CloudVault, post-quantum cryptography, permissioned L1 blockchain, unified L2, MPC signing, ZK proofs, and TEE compute — engineered together as a single coherent trust system.
CloudVault is the distributed policy, governance, and security backbone of Maithraa. It never stores private keys. It never signs transactions. It only asks one question: "Is this allowed?"
User + Device + Cloud — three independent factors, zero single-point-of-failure
IN · UAE · EU · US nodes. 3-of-5 threshold signing. DKG + re-sharing policies
Identity, device, SIM, jurisdiction, and risk — deterministic rule evaluation on every intent
Merkle-batched audit logs anchored to L1. Compliance without exposing personal data
India-mandatory SIM identity verification. SIM-swap detection and IMSI/MSISDN hashing
TEE, Secure Enclave, StrongBox attestation. Device Fingerprint Hash, drift detection
Permissioned Layer-1 with PoA + BFT hybrid consensus. Rust-only deterministic runtime. Identity-bound validator network.
Single unified L2 framework with shared security, governance, and data availability — under L1 oversight and finality.
Multi-Party Computation nodes hold key shares in memory only. Threshold signing requires quorum approval. No single node ever holds a complete key.
SNARK/Plonk/Halo2 validity proofs for shielded pools, confidential transactions, ZK-identity, and AML-compatible privacy. L2 batch ZK proofs for efficiency.
Trusted Execution Environments (SGX/SEV/TrustZone) for confidential AML, AI analytics, and on-chain result anchoring. Remote attestation for integrity proofs.