# The LayerV Security Model

> LayerV rebuilds access security on guarantees you can measure: cryptographic proof instead of patched code, no standing targets, and review in the open.

Source: https://layerv.ai/security-model/

---

First principles 

# AI changed the threat model.  
We changed the security model.

Attacks now run at [machine speed](https://layerv.ai/mythos-ready/). The traditional answer is more engineering — another layer, another rule, another patch — and every layer is more code that has to be perfect. LayerV rebuilds access on the one foundation that speed doesn’t erode: mathematics, which has guarded Bitcoin’s trillion-dollar ledger, in the open, for seventeen years.

AI makes attacks faster. It doesn’t make 2¹²⁸ smaller.

No standing target to scan or attack.

Secure with the design fully public — the bar since 1883.

The three shifts 

## A different foundation for access

Start from what an honest model must assume — all code has bugs, every visible target gets found, secrecy is not a strategy — and each shift follows.

01

### Guarantees you can measure.

Every firewall, VPN, and gateway is software defending against people paid to break software. LayerV changes the contest: access is granted on cryptographic proof, and the cost of forging proof is a number you can look up.

Why engineered defenses fail on a schedule 

Firewalls, VPNs, and ZTNA defend with engineering — rule engines, parsers, patch cycles. All of it is code, and code fails on a schedule anyone can read: more than 40,000 new CVEs were published last year alone. AI hasn’t changed how engineering fails; it has only shortened the time until someone finds the flaw.

Bitcoin: a seventeen-year natural experiment 

Bitcoin has been running the natural experiment since 2009\. The engineered systems around it — exchanges, wallets, custodians — have been breached for billions. The cryptography at its core has never been broken. Same prize, same attackers, different foundations.

Where the 2¹²⁸ guarantee comes from 

So LayerV moves the guarantee onto mathematics. Access is granted only against cryptographic proof, and proof can be measured: forging entry means defeating problems that have withstood decades of public attack, at a cost on the order of 2¹²⁸ operations — not finding one overlooked bug. Cryptography even fails differently: it ages in public, through years of published research, while code breaks without warning. That is why the code carrying the math is kept small and open to inspection.

02

### What doesn’t exist can’t be attacked.

A permanent address is a permanent invitation: anyone can scan it, index it, and study it at leisure. LayerV leaves nothing standing — resources stay dark until identity is proven, and the portal closes with the session.

Why every standing address gets found 

The internet’s addresses are static for a human reason: people need something stable to remember, bookmark, and type. Attackers industrialized that convenience long ago — a new public IP draws its first scans within minutes, and every open port joins a searchable index of targets. A standing address concedes the first move, and AI-speed reconnaissance has made the first move decisive.

How access works with no standing target 

LayerV makes access ephemeral instead. A protected resource keeps no standing public presence — to an unauthenticated scanner it returns nothing, not even a refusal. A portal opens only after identity is cryptographically proven, and closes when the session ends. People still get a link they can click; machines never needed a permanent address at all. What remains for an attacker is a network with nothing to enumerate.

03

### Trusted because anyone can attack it.

Security that depends on secrecy can only be believed; security that survives publication can be verified. LayerV publishes the protocol and the source — and invites the attack.

The rule cryptography has kept since 1883 

A closed security product asks for faith: the design unseen, the review private, the failures disclosed on the vendor’s schedule. Cryptography abandoned that model in 1883, when Kerckhoffs stated the rule that still governs the field — a system must remain secure even when everything about it except the key is public.

How trust is earned: AES, Bitcoin, OpenNHP 

Modern cryptography is settled the way science is: in the open, by surviving attack. AES became the world’s encryption standard through a public competition any cryptographer on earth could enter; Bitcoin’s code has been fully visible to its adversaries since the genesis block. LayerV holds its own work to that bar. The protocol is OpenNHP — an open standard co-authored at the Cloud Security Alliance, on the IETF track — and the source is public, so every claim on this page is one you can test.

## From first principles to running code.

The model above ships today: OpenNHP is the standard, qURL™ is the product, and your first invisible resource is minutes away.

[Read the standard](https://layerv.ai/standards/) [See qURL in action](https://layerv.ai/qurl/)



---

*This markdown version is auto-generated from [https://layerv.ai/security-model/](https://layerv.ai/security-model/) for AI agents. Curated agent resources: [llms.txt](https://layerv.ai/llms.txt). For the full interactive experience, visit the HTML version.*

