TeNova

SWT3 for Notified Bodies

Continuous cryptographic evidence for EU AI Act conformity assessment

The Problem

EU AI Act Articles 9, 11, 12, and 14 require continuous evidence of risk management, technical documentation, record-keeping, and human oversight for high-risk AI systems.

Current conformity assessments rely on point-in-time snapshots: documentation reviews, interviews, and manual artifact collection. Between assessments, there is no continuous evidence stream proving ongoing compliance.

The Solution

SWT3 is an open witness protocol that produces per-inference cryptographic anchors. Each anchor records three compliance factors, a clearing level, and a tamper-evident fingerprint.

SWT3 does not enforce policy. It creates an independent, continuous evidence record that Notified Bodies can verify against EU AI Act requirements at any point in time.

Evidence You Get

Art. 12 -- Record-Keeping
Per-inference provenance hashing, model identity, latency tracking
AI-INF.1, AI-INF.2, AI-MDL.1, AI-MDL.2
Art. 9 -- Risk Management
Fairness metrics, bias assessment, behavioral baseline drift detection
AI-FAIR.1/2/3, AI-BASE.1, AI-VIO.1
Art. 14 -- Human Oversight
Human-in-the-loop verification, access control, explainability evidence
AI-HITL.1/2, AI-ACC.1, AI-EXPL.1/2
Art. 50 -- Content Marking
C2PA manifest, watermark, and metadata tag provenance witnessing
AI-MARK.1
Art. 10 -- Data Governance
Training data provenance, RAG context hashing, PII lifecycle tracking
AI-DATA.1/2/3/4, AI-RAG.1/2
Art. 16 -- Post-Market
Anchor revocation with 7 reason codes, safe-state transitions
AI-REV.1, AI-SAFE.1

How It Works

  1. Install the SDK -- pip install swt3-ai or npm install @tenova/swt3-ai. Five languages, six package registries.
  2. Wrap the AI client -- Three lines of code. The SDK intercepts inference calls, computes SHA-256 hashes locally, and transmits only hashes and numeric factors.
  3. Evidence flows to auditor portal -- Notified Body assessors get read-only access to real-time compliance posture, exportable as Compliance Passport, OSCAL AR, or conformity checklist.
$10,000 Evaluation Pilot
10 working days. One AI system. Three structured sessions. No custom code.
Request Pilot
47
AI Procedures
5
SDK Languages
6
Registries
928
Tests
23
Namespaces

SWT3 AI Witness Protocol. Open source (Apache 2.0). Patent pending.

Pilot Agreement | Onboarding Guide | FAQ | Full Pilot Scope | SDK Docs

Copyright 2026 Tenable Nova LLC. All rights reserved.