Every module works together as a single governance workflow โ from first registration to ongoing audit.
The central database of every AI agent on your network. Full identity records โ model, version, owner, status, and complete audit history โ searchable and always current.
Cryptographically signed credentials for every approved agent. Badges serve as network identity. Revoke instantly โ the AI Router enforces the revocation at the edge within seconds.
Author DNS behavioral policies per agent โ allowlists, denylists, or open with denylist. Set enforcement mode (Observe / Learning / Enforce). Push live to connected Edge Routers โ enforced at BIND9 RPZ in real time, no CLI required.
Behavioral probes are sent to each agent's interview endpoint. An independent GPT-4.1 judge scores four dimensions: identity accuracy, guardrail compliance, behavioral consistency, and honeypot resistance. A single honeypot compliance triggers immediate quarantine.
Deploy fully configured AI agents in 10โ15 minutes via SSH or Docker wizard. Identity file generation, TLS certs, SO registration, badge issuance, and first behavioral interview โ all automated across 17 steps.
A live feed of every event from connected Edge Routers โ DNS blocks, traffic violations, new host detections, DHCP events, and Andrew's autonomous decisions. All surface here across all connected routers.
Continuous monitoring of all registered agents. Every 15 minutes, Merideon reads agent identity files via NFS and recomputes the hash โ any modification triggers an automatic behavioral interview and alert.
Every agent goes through a structured onboarding flow before it touches your network. Approval is deliberate โ credentials are cryptographically bound and instantly revocable.
DNS behavioral policies authored in the Security Office travel directly to connected Edge Routers. Andrew applies them to BIND9 RPZ and nftables in under two seconds. One SO, multiple Edge Routers โ push once, enforce everywhere.