Banking Overview
Sovereign Mode for Regulated Financial Institutions
ABS Core: Banking Edition
The Banking Edition is the enterprise-grade, sovereign deployment of ABS Core designed for:
- Central Banks & Regulators (BACEN, SEC)
- Financial Institutions (Banks, Fintechs)
- High-Assurance Environments (Defense, Gov)
Sovereign Mode
Unlike SaaS AI wrappers, the Banking Edition runs 100% On-Premise (or Private VPC). No data ever leaves your controlled infrastructure.
Key Features
- Air-Gapped Execution: Run LLM agents without external API calls (using local models like Llama 3 or DeepSeek via Ollama).
- Financial Engine: Native PIX integration, anti-fraud barriers, and real-time risk analysis.
- Immutable Ledger: All agent decisions are hashed (SHA-256) and stored in a tamper-proof audit log.
Architecture
┌──────────────────────────────────────────────────────┐
│ FINANCIAL INSTITUTION (On-Prem / VPC) │
│ │
│ ┌─────────────┐ ┌────────────────┐ ┌───────┐ │
│ │ AI Agent(s) │───▶│ ABS Sentinel │───▶│ LLM │ │
│ │ (CrewAI / │ │ (Policy Gate) │ │(Local │ │
│ │ LangGraph) │◀───│ WASM Kernel │ │ /API) │ │
│ └─────────────┘ └───────┬────────┘ └───────┘ │
│ │ │
│ ┌───────────────────┼──────────────┐ │
│ │ │ │ │
│ ┌──────▼──────┐ ┌─────────▼──────┐ ┌───▼──────┐ │
│ │ Cortex │ │ Immutable │ │ Vault │ │
│ │ (Memory / │ │ Ledger (D1 / │ │ (JIT │ │
│ │ Context) │ │ Postgres) │ │ Creds) │ │
│ └─────────────┘ └────────────────┘ └──────────┘ │
│ │
│ Polygon L2 anchor (async, non-blocking) ──────────▶ │
└──────────────────────────────────────────────────────┘The architecture is composed of three layers:
- Sentinel: Policy enforcement point (PEP). Intercepts every agent action and evaluates it against versioned YAML policies before execution.
- Cortex: State management and memory. Tracks agent context, risk scores, and conversation history across sessions.
- Vault: Secret management and key rotation. JIT credential injection ensures no agent code ever touches raw API keys.
Regulatory compliance
The Banking Edition ships with pre-audited policy packs for:
| Regulation | Coverage | Policy Pack |
|---|---|---|
| BACEN 4.893 | Data residency, audit trail | policy-br-bacen |
| LGPD | PII redaction, consent logging | policy-br-lgpd |
| PCI-DSS | Card data protection, access control | policy-pci |
| HIPAA | PHI isolation, break-glass audit | policy-hipaa |
| SOC 2 Type II | Continuous control monitoring | policy-soc2 |
All policy packs are signed, versioned, and eligible for Certified Vault liability coverage.
PIX Governance Engine
ABS Core includes native PIX integration for Brazilian financial institutions. Every PIX transaction initiated by an AI agent passes through the Governance Kernel before being submitted to the SPI (Sistema de Pagamentos Instantâneos):
Agent intent → [CHI risk assessment] → [Policy evaluation (WASM)]
→ [PIX pre-flight check] → Submit to SPI
→ Receipt → [Immutable ledger] → [BACEN audit export]Suspicious patterns blocked by default:
- Transactions to unknown recipient PIX keys from new agents (first 24h)
- Amounts exceeding configurable per-agent daily limits
- Sequential transfers to the same destination within cooldown windows
- Transfers initiated outside business hours without explicit authorization
Deployment options
| Mode | Infra | Data stays in | Compliance |
|---|---|---|---|
| SaaS Managed | Cloudflare Workers + D1 | Cloudflare Brazil PoPs | LGPD, BACEN advisory |
| Private VPC | Your AWS/GCP/Azure account | Your VPC | Full sovereignty |
| Air-Gapped | On-premise bare metal | Your data center | BACEN 4.893 compliant |
For air-gapped deployments, see the On-Premise VPC Strategy guide.
Get started
Banking Trial Kit
Deploy a fully governed PIX agent in 30 minutes with our pre-configured trial environment.
Compliance Matrix
Full mapping of ABS Core controls to BACEN, LGPD, PCI-DSS, and SOC 2 requirements.
Schedule a Demo
Talk to our team about your specific regulatory and deployment requirements.
Sovereign Deployment Guide
Step-by-step guide for air-gapped, on-premise VPC deployments.