & Policy Alignment
DoDD 3000.09
Autonomy in Weapon Systems, human judgment requirements, failure minimization
NIST AI RMF 1.0
AI Risk Management Framework, context-dependent governance, risk measurement
MIL-STD-882E
System Safety, hazard analysis, risk assessment, safety-critical design
Dual-Use Application

The same governance pipeline that prevents catastrophic failures in military systems directly addresses high-liability scenarios in commercial autonomous operations.

DEFENSE APPLICATION
FRAMEWORK
COMMERCIAL APPLICATION
Fratricide prevention in autonomous munitions under EW spoofing
SATA + ADARA
Autonomous trucking: forced human override during sensor degradation on highways
UAV swarm coordination under Byzantine node compromise
MAIVA
Warehouse robot fleets: isolating malfunctioning units without halting operations
Maritime patrol vessel GPS spoofing into foreign territorial waters
ADARA + ERAM
Commercial shipping: preventing spoofing-induced rerouting losses and piracy exposure
Power grid SCADA command injection during contested operations
FLAME + CARA
Industrial SCADA: mandatory deliberation before automated load-shedding in energy grids
Strategic Roadmap, 18-Month Horizon
Q2 2026, CURRENT
Foundation Complete
7 governance frameworks published · 4 provisional patents filed · 10 BLADE hardware platforms designed (BOM-specified) · 19 browser simulations validated · 33 DOI-verified publications · Rover + UAV testbeds documented
Q3 2026
Hardware Assembly & Patent Conversion
BLADE-EDGE prototype assembly begins · Provisional-to-utility patent conversion initiated (4 applications) · FPGA governance bitstream RTL commissioning · Physical UAV testbed flight validation
Q4 2026
Integrated Testing & SBIR Submission
SATA-FLAME pipeline executing on FPGA hardware (TRL 4→5) · SBIR Phase II proposal submission · BLADE-MARITIME hardware integration · Rover testbed governance validation campaign
Q1–Q2 2027
TRL 6 Target & Research Partnerships
Multi-framework governance validated on physical hardware (TRL 5→6) · Utility patents granted (projected) · Research partnership or CRADA engagement (planned) · BLADE-AV autonomous vehicle integration testing
TRL PROGRESSION: 2–3 → 6 OVER 18 MONTHS
CURRENT: TRL 2–4 TARGET: TRL 6
Explore the research
Publications, simulations, and technical specifications at burakoktenli.com
View Portfolio →
RESEARCH INQUIRIES
info [at] burakoktenli.com
LINKEDIN
linkedin.com/in/burakoktenli
ORCID
0009-0001-8573-1667