Sample kye.report.v1 Auditor view synthetic tenant

Auditor Evidence Pack™ — Control-mapped findings · public-key verifiable offline.

A representative kye.report.v1 envelope for a External Auditor. The bytes you see are signature-covered — anyone with the published assembler_kid public key can verify the report locally, with no portal log-in and no vendor cooperation.

Synthetic tenant. Real reports carry tenant-PII and are scoped to the customer's admin console. Mechanism details are part of the patent track and not disclosed in this repository.

Executive verdict

Acme Ltd's SOC 2 Type II controls operated effectively during Q2 2026. 64 of 64 controls tested; 0 deviations requiring management response; 4 informational observations. Every test artefact carries a signed evidence_pack with public-key verifiable signature.

Supporting findings

  1. CC1 (Control environment) · 8/8 controls effective · 1 informational obs (training-completion tracking refinement).
  2. CC6 (Logical access) · 12/12 controls effective · 0 deviations.
  3. CC7 (System operations) · 11/11 controls effective · 1 informational obs (incident classification taxonomy).
  4. CC8 (Change management) · 9/9 controls effective · stub-free CI gate operated continuously across the audit window.
  5. A1 (Availability) · 7/7 controls effective · uptime 99.97% (commitment 99.5%).

Framework binding

ClauseKYE™ artefact that binds it
SOC 2 — Trust Service CriteriaPer-control test artefact = signed evidence pack.
AICPA AT-C 105 — Direct engagementWalkthrough fully replayable from envelope + public key.
ISAE 3000 — Assurance engagementCross-border evidence carried in envelope.
AICPA SOC 2.0 — Examination scopeAll 64 controls bound to KYE™ artefacts in compliance/coverage.
ASB 145 — Risk assessmentPer-control risk-tier evidence in decision_map graph.

Signature

The bytes of this page are the canonical artefact; the signature fragment below binds them.

{
  "schema_id":     "kye.report.v1",
  "report_id":     "kye:report:soc2_type2:sample-acme:2026Q2",
  "tenant_id":     "kye:tenant:sample",
  "report_kind":   "soc2_type2",
  "framework":     "soc_2",
  "period_start":  "2026-04-01T00:00:00Z",
  "period_end":    "2026-07-01T00:00:00Z",
  "sealed_at":     "2026-07-01T00:00:00Z",
  "assembler_kid": "kye:kid:sample-acme:auditor-q2-2026",
  "signature_b64": "MEUCIQDxRy…(truncated; sample)…"
}

verified Verify a real envelope offline →