INCOGNITO

Every major fraud — Enron, FTX, Boeing — someone knew. Most stayed silent because speaking up meant exposing themselves. The SEC Whistleblower Program pays 10–30% of sanctions over $1M, but to qualify you must prove you're a real insider. To prove that, you have to say who you are.

INCOGNITO eliminates that tradeoff entirely.

A whistleblower submits their claim through our interface and signs with a Ledger hardware wallet. The entire pipeline runs inside a Chainlink Trusted Execution Environment. Four AI agents — powered by the Chainlink Confidential AI Attester — triage the claim, perform specialist fraud analysis, assess legal standing under Dodd-Frank and SOX, and synthesize a final attested verdict. All inside the enclave. The whistleblower's identity is verified for eligibility, then permanently zeroed before anything exits the TEE.

The attested verdict is posted to INCOGNITORegistry.sol on Ethereum Sepolia at 0x2AA4206Aa0B9d2434fa96c5330C17fc23709f597. Severity 1–2 emits InternalReport routing to board and legal. Severity 3 emits PublicDisclosure routing to regulators, media, and the SEC. Non-credible claims are rejected at the contract level — junk never hits chain.

The orchestration layer is a Chainlink CRE workflow running on a Decentralized Oracle Network — no single point of failure, no bridge, no intermediary. Successfully compiled and simulated via CRE CLI with binary hash d184bdafaa9b92191f9daee11855843e67f3ca96277ab6b91f36accbc50376b8, scanning live Sepolia blocks from block 11054576.

The whistleblower receives a transaction hash. That hash proves a verified insider submitted credible information — without revealing who they are. Not through trust. Through math.

Chainlink services used: Confidential AI Attester, CRE Runtime Environment, Confidential HTTP, EVMClient on-chain write. Multiple Chainlink services meaningfully integrated — every one is load-bearing.

INCOGNITO is built on Chainlink's privacy stack. Every piece is essential — remove one and the guarantee breaks.

THE PROBLEM WE SOLVED A whistleblower needs to prove they're a real insider without revealing who they are. That requires verified identity + anonymous output. Only a TEE makes both possible simultaneously.

━━━ CHAINLINK CRE — The Orchestration Layer ━━━ We built a TypeScript workflow using the Chainlink CRE SDK that runs the entire pipeline on a Decentralized Oracle Network. No single server. No single point of failure. We compiled and simulated it via the CRE CLI - binary hash verified, scanning live Sepolia blocks. The Chainlink team can deploy it to the live network - simulation is complete.

━━━ CHAINLINK CONFIDENTIAL AI ATTESTER — The Brain ━━━ Four AI agents run sequentially inside the Chainlink TEE using the Confidential AI API (qwen3.6, 256K context). Each one does a specific job:

• Agent 1: Reads the claim, categorizes the violation, decides if it's worth processing
• Agent 2: Extracts names, amounts, dates, scores the evidence quality 1–10
• Agent 3: Maps applicable laws like Dodd-Frank, SOX, OSHA and checks SEC award eligibility
• Agent 4: Synthesizes the final verdict and enforces identity = UNKNOWABLE

Every agent fires a real async inference to /v1/inference and polls for completion. You can watch the inference IDs scroll in real time during the demo. Live IDs from ETHGlobal NYC: 019ec2ae, 019ec59d, 019ec59e, 019ec567.

━━━ CHAINLINK CONFIDENTIAL HTTP - The Privacy Gate ━━━ Before the AI runs, the employee's credentials are verified via ConfidentialHTTP inside the enclave. The HR API call goes out from within the TEE - credentials confirmed, then permanently deleted. The employee's identity is used only to check eligibility, never stored, never logged.

━━━ SMART CONTRACT — The Public Proof ━━━ INCOGNITORegistry.sol on Ethereum Sepolia: 0x2AA4206Aa0B9d2434fa96c5330C17fc23709f597 Verified on Sourcify + Blockscout.

The contract receives the attested verdict from the Chainlink DON and routes it:

• Severity 1–2: InternalReport event - board and legal
• Severity 3: PublicDisclosure event - regulators, media, SEC → Not credible: rejected at contract level, never hits chain

━━━ LEDGER — The Human Gate ━━━ Before anything enters the TEE, the whistleblower signs with a Ledger hardware wallet. The Ledger screen shows the payload hash, timestamp, and destination. Physical approval required. We verify the signature server-side before the pipeline runs.

━━━ WHY IT ONLY WORKS WITH CHAINLINK ━━━ AWS TEEs exist but they have no native on-chain posting. You'd need a bridge, which means trusting an intermediary. With Chainlink, the DON posts the attestation directly. No bridge. No middleman. The proof is on-chain before the whistleblower closes the tab.