AURA

External Accounts

Encrypt ciphertexts, dWallet signatures, and confidential guardrails

External Program Accounts

Execution reads accounts owned by the Ika networks — Ciphertext and DecryptionRequest (Encrypt FHE) and MessageApproval (dWallet signing). These are parsed by aura-core but not owned by it.

External ownership

These accounts are owned by the Encrypt and dWallet programs, not by aura-core. They are referenced by aura-core instructions but created and managed by external programs.

Encrypt Ciphertexts

Encrypt Ciphertext accounts can be scalar policy outputs or fixed-width SIMD vectors. Confidential batch submission currently accepts ready EUint64Vector ciphertexts for the packed amount and per-item-limit inputs, with at most 8 public active lanes.

See Confidential Guardrails for more details on FHE integration.

dWallet MessageApproval

dWallet MessageApproval accounts hold co-signed transaction messages from the dWallet network, verified during finalize_execution.

See dWallet Execution for more details on multi-chain signing.

ConfidentialGuardrailsAccount

Expanded confidential posture sidecar: Encrypt epoch marker, enabled flag, and encrypted limit/counter ciphertext pointers. This account is owned by aura-core but references external Encrypt ciphertexts.

Seeds:

[b"confidential_guardrails", treasury]

request_policy_decryption can bind a decryption request to this epoch, and confirm_policy_decryption rejects stale-epoch results (GuardrailEpochMismatch).

ComplianceOracleAccount

A sanctions/compliance oracle owned by aura-core. It stores a sanctions_root (a 32-byte merkle root of denied addresses), the maintaining authority, and last_updated_at / update_count. The proposal path checks recipients against this root, and configure_liveness_guardrails can require it to be fresh (require_compliance_oracle_freshness) so a stale oracle blocks spends.

Seed prefix:

b"compliance_oracle"

Policy Verification Accounts

Additional aura-core-owned accounts for policy simulation, receipts, and attestation:

AccountSeedsPurpose
PolicyCheckResult[b"policy_check", treasury, caller]CPI policy-check result
PolicySimulationResultAccount[b"policy_simulation", treasury, simulation_id]Non-mutating simulation result
PolicyReceiptAccount[b"policy_receipt", treasury, proposal_id]Compact policy decision receipt
PolicyAttestationAccount[b"policy_attestation", treasury, attester, policy_version]Policy attestation
InvariantReportAccount[b"invariant_report", treasury, report_id]Invariant check report

On this page