Zero-Disclosure Vault Rules

• Raw personal data must never leave the Livre Vault.
• Apps can only request proofs, not underlying values.
• Access to any attribute requires a matching policy leaf.
• Vault proofs must be deterministic and auditable.
• All state changes produce a new vault_state_root.
• The OS enforces principle of least knowledge across all layers.

Threat Model

Cryptography Review

Key Rules

Zero Disclosure

Recovery Protocols