Skip to Content
Home

Shipping impossible things. Alone.

Dmitrii Zatona

Principal Systems Architect (Security / Confidential Computing / Cryptography)

Audit logs the DBA can silently rewrite. AI evaluations that stop being comparable the moment a prompt template changes. Sealed workloads where “the operator won’t peek” is a policy, not a proof. These are the failure modes I build against.

Author of two open standards designed as a pair: ATL Protocol proves what happened — cryptographically unforgeable history. APL Protocol proves what it means — every claim bound to its frame. From cryptographic standards and hardware-rooted attestation to sealed workloads and national-scale integrity layers. I ship this kind of infrastructure solo, end-to-end: architecture → implementation → hardened deployment → minimal UI.

Until recently most teams could ignore this. Then LLM outputs started being cited as evidence that disappears the moment the tab closes, deepfakes turned “I saw it” into a liability, and regulators started asking for proofs instead of policies. Trust doesn’t cover it anymore.

Remote, async-first, weekly prepay.

ATL Protocol

When AI hallucinates, logs get wiped, or deepfakes blur reality — where do you look? ATL is the Flight Recorder: mathematically unforgeable history for defense supply chains, intelligence data integrity, ransomware forensics, court-admissible evidence, and AI accountability. Even we can’t rewrite it. Self-sufficient receipts verify offline. Open standard (Apache 2.0). NIST-aligned. TSA + Bitcoin anchoring. 5K+ RPS in Rust. The Infrastructure of Truth.

APL Protocol

“94% accuracy” — on which eval set, which prompt, which temperature? “99.9% uptime” — measured how, over what window, excluding what? Every claim carries an implicit frame; strip it and the number is still verifiable but no longer means the same thing. APL ties every claim to an explicit frame — what was observed, how, and under which assumptions — and refuses to resolve the claim without it. Comparing claims from different frames requires an explicit bridge spelling out what’s preserved and what’s lost. Verifiers return one of two answers: valid or invalid — no hedging. Works on any substrate; ATL is the reference profile. Open standard. Frame-Bound Observation Claims.

Evidentum SaaS

The protocol is open. The infrastructure is hard. Managed integrity layer for SaaS, fintech, legaltech, and AI platforms — anchor your audit trails without running your own nodes. Optional data custody with retention tiers from 24 hours to 10 years. ATL-as-a-Service.

Thunderwind

How do you prove that the code in the repo is exactly what’s running on the server — and that the data you receive actually came from that code? Thunderwind solves the “Last Mile” of trust: cryptographic proof that source → binary → runtime → output is an unbroken chain. Sealed execution environment with zero human access (no SSH, no console). Intel TDX + custom Remote Attestation CA. Built solo in 3 months. Verifiable Computation.

Expertise

“How do we know it’s real?”
Cryptographic proof of history, provenance, and integrity. No trust required.

“Can we trust the runtime?”
Sealed execution, hardware attestation, environments where even admins can’t cheat.

“Will it hold up legally?”
Evidence chains that are timestamped, anchored, and court-admissible.

“Who’s going to build it?”
From protocol spec to production. Architecture → code → deployment. Alone.

Engagement

Weekly prepay. Scope freeze. One decision-maker on your side.

Contact

Ready to discuss your project?

Last updated on
ATL Protocol