A public record of what has been built and what does not yet exist. An honest maturity assessment: the current state of the portal is a public prototype / reference demonstrator, not a production product. The entire production layer (live authentication, database, authenticated API) has ROADMAP status — we do not pretend it works.
The same doctrine we apply to incidents, we apply to our own maturity state. Instead of claiming "the system is ready," we show exactly what is built as a demonstrator (static pages, deterministic illustrative engines) and what remains to be done in a production version (IAM, database, audit, API).
Prototype = a complete reference and documentation layer (57+ pages), deterministic illustrative engines, demonstration data marked SIMULATION. There is not yet production authentication, a persistent incident database, or an authenticated API — those elements appear below as ROADMAP.
The history of building the portal in waves. Everything below is a reference/demonstration layer unless noted otherwise.
| Wave | Scope | Status |
|---|---|---|
| F0 | Core: Hub, evidence-first doctrine, data model (illustrative SQL), roles and priorities P0–P3, navigation. | BUILT |
| F1–F2 | Panels: Dashboard, Cyber Map, AI Risk Map, Evidence Board, Legal Board, Response Board (static, demo data). | BUILT |
| F3 | Intake and classification: Incident Intake, Classification Engine (deterministic illustrative rules), Threat Map, incident table. | BUILT |
| F4–F5 | Cyber playbooks (phishing, ransomware, DDoS, vulnerabilities, data leak, supply chain) + AI playbooks (prompt injection, agent hijack, hallucination, deepfake, AI Act, continuity). | BUILT |
| F6 | Compliance and reporting, AI/Agent Security, banking security demo. | BUILT |
| F7 | Exercise layer: Civilization, roster, swarms and cycles, Red Team, Pentest, Exercise Board, Rules of Engagement — no offensive payloads. | BUILT |
| F8 | Interactive: Sentinel (attack/defense simulator, illustrative inline CSS+JS), 4D Tesseract, Poland Protection, Effectiveness (dogfooding). | BUILT |
| F9 | Scale and learning: scales (local→RSC), training + test, Hackathon (rules, leaderboard). | BUILT |
| F10 | Global gateway: Disclosure/VDP, Bug bounty, Threat Intel, Global. English flagship. | BUILT |
| F11 | Full report + uni0nai research program, navigation stitching, tesseract as a 4D trust model. | BUILT |
Two internal audit reviews. Deployed corrections:
Navigation between waves F0–F11 was completed (subnav, section map, no orphan pages). The phosphor terminal and .wrap structure were unified.
The /api/ip3/incidents contract was designed (read-only, demo data). Production wiring remains ROADMAP — the endpoint is not connected to a persistent database.
Phrases suggesting operational readiness ("100% protection", "impenetrable") were removed. Replaced with claim ≤ proof: "evidence coverage", "GAP status".
Reference notices and SIMULATION / GAP / ROADMAP markers were added to pages that could be read as a product declaration.
Production layer. All items have ROADMAP status — designed, not yet deployed. This is not a list of working features.
| Priority | Item | Description | Status |
|---|---|---|---|
| P1 | IAM / RBAC | Identity management and role-based access control (analyst, SOC, compliance, admin). Separation of views by role. | ROADMAP |
| P1 | Audit log | Immutable event log (who, what, when) for audit trail and NIS2/KSC compliance purposes. | ROADMAP |
| P1 | Data retention | Retention and deletion policies for incident data (GDPR Art. 5), TTL, archival. | ROADMAP |
| P1 | Organizations / Users | Multi-tenancy: organizations, users, data isolation between entities. | ROADMAP |
| P1 | legal_assessments | Persistent table of legal assessments (incident → reporting obligation mapping) with history and versioning. | ROADMAP |
| P1 | Production API | Authenticated API (OIDC / mTLS), per-scope authorization, rate limiting. The current contract is illustrative. | ROADMAP |
| P1 | Law Change Watch | Dynamic tracking of legal changes (AI Act, NIS2, KSC, GDPR) instead of static frames. Currently the framework content is entered manually. | ROADMAP |
| P1 | PostgreSQL integration tests | Persistence layer on PostgreSQL + integration tests (intake→classification→report against a real database). | ROADMAP |
| Priority | Item | Description | Status |
|---|---|---|---|
| P2 | EN-all | Full translation of the portal into English (currently the English flagship = one overview page). | ROADMAP |
| P2 | OpenAPI / Swagger UI | Formal OpenAPI specification + interactive API documentation for integrators. | ROADMAP |
| P2 | RoE / VDP forms | Working Rules of Engagement and Vulnerability Disclosure forms (currently descriptive pages without a submission backend). | ROADMAP |
| P2 | Real cyber-range | An actual exercise environment (isolated labs) instead of the illustrative Sentinel simulator. | ROADMAP |
| P2 | SIEM / STIX / TAXII | Threat-intel exchange integrations: STIX 2.1 import/export via TAXII, SIEM connectors. | ROADMAP |