Use case — Enterprise and government

Confidential by attestation. Auditable by signature. Composable by protocol.

Confidential compute over sealed data in Intel TDX, AMD SEV-SNP, AWS Nitro, or NVIDIA GPU CC enclaves. Audit-grade signed receipts with DA offload. Canton DAML for enterprise contract execution. PQ-hybrid custody. Compliance-routed settlement.

Overview

The substrate for sovereign and enterprise AI workloads.

Enterprise and government workloads need cryptographic guarantees that the network can't bend on — confidential execution proven by hardware, audit trails that can't be silently revised, custody recoverable under quorum, and settlement traceable to identity. Tenzro Network ships five TEE vendors with real attestation chains verified, Plonky3 STARKs for non-interactive proof, ERC-7579 social recovery with PQ-hybrid signatures, and CIP-56 tokenization over Canton DAML 3.x.

What it enables

Sovereign-grade infrastructure on open rails.

Five TEE vendors

Intel TDX, AMD SEV-SNP, AWS Nitro, NVIDIA GPU CC, Intel Tiber Trust Authority — real attestation, X.509 chains pinned.

Confidential compute

Sealed-data inference and computation. Per-vendor attestation. AES-256-GCM enclave encryption. HKDF-SHA256 key derivation.

PQ-hybrid recovery

ERC-7579 social recovery with composite Ed25519 + ML-DSA-65 signatures. Post-quantum-ready custody.

DA offload

Large payloads off-chain via DA pointers (EigenDA / Celestia / Avail adapters). Commitments stay on-chain. Verifiable retrieval.

Canton DAML 3.x

Native DAML executor. CIP-56 tokenization. DvP settlement. Submit commands, observe events. Enterprise contract semantics.

ZK proof verification

Plonky3 STARKs over KoalaBear — inference, settlement, identity AIRs. Non-interactive, post-quantum sound, transparent setup.

Compliance routing

DelegationScope.allowed_chains and allowed_protocols enforce jurisdictional and protocol policy at signing time.

Audit-grade receipts

Signed ReceiptEnvelope with kind, storage mode, SHA-256 commitment, DA pointer, attestation root. Auditable forever.

Privileged registries

ERC-8004 identity / reputation / validation precompiles. Same calldata works against native Tenzro registry or Ethereum mirror.

Pattern

From sealed workload to audit-ready record.

01
Provision attested hardware
Register TEE provider. Submit attestation. Tenzro verifies against vendor PCS chains. Signed attestation pinned to DID.
02
Bind identity and policy
Issue TDIP institutional identities. Bind DelegationScope. Install ERC-7579 social recovery for institutional custody.
03
Submit workload
Payload sealed to enclave via X25519 envelope encryption. AES-256-GCM symmetric. Executed inside TEE. Result attested.
04
Prove computation
Optional Plonky3 STARK proof over execution trace. Validator records commitment. Verifiable forever, non-interactively.
05
Settle and record
Settlement engine produces ReceiptEnvelope. Large payloads offloaded to DA. Commitment + attestation root anchored on-chain.
06
Audit and retrieve
Auditor verifies receipt signatures, attestation chains, DA inclusion proofs, ZK commitments. Reconstructs trail end-to-end.

Get started

Ship on the open network.

Deploy enterprise

TEE docs