search

Guardian Layer Overview

Deterministic control for how AI touches real capital

The Guardian Layer is the core safety and control system that sits between Surf’s AI and your funds.

It defines, in code, what is allowed and what is never allowed to happen on-chain. The AI can analyse, plan, and propose actions. The Guardian Layer decides whether those actions are permitted to execute.

This separation is intentional.

In most “AI DeFi” systems, intelligence and execution are fused. If the model is wrong, the transaction still goes through. That is how automation turns into accelerated loss.

Surf is built differently.

Here, automation operates inside hard boundaries that cannot be bypassed.

hashtag
What the Guardian Layer Does

The Guardian Layer enforces deterministic rules before any capital movement:

1. Protocol Allowlists Funds can only be deployed to pre-approved, audited venues. No new protocol can be touched unless it is explicitly allowlisted.

2. Exposure and Concentration Limits Maximum allocation per protocol, per asset, and per strategy. No single venue or position can grow beyond defined risk caps.

3. Slippage and Liquidity Bounds Every move must satisfy:

  • Minimum liquidity depth

  • Maximum acceptable price impact

  • Safe exit assumptions under stress

4. Risk and Health Thresholds Utilisation spikes, oracle deviations, abnormal rate moves, or contract anomalies trigger automatic rejection or de-risking.

5. Simulation Before Execution Before any rebalance:

  • Entry and exit prices are simulated

  • Gas and routing costs are included

  • Worst-case unwind is evaluated

    If the improvement is not real after costs and risk, the transaction is blocked.

6. Circuit Breakers and Emergency Controls If abnormal behaviour is detected:

  • Execution can be frozen

  • Positions can be isolated

  • Capital can be unwound to safe assets

    All without giving discretionary custody to Surf.

hashtag
AI Proposes. Rules Decide.

The Guardian Layer makes a strict architectural statement:

AI is an optimisation engine, not a custodian.

It can:

  • Scan markets

  • Score risk-adjusted yield

  • Simulate strategies

It cannot:

  • Bypass allowlists

  • Exceed exposure caps

  • Ignore slippage limits

  • Break withdrawal guarantees

  • Move funds outside vault scope

If any rule is violated, the action is rejected. Nothing moves. A reason is logged.

When AI is wrong, the outcome is not a loss. It is a blocked transaction and a recorded signal.

hashtag
Non-Custodial by Construction

All execution happens inside user-owned Smart Vaults

The Guardian Layer enforces:

  • Vault-scoped execution only

  • No external redirection of funds

  • No operator withdrawal rights

  • Atomic transactions for rebalance and exit

  • Full user withdrawal control at all times

Surf never takes discretionary custody. The rules, not a team or a multisig, are the ultimate authority.

hashtag
Why This Matters

As AI becomes more capable, the real risk is not intelligence. It is an uncontrolled execution.

The Guardian Layer is the missing control plane for autonomous finance:

  • Deterministic instead of discretionary

  • Enforced in smart contracts, not policy

  • Auditable, verifiable, and non-bypassable

  • Designed for real capital at scale, not experimental bots

This is the standard Surf introduces to the market: AI that can optimise, but only inside provable, on-chain safety boundaries.

PreviousFailure Modes and MitigationNextDeterministic Rules and Invariants

Last updated