The platform

An infrastructure-trust platform, end to end

SAUTERA reads the posture of every device, decides what to do about it, acts to fix it, proves what happened, and improves over time. Fourteen named engines do the work — here are the nine that tell the story.

Request a demo See pricing

The SAUTERA Witness sensor

One sensor. Installed or agentless.

The SAUTERA Witness sensor reads a device's vitals and immune signals and vouches for them. It runs two ways — you choose per estate.

Installed (push)

A signed binary reads vitals and immune signals locally and pushes them over a signed channel. Windows and Linux ship today.

Agentless (pull)

Remote collection over SSH, WMI/WinRM, and SNMP — for hosts and network devices where nothing gets installed.

What it observes

Patch currency, AV/EDR presence and currency, host firewall, disk encryption, exposed listening surface, known CVEs, lifecycle/EOL status, and the vitals (CPU, memory, disk, uptime). Trust is concluded from what is observed — never assumed.

The lifecycle

Detect → Decide → Act → Prove → Improve

Every device flows through the same closed loop. Improve feeds the next Detect, so the score is always current.

01
Detect
What's broken?
Read the vitals and the immune signals of every device — patch currency, encryption, exposed surface, known CVEs — and turn them into a trust score you can act on.
02
Decide
What needs me?
Surface the sickest infrastructure first and produce the trust decision — allow, degrade, restrict, or remediate — with the sign-off chain a regulated estate requires.
03
Act
What's being done?
Push the approved fix as a signed, reversible change — then re-collect and check our own work. Closed-loop remediation, human-gated where it must be.
04
Prove
Show me proof.
Write a tamper-evident record of what was found, decided, and done — audit-grade evidence a third party can trust, mapped to the framework you report against.
05
Improve
Are we getting better?
Trend each device's recovery over time so you can show the trajectory — not just today's snapshot — to your board, your auditor, and your customers.

Under the hood

The Nine Marks

The narrative spine of the platform. Each mark owns one job in the loop; together they take a device from a raw signal to a proven, enforced trust decision.

VIGIL

Detect

Reads device posture and produces the trust score.

TELESCOPE

Detect

Spots version drift, config tampering, and breach patterns.

EMCS

Detect

Composes the score across lifecycle, risk, energy, availability, and modernization.

BEACON

Detect · Prove

Triages the fleet worst-first and writes the permanent evidence record.

ARBITER

Decide

Makes the call: allow, degrade, restrict, deny, or remediate.

PARACLETE

Decide

Recommends the fix — with rationale, evidence, and urgency.

SENTINEL

Decide

Enforces the access decision across network, cloud, and endpoint.

COMMAND

Decide

Runs the sign-off chain so irreversible changes get a human gate.

AMEND

Act · Improve

Re-scores after the fix and closes the loop only when the device truly recovered.

Five further engines — VIE, DRIFTMATRIX, ENVOY, AEGIS, and CHANNEL — complete the closed loop: version intelligence, trend analysis, signed dispatch, ZT attestation, and the in-band conveyance layer (CHANNEL) that SAUTERA Edge is being built on. Fourteen in all, no phantom engines.

SAUTERA Edge — on the roadmap

Carry the trust verdict in-band, at the moment of access

A score only matters if it changes what happens at the moment of access. SAUTERA Edge is the in-band runtime mode of our CHANNEL conveyance — designed to carry the infrastructure-trust verdict (allow, degrade, restrict, deny) on the request itself, so a failing host is acted on as it asks for access rather than flagged in a report afterward.

Where it stands — honestly

Today, every trust verdict is already signed and attested on the evaluation response (out-of-band). Carrying that verdict in-band on the wire — and enforcing it at a network policy point — is the next step: the conveyance design is in progress (a Geneve TLV carries the verdict; the IPv6 extension-header path is still a stub).

Verdict signed + attested today · in-band enforcement on the roadmap

Prove

Compliance evidence on demand

Every finding, decision, and fix is written to a tamper-evident record and mapped to the controls you report against. When the auditor asks, you export the package — you don't run a fire drill.

▪SOC 2 (CC families)
▪NIST CSF
▪ISO 27001
▪FedRAMP-aligned

BEACON — the triage board

BEACON surfaces your fleet worst-first, so the sickest infrastructure gets attention before it becomes an incident — and writes the permanent Trust Delta Record that the evidence package is built from.

Trusted

Uncertain

Untrusted

Unknown

Coverage too low to conclude? The band reads Unknown — an honest insufficient-data state, never a confident guess.

Straight talk

What ships today — and what doesn't

We sell trust, so we hold ourselves to the same standard. Here is the honest line between what runs today and what is on the roadmap.

What SAUTERA does today

✓Continuous collection and trust scoring on Windows and Linux — installed sensor or agentless (SSH / WMI / SNMP).
✓The full VOUCH loop in the lab: detect, decide, act with signed reversible remediation, prove with an audit record, and improve over time.
✓Compliance evidence packages mapped to SOC 2, NIST CSF, ISO 27001, and FedRAMP-aligned controls.
✓The Complete Trust Decision — identity trust (Zero Trust) combined with infrastructure trust (SAUTERA) at the point of access.

On the roadmap — and we say so

→macOS and mobile sensors (Windows and Linux ship today).
→Turnkey one-click integrations to third-party tools (the signed-dispatch path is live; most connectors are still maturing).
→Automated CVE-to-patch authoring (remediation payloads are authored today, not yet auto-derived).

Put it on your fleet.

Start free on up to 10 devices, or book a walkthrough with the team.

Request a demo Read the docs