Threat Model
What Nobulex guarantees, what it assumes, and what happens when those assumptions fail.
Assumptions
TEE integrity: We assume the Trusted Execution Environment (TEE) is uncompromised and correctly attests its identity. The enclave intercepts all agent actions before execution; forbidden actions never reach the host.
- Attestation: You can verify which software is running inside the enclave via remote attestation.
- Enforcement boundary: Policy bypass is prevented inside the enforcement boundary (TEE + attestation assumptions).
What happens if the enclave is compromised?
An attacker with control of the enclave could bypass enforcement. Attestation lets you detect this: if the attested software doesn’t match the expected build, you know something is wrong.
Tier 2 (staking / slashing)
When TEE isn’t used, enforcement relies on economic incentives. Stake is at risk; violations trigger slashing. Rational agents don’t violate when the cost exceeds the gain.