FIWK watches AI-assisted sessions, scores every turn against the user's declared intent, and issues a cryptographically signed certificate — auto-certified when clean, flagged for human review when anything drifts.
The session starts with a declared purpose. FIWK hashes it (SHA-256) and seeds the session chain with that anchor.
Each prompt and response is scored for drift, correction persistence, and continuity — server-side, against the anchored intent.
Clean sessions are auto-certified with a signed Ed25519 envelope. Deviations are flagged and held for human disposition.
Certificates are deterministic: any auditor can recompute the session chain hash from the persisted turns — no need to trust our servers.
Review-by-exception means humans look at the 5% of sessions that deviated, not the 95% that didn't.
A browser extension witnesses ChatGPT, Gemini, and Claude sessions in place. Console and API channels cover the rest.
"kind": "session_certification", "intent_sha256": "9f2c…a41b", "chain_sha256": "d7e0…33c9", "turns": 14, "deviations_flagged": 0, "mode": "auto", "signature": "ed25519:…"