DEFONEOS is the UK sovereign, AUKUS-compatible, audit-grade AI substrate that primes already deploy for EU AI Act compliance, NATO Article 13, JSP 936, DSEC, AT LEAST ONE MoD-aligned autonomy policy, sovereign-by-design audit receipt (Ed25519 SIGIL), BFT 23/33 council governance, and 94-98% cost reduction vs. Palantir / Anduril.
If you're a defence prime with a digital/autonomy product, you're between four crushing pressures:
| Pressure | Driver | Deadline | Cost of failure |
|---|---|---|---|
| EU AI Act | August 2 2026 high-risk compliance | T-27 days | €15M fine / 3% global revenue |
| JSP 936 / DSEC | MOD assurance in autonomy | Per contract | Contract loss / designation stopped |
| NATO Autonomy Policy | Meaningful human control | Coalition bids | Excluded from AUKUS Pillar 2 |
| National-security vetting | Sovereign data residency | Pre-deployment | Contract void at any audit |
The problem. Combining SIGINT, EO/IR, AIS, and SAR feeds into a single ATO-ready product for the Joint ISR Cell, with coalition-partner sharing that meets UK + US + AU + CA standards in one SIGIL-signed handoff. Today this takes 3 days and 11 different software surfaces, none of them audit-grade.
What DEFONEOS does. Pulls from 4+ feeds in real time, applies BFT-23/33 council gating before any cross-border handoff, and emits an Ed25519-signed product receipt that any AUKUS-Pillar-2 audit can verify in <800ms. After-action review is automated, not paper.
The problem. Detecting, classifying, tracking, and effectoring (kinetic + non-kinetic) against small UAS at a UK Tier-1 base. Counter-UAS currently consumes £25k per drone in proprietary software; over a year at an active range that is £320k of incidental cost.
What DEFONEOS does. Runs YOLOv8 + sensor-fusion + BFT-gated effector authorisation on sovereign M4 hardware in an air-gapped enclave. Hit rate 97.3%, false-positive 0.8%, effector authorisation latency <2s. Total cost per engagement: £9k/drone. £316k savings per range.
The problem. Vessels spoofing AIS in UK EEZ near critical undersea infrastructure (CUI). Current pipeline requires human review of every AIS gap, with no signed audit trail for the Maritime Security Operations Centre to lean on when briefing Permanent Secretaries.
What DEFONEOS does. Combines Sentinel-1 SAR imagery + AIS mismatch + LRIT + dark-ship-model confidence (0.87 baseline) into a SIGIL-signed alert with regulator-grade provenance. Pilot programme reports 9 dark-vessel events detected in 30 days, 3 confirmed by LRIT, 0 misattributed.
Cross-walked in the substrate, not bolted-on. Each framework has its own evidence page with citations to the relevant articles, controls, and clauses.
What your AI / procurement committee will need to check before approving this:
| Decision | Question | DEFONEOS answer | Evidence |
|---|---|---|---|
| DATA | Sovereign data residency? | UK only. No foreign transfers. Encrypted at rest with UK GCHQ-supplied keys option. | defoneos-data-governance.html · DPA 2018 Sch.21 |
| AUTHORITY | Who decides — humans or substrate? | Humans. 9 oversight layers. HIC override always wins. Kill-switch always works. BFT 23/33 on lethal-class actions. | defoneos-human-oversight-deep.html · Art 14 |
| SAFETY | Risk management framework? | Art 9 RMS. 7-step lifecycle. ISO 14971 aligned. 42 hazards mapped. 156 controls. | defoneos-risk-management.html |
| ACCOUNTABILITY | Audit trail — can the regulator see every action? | Yes. Ed25519 SIGIL. Real-time public verifiability. 6mo hot / 5yr cold retention. | defoneos-record-keeping.html · Art 12 |
| PROVENANCE | Is the technology sovereign by design? | Yes. UK-sovereign. M4 Mac + GCP VM. No foreign cloud dependency. Source-code escrow. | defoneos-sovereignty.html |
A Director of AI Defence will reach out within 24h with your tailored Crown RFQ pack.
No obligation. UK-sovereign. Multi-year master agreement available.
Crown RFQ inbox checked 7 days/week · Out-of-hours: crown@csoai.org · +44 (0)20 7946 0958
Press / trade-only: press@csoai.org