Operational results, not hype
- Self-supervised baselines at the edge.
- Drift signals for early compromise.
- Policy-scoped containment and segmentation.
- Audit-first decision trails.
- Safe rollout and rollback discipline.
FeaturesCurrent capability set
Concrete controls forgoverned edge defence
Clarity first. Policy scope. Reviewable outcomes.
Built for constrained environments
- No raw traffic export by default. Opt-in sharing.
- Approvals define action scope and escalation.
- Decision records support governance and incident review.
Core mode avoids payload inspection requirements.
Self-supervised baselines
Learn normal behaviour locally. Flag drift fast.
Encrypted visibility
Operate on behaviour signals. Core mode avoids payload inspection.
Policy-scoped actions
Restriction and containment stay inside defined rules.
Approval boundaries
Named owners. Clear escalation. Controlled enforcement.
Audit-first outputs
Decision trails stay clear for operators and governance teams.
Rollback discipline
Signed updates. Rollback ready. Controlled rollout windows.
For targeted threat environments
- Stricter egress policy and device boundaries
- Faster drift review and escalation pathways
- Reduced exposure through controlled communications
High-risk mode adds stricter control and faster review.
Phones and IoT are black boxes
- Payload inspection is often unavailable
- Behaviour still signals compromise and drift
- Governance turns signals into controlled action
Collective immunity layer (opt-in)
- Share indicators and aggregated updates
- Policy controls what leaves and when
- No raw traffic export by default
Sharing is optional. Governance stays local.
What you receive
- Decision trails and review notes
- Policy actions and approval records
- Weekly summary pack
Stage before automation
- Start alert-only
- Guided actions with review
- Move to enforcement when approved
Request a pilot
- Clear scope
- Measurable outcomes
- Expansion decision support