| Domain |
Storage Allocation (GB) |
Isolation Strategy |
Filesystem / Typical Paths |
Cores |
Shared / Time Slice % |
Domain Description |
| User VM | 100 | Dedicated for real user data | /usr, /etc, /home, /tmp, /var | 0 & 1 | 0% | Main environment for normal apps, browsing, typing and the Guardian AI. |
| VM AI | 20 | Assists User VM, read-only to main paths | /usr (read-only copy), /etc (read-only copy), /tmp/ai, /var/log/ai | 0 & 1 | 50% VM AI / 50% User VM | AI helper that automates tasks and keeps track of User VM activity safely. |
| DMZ VM | 50 | Honeypot, fully isolated | /usr (duplicate), /etc (duplicate), /tmp (writeable), /var/log/honeypot | 2 | 50% DMZ VM / 50% DMZ AI | Sandbox system to trap malware without risking the main system. |
| DMZ AI | 10 | Monitors DMZ VM, isolated | /tmp/dmz_ai, /var/log/dmz_ai | 2 | 50% DMZ VM / 50% DMZ AI | AI that watches the DMZ VM, records attacker behavior, and protects the main system. |
| Watchdog AI | 5 | Monitors all network & domains | /tmp/watchdog, /var/log/watchdog | 3 | 100% dedicated | AI that constantly monitors all systems for unusual activity, like a security guard. |
| CounterEnclave | 15 | Sandbox for suspicious activity | /tmp/enclave, /var/log/enclave | 3 | 50% shared with Watchdog AI | Safe containment area where risky programs/files run without affecting the real system. |
| Forensic AI | 25 | Analysis & logging of suspicious activity | /tmp/forensic, /var/log/forensic, /var/data | 3 | 50% shared with Watchdog AI | AI that examines malware/attacks, takes notes, and creates reports. |
| Broker AI | 5 | Manages inter-AI communication | /tmp/broker, /var/log/broker | 3 | 50% shared with Watchdog AI | Coordinates all other AIs, passing messages safely without conflicts. |