AIR
Proof Lab
StartEcosystem
Explore (579)Live Systems (52)Pricing
Log InGet API Key✓ Verify It Yourself

Provable Authority for Humans and Agents.

H33-PQ-Video is the post-quantum substrate for every meeting where humans and AI agents share the room. Verify who joined. Verify what happened. Verify what was authorized — after the meeting, by anyone, without trusting H33.

Who joined — signed authority chain What happened — attested action stream What was authorized — bounds enforced at the door
Schedule a Demo Open Product Preview Verify a PQ-Video Receipt
01 / VERIFY

Verify Who Joined.

Every participant — human or AI agent — joins under a signed authority chain bound to a session signing key. Spoofed avatars, unauthorized agents, and unknown principals do not get a seat.

Risk
Anyone can claim to be in the room.
Today, a meeting platform takes any login at face value. An agent can join with a stolen token. A vendor's bot can sit silently in a board call. A deepfake avatar can act on behalf of a CFO.
Control
Authority chain at the door.
The Agent Firewall checks each participant's delegation chain against the room's authority graph. No chain, no seat. Failed admission emits a signed denial.
Proof
Independently verifiable membership.
Each participant record is a signed tuple: (principal, display_name, agent_type, delegation_chain, session_signing_pubkey). Anyone with the Session Receipt can confirm the roster offline.
02 / VERIFY

Verify What Happened.

Every consequential action a participant takes during the session emits an attestation record signed by the actor. The session ends with a Session Receipt that summarizes the action stream and is verifiable offline.

Risk
Meeting logs are vendor stories.
Traditional meeting platforms keep an internal log you can either trust or not. A regulator, an auditor, or opposing counsel has no way to independently confirm what an agent did in a session six months ago.
Control
Attestation per action.
Each action — wire approval, document share, policy change, contract sign — is signed by the actor's session key and carries a hash of the action payload. No silent edits, no retroactive log rewrites.
Proof
Portable Session Receipt.
The end-of-session receipt is a signed transcript anyone can verify against the H33 public verifier. The transcript is comparable to the Genesis Receipt — any drift surfaces in Authority Diff.
03 / VERIFY

Verify What Was Authorized.

Authority is not a checkbox on a slide — it is a cryptographic bound that travels with the participant and is checked at every action. Acting outside the bound produces a signed refusal, not a silent failure.

Risk
Agents act past their permission.
An autonomous procurement agent is told it can spend up to $50,000. Three weeks later, no one can prove that bound was actually enforced when it sent the $9.4M wire.
Control
Effective scope at the door.
The participant's delegation chain produces an effective_scope_at_join — cap, category, threshold. The intersection axiom guarantees scope can only narrow at admission, never widen.
Proof
Provable refusal.
A breach attempt produces a signed denial record, not a silent block. The board can replay the session and see exactly which actions were authorized, which were refused, and why.
04 / DEMO

Authority Map.

The killer view. Every participant, their effective scope, their delegation chain, and any drift from the Genesis Receipt — rendered live so a board member understands the room in fifteen seconds.

Session · Q3 Board Review · 14:02 PT
Verified
Sarah Chen
Human · Host
cap: $unbounded   cat: {board.*}   thr: single-sig
chain: root
Marcus Ito
Human · CFO
cap: $25M   cat: {wire, contract}   thr: 2-of-3
chain: root → Sarah
Compliance Agent
AI · Standard
cap: $0   cat: {read, flag}   thr: none
chain: root → Sarah → policy.v8
Procurement Agent
AI · Custom
cap: $50K   cat: {vendor.contract}   thr: 1-of-1
chain: root → Marcus · scope narrowed
Note-taker
Service · Internal
cap: $0   cat: {transcribe}   thr: none
chain: root → Sarah → svc.note

Indicative view from the dashboard. Live data backed by the substrate-signed authority graph; no mock state in the authenticated product.

05 / ADMISSION

Agent Firewall.

Admission control at the session edge. An agent does not join unless its delegation chain validates against the authority graph, its effective scope intersects the room's policy, and a Genesis Receipt has been emitted. Failed admission is a signed refusal — not a silent drop.

ADMIT
Compliance Agent (AI, standard)
Delegation chain rooted at the host. Effective scope intersects room policy. Genesis Receipt emitted for the session at t=0.
chain: root → Sarah → policy.v8
scope: {read, flag} ∩ {board.*} = {read, flag}
receipt: 9a3f…b21c · signed
REFUSE
Vendor Sales Agent (AI, external)
No delegation link to any human principal in the authority graph. Refusal record signed and emitted; the agent never reaches the session.
chain: unknown_root → vendor.bot
scope: {pitch, schedule} ∩ {board.*} = ∅
refusal: 4d12…ee7a · signed
06 / SUBSTRATE

Genesis Receipt.

The substrate-signed seed of a session's authority graph. It pins the room context, the host principal, the policy version, and the participant set at t=0. Every later action is comparable to genesis — which is what makes Authority Diff possible.

What it binds
A signed claim about t=0
Issued by the H33 authority substrate at session start. Includes the room context ID, the host principal, the policy version, the authority graph hash, the participant set with their effective scopes, and an HMAC-SHA256 envelope signature derived from H33_DISPOSITION_URL_SECRET. Verifiable offline by any third party with the receipt and the H33 public key bundle.
Why it matters
A fixed point for the rest of the session
Without a Genesis Receipt, “what changed?” is unanswerable. With it, every drift — a participant added, a scope widened, a policy version bumped — is a measurable delta that surfaces in the board-level Authority Diff panel. The Genesis Receipt is what turns the session into evidence instead of a story.
07 / BOUNDS

Economic Authority.

A cryptographic bound on what a participant can move — by amount, by category, by approval threshold. Bounds intersect at admission: caps go down, never up; categories can only narrow; thresholds can only rise. Provable refusal when an action breaches the intersected bound.

Bound
Delegated from host
Effective in this session
Cap (currency amount)
$10,000,000
$25,000  ↓
Category (action class)
{wire, contract, vendor.*}
{vendor.contract}
Threshold (approvers)
1-of-1
2-of-3  ↑

Intersection axiom enforced at the substrate layer. Any attempt to widen a bound mid-session produces a signed refusal and a delta in Authority Diff.

08 / IDENTITY

Deepfake Authority.

Not deepfake detection — deepfake authority. A participant's voice and likeness are bound to their session signing key. A spoofed avatar cannot impersonate a principal because the impersonator cannot produce a signature under the bound key.

Risk
Detection is a losing race.
Perceptual deepfake detection is asymptotic. Each new model generation is harder to flag than the last. Eventually the heuristic catches the previous generation while the next one is already in the meeting.
Control
Identity = signature, not pixels.
The principal's likeness is presentation; the principal's identity is the triple-PQ signing key (ML-DSA-87 + SLH-DSA-256 + FALCON-1024) bound to the session at join. A perfect avatar with the wrong key is not the principal.
Proof
Provable presence.
Every utterance and action is signed by the bound key. After the meeting, anyone can verify the principal was actually present — without trusting the platform, the codec, or the perceptual layer.
09 / FAQ

Frequently Asked Questions

H33-PQ-Video is the post-quantum authority substrate for meetings where humans and AI agents share the room — it proves who joined, what happened, and what was authorized, verifiable after the fact by anyone. Use it when the authority in a session must be provable to an outside party (board, auditor, regulator, court, counterparty); a plain encrypted meeting tool is enough when privacy of the bytes is all you need and no one will later have to prove who was authorized to do what.

What does H33-PQ-Video actually prove?
Three things, independently verifiable after the meeting ends. Who joined: every participant — human or agent — is bound to a signed authority chain at join time. What happened: every action emits an attestation record signed by the actor's session key. What was authorized: every action is checked against the participant's effective scope before it lands. The Authority Map renders all three live.
How is this different from a meeting platform with encryption?
Encryption proves the bytes were private. H33-PQ-Video proves the authority was real. A board member can replay a session and verify, end-to-end, that every agent in the room had a delegation chain rooted at a human principal, every action stayed inside the economic and category bounds set at the door, and nothing changed silently.
What is the Agent Firewall?
Admission control at the session edge. An agent does not join unless its delegation chain validates against the authority graph, its effective scope intersects the room's policy, and a Genesis Receipt has been emitted. Failed admission produces a signed denial — provable refusal, not silent drop.
What is the Genesis Receipt?
The substrate-signed seed of a session's authority graph. It pins the room context, the host principal, the policy version, and the participant set at t=0. Every later action is comparable to the genesis state, which is what makes Authority Diff possible.
What does Deepfake Authority mean?
Not deepfake detection — deepfake authority. A participant's voice and likeness are bound to their session signing key. A spoofed avatar cannot impersonate a principal because the impersonator cannot produce a signature under the bound key. Identity is proven by authority, not by perceptual heuristics.
Can the proof be verified after the meeting by someone who was not there?
Yes. The Session Receipt is portable and verifies offline against the H33 public verifier. Auditors, regulators, courts, and counterparties can confirm every authority claim without trusting H33. The underlying portable attestation is produced by H33-74, and the independent verdict — requiring the triple-PQ signature families (ML-DSA + FN-DSA/FALCON + SLH-DSA) to all verify, a strict 3-of-3 gate — is rendered by Verification.

Bring provable authority to your next meeting.

H33-PQ-Video runs on the same post-quantum substrate as H33-Agent-008 and Q-Sign. The Authority Map, Agent Firewall, Genesis Receipt, and Authority Diff are live in the dashboard today.

Every receipt verifies offline against the H33 public verifier. No vendor trust required.