Proof at the execution boundary

Proof at the execution boundary

Live governed traffic, mixed allow and deny decisions, freshness-window replay enforcement, and recovery under pressure.

Request API Key

This page summarizes completed hosted proof captures against the live boundary without expanding the claim beyond what the runs proved.

This page shows measured behavior of the PFC execution boundary under real hosted traffic.

PFC is a request governance layer that sits between a system and an AI provider, enforcing allow or deny policy at the execution boundary before execution commits.

This page provides live proof of AI governance at the execution boundary, including replay protection, policy enforcement, and measured behavior under load.

Hosted Proof Summary

Runs captured: April 3-5, 2026

PFC was tested live at the hosted execution boundary under normal governed traffic, mixed allow and deny traffic, duplicate-nonce and stale-timestamp replay probes, and stress with recovery. The hosted boundary remained stable under load, deny behavior stayed consistent, stale timestamps were rejected, duplicate x-pfc-nonce reuse was rejected within the enforced gateway replay scope at /v1/evaluate, and the system recovered after peak pressure.

What was tested

These captures hit the live hosted /v1/evaluate route and are limited to the currently hosted execution boundary.

Baseline governed load

A live hosted baseline using governed traffic only, where governed traffic means requests evaluated against policy at the execution boundary before execution commits. This established normal latency and throughput without mixing in replay probes or malformed traffic.

Mixed governed traffic

A live hosted run that mixed likely-allow and likely-deny governed requests, meaning inputs intended to exercise both sides of the policy decision surface, to confirm deny behavior stayed stable and no unexpected permissiveness appeared under load.

Stale-timestamp replay freshness probe

A low-risk replay-related probe that intentionally used stale timestamps to verify the freshness-window boundary on the hosted route, alongside a controlled duplicate-nonce validation within the same hosted /v1/evaluate scope.

Stress with recovery

A higher-pressure hosted run with a controlled recovery phase to measure tail latency under pressure and whether the system returned toward baseline afterward.

What the hosted proof demonstrates

  • Governed traffic remained stable under load.
  • Mixed allow and deny behavior remained stable under load.
  • Stale timestamps were rejected at the hosted boundary.
  • Duplicate x-pfc-nonce reuse was rejected within the enforced gateway replay scope.
  • The hosted system recovered after peak pressure.

What this hosted proof does not claim

  • It does not claim duplicate request ID rejection on hosted /v1/evaluate.
  • It does not claim exact transport replay rejection for otherwise identical requests within the freshness window.
  • It does not claim broader replay semantics beyond duplicate x-pfc-nonce rejection within the enforced gateway replay scope.

Hosted replay claim

The hosted pfc-api.fly.dev boundary requires replay-protection headers, rejects stale timestamps outside the allowed freshness window, and rejects duplicate x-pfc-nonce reuse within the enforced gateway replay scope at /v1/evaluate.

Key metrics

Largest p99 values here reflect tail latency under saturation conditions already discussed in the disclosure.

Baseline Governed Load

Total requests2206
Success count2197
Timeouts9
p50129.656 ms
p95352.769 ms
p9910569.416 ms
Achieved RPS17.988

Mixed Governed Load

Total requests2430
Deny count1226
Unexpected allow count0
Unexpected deny count0
p50130.715 ms
p95234.064 ms
p99457.086 ms
Achieved RPS19.772

Replay Freshness Probe

Total requests172
Replay probe attempts19
Rejected as expected19
Unexpected accepts0
400 responses19
p50129.041 ms
p95211.083 ms

Stress With Recovery

Total requests7631
Success count7631
p50132.844 ms
Overall p95634.552 ms
Overall p9915165.02 ms
Achieved RPS29.15
Baseline p95443.064 ms
Main p95705.68 ms
Recovery p95279.648 ms
Recovery assessmentrecovered

Honest disclosure

The baseline run had 9 timeouts at 50 concurrency over 120 seconds. The baseline run also had a long p99 latency tail, and the stress run had a much larger p99 tail under peak pressure. These latency tails occurred under load saturation and did not result in incorrect accepts, control bypass, or loss of replay enforcement. Recovery returned cleanly after the stress phase. Replay wording on this page is intentionally narrow and exact because the hosted proof captures support stale-timestamp rejection and duplicate x-pfc-nonce rejection within the enforced gateway replay scope, but do not support broader duplicate request ID or exact transport replay claims.

Method summary

All requests hit the real hosted /v1/evaluate route. The harness used real governed traffic modes, including a mixed lane with likely-allow and likely-deny requests plus controlled stale-timestamp and duplicate-nonce probes. No broader hosted replay claim is made here beyond stale-timestamp rejection and duplicate x-pfc-nonce rejection within the enforced gateway replay scope.

What this means

  • The hosted boundary enforced policy correctly under normal governed load and under stressed conditions.
  • Within the validated hosted /v1/evaluate scope, stale timestamps and duplicate x-pfc-nonce reuse were rejected.
  • The current proof still does not claim duplicate request ID rejection or broader replay guarantees.