danny/hosted
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
hosted/ifttt/governance/index.html
root ca2e16c9f6 iftrace: dark mode + header-only nav
2025-12-30 05:54:49 +00:00

180 lines
8.6 KiB
HTML
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

<!doctype html>
<html lang="en">
<head>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1" />
<title>IF.Trace — Open Governance</title>
<meta
name="description"
content="Open governance means third parties can verify what happened without your login. IF.Trace is the receipt backbone: trace pages, stable no-login links, and offline bundles."
/>
<link rel="stylesheet" href="../style.css" />
</head>
<body class="home home--sig">
<header class="sigNav" aria-label="Top navigation">
<div class="wrap sigNav__inner">
<a class="sigBrand" href="../" aria-label="IF.Trace home">IF.Trace</a>
<nav class="sigLinks" aria-label="Site">
<a href="../verticals/">Sector</a>
<span class="sigLinks__sep" aria-hidden="true">|</span>
<a href="../pricing/">Pricing</a>
<span class="sigLinks__sep" aria-hidden="true">|</span>
<a href="../api/">API</a>
</nav>
</div>
</header>
<main id="top">
<section class="hero">
<div class="wrap hero__grid">
<div class="hero__copy">
<p class="kicker">Open governance</p>
<h1>Legible to the governed.</h1>
<p class="lede">
“Governance” fails when its only legible inside your network. IF.Trace moves the proof outside: stable, nologin receipts that third parties
can verify without joining your internal world.
</p>
<div class="panel">
<h3>What this page is (black/white)</h3>
<div class="bw">
<div class="bw__row">
<div class="bw__k">Goal</div>
<div class="bw__v">Make thirdparty verification possible without credentials.</div>
</div>
<div class="bw__row">
<div class="bw__k">Mechanism</div>
<div class="bw__v">Hashes + trace receipts + stable URLs + optional offline bundles.</div>
</div>
<div class="bw__row">
<div class="bw__k">Not implied</div>
<div class="bw__v">“Compliance achieved” or “correctness of interpretation”.</div>
</div>
</div>
</div>
<div class="panel" style="margin-top: 12px">
<h3>The governance stack (where IF.Trace sits)</h3>
<ul class="list">
<li><strong>Receipt layer (IF.Trace):</strong> integrity binding + chainofcustody IDs + share surface.</li>
<li><strong>Review layer:</strong> external review packs, panel critique, dispute workflows.</li>
<li><strong>Enforcement layer:</strong> gates/stopconditions that consume receipts (CI, access, runtime).</li>
</ul>
<p class="fine">Receipts dont replace governance. They remove ambiguity from it.</p>
</div>
<div class="cta" style="margin-top: 12px">
<a class="btn btn--primary" href="../#verify">Try a live trace</a>
<a class="btn" href="../api/">Public share surface</a>
</div>
</div>
<aside class="hero__card" aria-label="Public artifacts">
<div class="card">
<div class="card__media">
<img src="../assets/red-team-stamp-600.png" alt="EYES ONLY // DAVE stamp" loading="lazy" />
</div>
<div class="card__hdr">
<div class="badge badge--ok">PUBLIC</div>
<div class="badge">NOLOGIN</div>
</div>
<div class="card__body">
<div class="mini">
<div class="mini__k">Stable receipt surface</div>
<div class="mini__v">These URLs are designed to be shareable in procurement, audits, and disputes.</div>
</div>
<pre class="code"><code>/static/trace/&lt;shareId&gt;
/static/dossier/&lt;shareId&gt;
/static/dossier/&lt;shareId&gt;/download
/static/pack/&lt;shareId&gt;.md
/static/review/&lt;shareId&gt;.md
/static/marketing/&lt;shareId&gt;.md
/static/source/&lt;source_sha256&gt;.pdf</code></pre>
</div>
</div>
</aside>
</div>
</section>
<section class="section">
<div class="wrap">
<h2>For whom (and who will hate it)</h2>
<p class="sub">A constitutional framing: the goal is legibility to outsiders, not internal comfort.</p>
<div class="grid2">
<div class="panel">
<h3>For</h3>
<ul class="list">
<li><strong>GRC / Audit leads</strong> drowning in evidence requests (SOC 2 / ISO 27001 / vendor due diligence).</li>
<li><strong>Security architects</strong> who need “proof of what ran” without adding manual theater.</li>
<li><strong>Legal / compliance</strong> teams who need chainofcustody that survives disputes.</li>
<li><strong>AI product teams</strong> facing “why did it say that?” questions from customers and regulators.</li>
<li><strong>Gov/defense contractors</strong> who must verify artifacts offline or across lockeddown environments.</li>
</ul>
</div>
<div class="panel">
<h3>Not for</h3>
<ul class="list">
<li>Teams seeking a “compliance badge” without publishing verifiable artifacts.</li>
<li>Workflows where evidence cannot leave the internal network (no share surface, no external verification).</li>
<li>Organizations that want to hide uncertainty: IF.Trace makes gaps visible by design.</li>
<li>Anyone who needs governance to remain ambiguous (receipts reduce wiggle room).</li>
</ul>
</div>
</div>
<div class="cta" style="margin-top: 12px">
<a class="btn btn--primary" href="../whitepaper/">Read the paper</a>
<a class="btn" href="../verticals/">Browse vertical fit</a>
</div>
</div>
</section>
<section class="section section--alt">
<div class="wrap">
<h2>Charters (how we keep it honest)</h2>
<p class="sub">These are plain Markdown docs: readable, linkable, and easy to critique.</p>
<div class="links">
<a class="linkrow" href="https://infrafabric.io/static/hosted/gov/TRIAGE.md" target="_blank" rel="noreferrer">
<span class="linkrow__t">Triage policy</span>
<span class="linkrow__u">https://infrafabric.io/static/hosted/gov/TRIAGE.md</span>
</a>
<a class="linkrow" href="https://infrafabric.io/static/hosted/gov/PANEL.md" target="_blank" rel="noreferrer">
<span class="linkrow__t">Panel / external review process</span>
<span class="linkrow__u">https://infrafabric.io/static/hosted/gov/PANEL.md</span>
</a>
<a class="linkrow" href="https://infrafabric.io/static/hosted/gov/WITNESS.md" target="_blank" rel="noreferrer">
<span class="linkrow__t">Witness model</span>
<span class="linkrow__u">https://infrafabric.io/static/hosted/gov/WITNESS.md</span>
</a>
<a class="linkrow" href="https://infrafabric.io/static/hosted/gov/QUESTIONS.md" target="_blank" rel="noreferrer">
<span class="linkrow__t">Thirdparty questions we expect</span>
<span class="linkrow__u">https://infrafabric.io/static/hosted/gov/QUESTIONS.md</span>
</a>
</div>
</div>
</section>
<section class="section">
<div class="wrap">
<h2>Live example</h2>
<p class="sub">A real trace receipt you can verify right now.</p>
<div class="links">
<a class="linkrow" href="https://infrafabric.io/static/trace/6qRgcR01kw_qNo63Dbs_ob9n" target="_blank" rel="noreferrer">
<span class="linkrow__t">Example trace receipt</span>
<span class="linkrow__u">https://infrafabric.io/static/trace/6qRgcR01kw_qNo63Dbs_ob9n</span>
</a>
</div>
<p class="fine">
“VERIFIED” means the published bytes hash to what the receipt says. “QUANTUM READY” means a postquantum signature receipt exists (additive;
integrity hashes still stand).
</p>
</div>
</section>
</main>
<a class="sigContact" href="mailto:ds@infrafabric.io?subject=IF.Trace%20contact">contact</a>
</body>
</html>
Reference in a new issue View git blame Copy permalink