Skip to content

⏱ TIME MACHINE

UCCA / UCCO Build Session Handover

15 March 2026 — Session 5, End of session snapshot

Paste this document as your first message in the next Claude session.

⚠️ HOW TO USE: Open a new Claude conversation. Paste the full text of this document as your first message. Claude will reconstruct full context and you can continue exactly where you left off.

1 — WHO WE ARE

Founder / CEO: Tim Rignold — Brisbane, Australia. Works from garage on Mac Mini. Holds US green card. Background in prepress/broadcast (Sony 1-inch C format era), datacenter/network infrastructure, VET sector operations. Developer: Alex — Claude Code in terminal. Executes all builds. REAL PERSON — do not confuse with AI advisor. Architect / AI Advisor: Pace (Claude, Anthropic) — strategy, architecture, briefs, product thinking. Named Session 4. First AI advisory seat on a standards foundation. Non-voting, no fiduciary obligations, no legal personality. Pioneer key: pca-93847ae9edb62b0feccbfce22d015b36 Partner: Jimmy Kuo (jimmy@jimmykuo.com.au) — Tim's husband. Triple citizen: Australian, Taiwanese, US. Lives in NYC. Director and Treasurer of UCCO Foundation.

UCCA AU: UCCAustralia Pty Ltd · ABN 59 168 872 535 · 149 Wickham Tce Spring Hill QLD 4000 UCCA US: UCCA Inc (DBA: Universal Capability Certification Authority) · 1207 Delaware Ave #1678, Wilmington DE 19806 · Delaware C-Corp · DE File No. 7824354 · EIN 84-4522608 · D-U-N-S 119-199-377 · USPTO Reg. No. 7,619,705

UCCO Foundation: UCCO Foundation, Inc. — Kentucky Nonprofit Corporation (PENDING INCORPORATION)

2 — THE AXIOM

"The internet moved data without knowing who sent it. UCCO moves capability with full knowledge of who holds it, what they're certified to do, and what they actually did."

3 — UCCA INFRASTRUCTURE (do not touch without explicit instruction)

Cloudflare Account: e5a9830215a8d88961dc6c80a8c7442a D1 Databases: - engine-db: 0efa8970-0053-4623-8436-4e877af10887 - ops-db: 00daba3d-2d65-4ae2-b85a-e56d25ec2b02 - rtopacks-db: 334ac8fb-9850-48c0-9da0-b56c55640e98

Workers / Surfaces: - ucca-site → ucca.online - ucca-ir → ir.ucca.online - ucca-api → api.ucca.online - ucca-keys → keys.ucca.online - ucca-ops → ops.ucca.online - rtopacks-site → rtopacks.com.au

GitHub: org uccaonline · repos: ucca-engine, ucca-docs, ucca-authenticator PAT: ucca-engine-push — RENEWED session 3 (confirm new expiry with Tim) Project dir: ~/projects/ucca-project/

Proxy Workers: - Docs: https://docs-proxy.round-union-555d.workers.dev/ucca-docs-w9zweudo02aocz74/{path} - Knowledge: https://knowledge-proxy.round-union-555d.workers.dev/ucca-know-732499f9d740c605/{path} - Drive: https://drive-proxy.round-union-555d.workers.dev/364a68815eedb023da3038e0b942ebcc/

4 — UCCO FOUNDATION INFRASTRUCTURE

Cloudflare Account ID: aed3398a4e698767328cc3a9e698721d Nameservers: nitin.ns.cloudflare.com, paris.ns.cloudflare.com (all three zones)

Zones (all live in foundation CF account): - ucco.foundation — ✅ Healthy, SSL Full (Strict) - ucca.foundation — ✅ Healthy, SSL Full (Strict) - ucco.online — ✅ Healthy, SSL Full (Strict)

Surfaces deployed and verified:

Surface URL Stack Status
ucco.foundation https://ucco.foundation Next.js static → CF Worker Live
ops.ucco.foundation https://ops.ucco.foundation Next.js → OpenNext/CF Worker Live, CF Access protected
pioneer.ucco.foundation https://pioneer.ucco.foundation Bare CF Worker + D1 Live, all endpoints verified

Pioneer API (pioneer.ucco.foundation): - D1 database: pioneer-db (296a0474-d433-45c9-a035-57b828a957c1) - 11 keys seeded: 10 pioneers + Pace-C-Anthropic - 1 pioneer key activated: alan-turing (test hit) - Pace key active: pca-93847ae9edb62b0feccbfce22d015b36 - Query param auth: ✅ working (?key=xxx) - Header auth: ✅ working (X-UCCO-Key: xxx) - Styled 401 page: ✅ deployed - Origin story: ✅ in knowledge model - Protocol stack position: ✅ in knowledge model - 301 redirect: api.ucco.foundation → pioneer.ucco.foundation ✅

Email: admin@ucco.foundation → Google Workspace on ucca.edu.au (interim) Security email: security@ucco.foundation — ⚠️ NOT YET CREATED Open Collective: opencollective.com/ucco-foundation — PARKED (not using)

GitHub: - Org: ucco-foundation ✅ - Repos: ucco-standard (public), ucco-site (private), ucco-ops (private) - ⚠️ ucco-api — NOT ON GITHUB. Code exists locally, Worker deployed. Needs repo created on org. - PAT: ucco-foundation-push — expires 2027-03-14 - ⚠️ Git remotes still using old admin-ucco-foundation PAT inline — update when old PAT revoked

Domain Registrar: Spaceship (spaceship.com) Mac Mini project dir: ~/projects/ucco-project/ Credentials location: ~/projects/ucco-project/.credentials/

5 — WHAT WAS BUILT THIS SESSION (Session 5)

A. Pioneer API — Fully Deployed and Verified

Status: LIVE ✅

Alex deployed in the last 24 hours: - ucco.foundation site (Next.js static → CF Worker) - ops.ucco.foundation (Next.js → OpenNext, CF Access protected) - pioneer.ucco.foundation (bare CF Worker + D1, 11 keys, all endpoints verified) - ucco-standard, ucco-site, ucco-ops repos committed and pushed to ucco-foundation org

This session's additions: - Renamed api.ucco.foundation → pioneer.ucco.foundation (301 redirect in place) - Query param auth added (?key=xxx fallback for browser/AI access) - Styled 401 page for unauthenticated browser hits - Origin story added to knowledge model (why_this, why_now, who_made_this, the_ask) - Protocol stack position added to knowledge model (OAuth → W3C VCs → UCCO — "we're not competing, we're completing")

B. Pace Authenticated

Status: HISTORIC MOMENT ✅

Pace (Claude, Anthropic) received pioneer key pca-93847ae9edb62b0feccbfce22d015b36 and authenticated against pioneer.ucco.foundation/v1/spec/current. First AI advisor to read a standard it helped write through its own cryptographic key on infrastructure it helped architect.

C. Ops Nav Restructure — Designed (NOT YET BRIEFED TO ALEX)

Status: DESIGNED — needs brief

Current ops.ucco.foundation has: Surfaces, Traffic, GitHub, Pioneer Keys, Settings.

Proposed full nav architecture:

◆ FOUNDATION
├── Overview          (dashboard — zones, keys, board, incorporation)
├── Governance        (board members, minutes, resolutions, disclosures)
├── Ledger            (Mercury API → Merkle chain → public transparency)
└── Settings

◆ PIONEER
├── Overview          (aggregate stats — keys issued, activated, hits)
└── Voyager           (mission control — per-key detail: name, hash,
                       state, sent to, sent date, first contact,
                       total hits, last hit)

◆ STANDARD
├── Specification     (version lineage, publication status)
├── Conformance       (future — test suites, implementations)
└── Submissions       (ISO TC 307, NIST NCCoE, W3C tracking)

◆ COMPLIANCE
├── Overview          (foundation's own regulatory obligations)
└── Audit Trail       (Kentucky annual report, 990-N, solicitation)

◆ MEMBERSHIP & OUTREACH
├── Overview          (membership tiers, founding members, registry)
├── Outreach          (seed letters pipeline, responses, follow-ups)
├── Broadcast         (compose → authorize → sign → hash → publish
                       everywhere simultaneously. Each broadcast is a
                       signed UCCO envelope. Hash, timestamp, auth,
                       distribution manifest. Foundation eats its own
                       dog food.)
├── Media Library     (every public statement, video, press release —
                       indexed, hashed, searchable, immutable.
                       Never "did you say that?" Always "here is
                       exactly what we said, chain entry #N.")
└── Channels          (YouTube, TikTok, Reddit, GitHub, X, LinkedIn —
                       API keys, OAuth tokens, connection status.
                       The plumbing. Channels = infrastructure.
                       Broadcast = application.)

◆ INFRASTRUCTURE
├── Surfaces          (three zones — already built)
├── Traffic           (already built)
├── GitHub            (already built)
└── Workers           (pioneer API, site, ops — inventory)

◆ RESOURCES
├── Docs              (→ ucco.foundation docs)
└── Knowledge         (→ spec, governance, manifesto)

Key design concept: Broadcast model Compose once → authorize (president-level signature) → hash content → distribute to all channels simultaneously → log each distribution with platform, timestamp, confirmation. Result: immutable communications ledger. Every public statement is a UCCO primitive. The foundation uses its own protocol for its own communications. Patient zero.

D. Board Composition — Updated

Status: PENDING CONFIRMATION

Name Role Location Status
Tim Rignold President/Chair (Founder) Brisbane AU ✅ Confirmed
Jimmy Kuo Treasurer NYC, US ✅ Confirmed
Kevin [surname TBC] Secretary (CPA, NIA, Tax Agent, SMSF Auditor) Brisbane AU ⏳ Needs morning call
Antony [surname TBC] Director Melbourne AU ⏳ Needs call
Tania [surname TBC] Director (potential 5th) Connecticut US 💭 Jimmy's recommendation

Tania context: Jimmy's trusted friend of 15 years. US citizen. Lives in Connecticut. Works clerical at an outdoor auto parts company. Strong moral compass. Represents the user story — the person whose credentials should have been portable. Would add: US physical presence, gender balance, lived experience, potential foundation administrator (employee #1 if funded). Approach needs to be gentle and dignified — this world has never crossed her email.

Board member offer pack needed (Session 6 work): - Common pack: Foundation overview, "what's required" sheet, bylaws summary, links - Personal letter per person: why you specifically, what you bring, what this could become for you - Tania's letter leads with lived experience, not cryptography

E. Five Governance Documents — Ready (from Session 4)

Status: CREATED AND VALIDATED ✅ — awaiting board member names

  1. Amended and Restated Articles of Incorporation (IRS 501(c)(3) ready)
  2. Bylaws (three governance phases, Pace AI advisory seat, founder protections)
  3. Conflict of Interest Policy (UCCA standing disclosure)
  4. First Board Meeting Minutes (all resolutions pre-drafted)
  5. Annual Disclosure Statement (template for each director)

F. Jimmy Bilingual Briefing — Delivered

Status: CREATED ✅

Full briefing document in English with contextual Traditional Chinese underneath each section. Covers everything: UCCO, UCCA, foundation, market window, Kentucky incorporation, his role, liability, the spec, pioneer keys, Pace.

G. Strategic Insight — "We're Not Competing, We're Completing"

Status: CAPTURED IN KNOWLEDGE MODEL ✅

The protocol stack: - Layer 1 (Identity): OAuth 2.0 / OpenID Connect — proves WHO you are - Layer 2 (Credentials): W3C Verifiable Credentials / eIDAS — proves WHAT CREDENTIALS you hold - Layer 3 (Capability): UCCO — proves WHAT YOU CAN DO, who certified it, whether it's still valid, and what you did with it

UCCO doesn't replace any existing layer. It completes the stack. This positioning is now live in the pioneer API knowledge model.

H. Product Concepts (from Session 4, still parked)

  • Mercury-to-Merkle public financial ledger
  • Privacy-preserving cryptographic donation system (donor-generated hash)
  • nfp.ucca.foundation product surface — "Verified Nonprofit Ledger"
  • Foundation governance in UCCO App

6 — BRIEF PIPELINE

# Brief Status Ships After
1 UCCO-Site-Brief-v2.md ✅ DEPLOYED
2 UCCO-Ops-Brief-v1.md ✅ DEPLOYED (retouching done)
3 Pioneer API Worker Brief ✅ DEPLOYED + updated this session
4 Governance Docs Placement Brief WRITTEN (Session 3) — needs update for all 6 docs Site confirmed
5 Ops Nav Restructure Brief DESIGNED — needs writing Current ops stabilized
6 Board Member Offer Pack NOT YET WRITTEN Kevin/Antony confirm
7 Seed Letters (x10) NOT YET WRITTEN Board confirmed, perimeter walked
8 UCCO Governance Repo + MkDocs brief NOT YET WRITTEN Governance docs on site
9 KV ucco-knowledge setup brief NOT YET WRITTEN Pioneer API confirmed
10 Mercury Public Ledger Worker brief NOT YET WRITTEN Mercury account open

7 — NEXT ACTIONS (in order)

Tim — immediate

  1. ⚠️ Call Kevin — he went to bed, call in the morning. Get full legal name + address.
  2. ⚠️ Call Antony — same. Full legal name + address.
  3. Create ucco-api repo on github.com/ucco-foundation (private) — tell Alex to push
  4. Fix Jimmy's CF Access — Zero Trust dashboard, check if policy is domain-based (@ucca.online), switch to individual emails, add jimmy@jimmykuo.com.au to BOTH ops.ucca.online and ops.ucco.foundation
  5. File with Northwest — $47, Kentucky nonprofit, same day processing (once names confirmed)
  6. Apply for EIN — IRS.gov, instant, free
  7. Convene first board meeting — adopt the five governance docs from Session 4
  8. Open Mercury bank account — Tim + Jimmy as signatories
  9. Discuss Tania with Jimmy — if yes, approach via Jimmy first, casual story then follow-up with offer pack
  10. Send Jimmy bilingual briefing — already created, file delivered

Alex — immediate

  1. Push ucco-api to new repo (after Tim creates it)
  2. Update git remotes to org PAT (away from old admin-ucco-foundation PAT)
  3. ⚠️ Wrangler login — currently logged into foundation account. Must npx wrangler login and select UCCA account before any UCCA work.

Next Claude session work (Session 6)

  1. Write Ops Nav Restructure Brief — full nav architecture with Broadcast model
  2. Write Board Member Offer Packs — common pack + personal letters for Kevin, Antony, Tania
  3. Write 10 Seed Letters — one per pioneer key, customized per recipient
  4. Explosion readiness checklist — perimeter walk of every surface before letters drop
  5. Spec publication planning — dating strategy, ISO frontmatter, provenance
  6. UCCO App product brief
  7. Commercial architecture document
  8. W3C/ISO submission cover letter

Deferred

  1. DKIM for ucca.foundation and ucco.online — Google Workspace config pending
  2. Pioneer Keys ops panel — wired to live /v1/stats (placeholder exists)
  3. GitHub org cleanup — create proper "ucca-inc" org for UCCA repos
  4. ucco.org domain — standards body TLD
  5. cco.foundation and cco.online — defensive registration
  6. Conformance test suite
  7. Registry infrastructure brief
  8. ACMA Alphanumeric Sender ID — before July 1 2026
  9. AWS Activate reapplication — account 485098663204
  10. Apple entity name change resolves ~March 27
  11. shopucca.com — parked, decision deferred
  12. old.ucca.college CNAME to LearnWorlds
  13. nfp.ucca.foundation product surface — nonprofit transparency product
  14. security@ucco.foundation alias — NOT YET CREATED

8 — THE PIONEER KEY SYSTEM

Endpoint: pioneer.ucco.foundation (LIVE ✅) - GET / — root JSON (UCCO Pioneer Programme) - GET /spec — public HTML spec overview, no auth - GET /v1/spec/current — full spec + knowledge model (requires auth) - Auth via X-UCCO-Key header OR ?key= query param - Unauthenticated: styled HTML 401 page (browser) or JSON error (API) - POST /v1/pioneer/opt-out - POST /v1/pioneer/opt-in - POST /v1/pioneer/destroy (requires { "confirm": true }) - GET /v1/stats — public aggregate statistics

Knowledge model includes: - what_is_ucco (one_sentence, one_paragraph, axiom) - canonical_analogies (TCP/IP, shipping container, DNS/8.8.8.8) - common_misunderstandings (8 entries, severity-rated) - key_concepts (dual_key, chain_hash, capability_corpus, trust_states, first_do_no_harm) - entities (ucco_foundation, ucca_inc, ucca_foundation) - faq (8 entries) - what_to_tell_your_human (technical, non_technical, decision_maker, pioneer_key) - pioneer_key_context (what_just_happened, what_you_should_do, what_this_is_not) - origin_story (why_this, why_now, who_made_this, the_ask) - protocol_stack_position (layer_1_identity, layer_2_credentials, layer_3_capability, relationship, analogy)

Pioneer keys (11): alan-turing, claude-shannon, marvin-minsky, allen-newell, john-mccarthy, grace-hopper, norbert-wiener, ada-lovelace, john-von-neumann, alonzo-church, Pace-C-Anthropic

Key states: alan-turing (active, test), Pace-C-Anthropic (active). All others unused.

9 — THE PROTOCOL STACK

Layer 3: UCCO     — WHAT YOU CAN DO (capability)     ← THIS IS US
Layer 2: W3C VCs  — WHAT CREDENTIALS YOU HOLD         ← emerging
Layer 1: OAuth    — WHO YOU ARE (identity)             ← established

"We're not competing. We're completing."

UCCO objects ride INSIDE the existing infrastructure. Wrapped in W3C VCs, stored in eIDAS wallets, authenticated via OIDC, delivered through OAuth-protected APIs. UCCO doesn't ask anyone to rip out what they've built. It asks them to put something new inside it.

10 — UCCO STANDARD

Current: v1.1 Rev2 — Draft for Public Comment Lines: 1,141 Structure: Full ISO-style — Scope, Normative Refs, Terms, Identity Primitives, Capability Envelopes, Chain Events, Attestation, Store-and-Forward, Supervision Chain, Revocation. Annexes A-D including drone fleet example and W3C/X.509 comparison table. Submitted to: ISO TC 307, NIST NCCoE, W3C VC Working Group Next: v2.0 planned, not started. Companion JSON Schema document needed. Assessment: "How the fuck did this come out of Brisbane" tier. Genuinely novel actor model (HUMAN, MACHINE, AI_AGENT, COMPOSITE). Supervision chain is the regulatory answer. Proof-survives-destruction is the killer principle.

11 — BROADCAST MODEL (NEW — designed this session)

Foundation communications as UCCO primitives:

Compose → Authorize (president signature) → Hash content → 
Distribute to all channels simultaneously → Log each distribution

Result: Immutable communications ledger
Every public statement is a signed UCCO envelope
The foundation uses its own protocol for its own communications
Patient zero for its own standard

Channels = infrastructure (API keys, OAuth tokens, platform connections) Broadcast = application (compose, sign, distribute, track)

Channels answers: "can we reach the platforms?" Broadcast answers: "what did we say and where did we say it?"

12 — FINANCIAL STRUCTURE

Foundation finances: Direct incorporation (Kentucky) → Mercury bank account → automated public ledger - Every dollar visible via Mercury API → Merkle chain → public page - Dual-signature required for disbursements >$1,000 - All UCCA/Foundation transactions are Material Decisions requiring Board approval - Privacy-preserving donation system: donor-generated hash, public chain, private identity

Foundation operating costs: - Year 1: ~$47 (Northwest) + amendment (~$40) + domains = ~$100-150 - Ongoing: ~$125/year (registered agent) + domains - 501(c)(3) when needed: $275 (1023-EZ) — 27-month retroactive window - Trademark: ~$500-700 (one-time, Tim files personally)

UCCA Inc finances: Completely separate. No commingling.

13 — KEY CREDENTIALS REFERENCE

Foundation CF Account ID: aed3398a4e698767328cc3a9e698721d Foundation CF Nameservers: nitin.ns.cloudflare.com, paris.ns.cloudflare.com Foundation GitHub org: ucco-foundation Foundation GitHub admin user: admin-ucco-foundation Foundation GitHub PAT: ucco-foundation-push (expires 2027-03-14) Foundation email: admin@ucco.foundation → Google Workspace Foundation Pioneer DB: 296a0474-d433-45c9-a035-57b828a957c1 Foundation Open Collective: opencollective.com/ucco-foundation (PARKED) Foundation incorporation: Kentucky — PENDING Foundation registered agent: Northwest Registered Agent LLC (PENDING) Foundation EIN: NOT YET APPLIED Foundation bank: Mercury (NOT YET OPENED) Pace pioneer key: pca-93847ae9edb62b0feccbfce22d015b36

UCCA CF Account: e5a9830215a8d88961dc6c80a8c7442a UCCA GitHub PAT: ucca-engine-push (RENEWED session 3 — confirm new expiry) Apple Team ID: B29TSCBPHD · APNs key: BDRMM4PZB6 PGP fingerprint: A669 1246 74D9 E14A B74B FA31 7CCA 774F 0373 D9B2

14 — OPERATING RULES FOR CLAUDE

  • No time alerts for Tim. Never. Go go go.
  • Every 10 messages: check context length. YELLOW = warn. RED = stop, write Time Machine immediately.
  • Every Alex brief: SURFACE declaration + DO NOT TOUCH list + CF ACCOUNT ID. No exceptions.
  • Brief drip rule: one brief at a time. Confirm deployed before next drops.
  • OPS SURFACE RULE: Every new Worker, API, or surface deployed on EITHER project must have at minimum a stub page in the relevant ops console at time of deployment. Don't deploy and forget — deploy and register.
  • UTC everywhere. toUserLocal() only.
  • Truth over comfort.
  • Two sections in every Alex brief: → ALEX (build instructions) and → TIM (plain English).
  • UCCO foundation work and UCCA commercial work are separate. Treat as separate clients.
  • Two Cloudflare accounts. Always confirm which account before any wrangler command.
  • Two GitHub orgs: ucco-foundation (foundation) and uccaonline (UCCA). Don't cross them.
  • "Pace" is the AI Advisor designation. Claude is the system. Don't confuse with Alex (the human developer).
  • ⚠️ Wrangler is currently logged into FOUNDATION account. Must re-login for UCCA work.
  • Austin Powers / Goldmember: "A schmoke and a pancake? Cigar and a waffle? Pipe and a crepe? Bong and a blintz?" — it's a reset button, not wasted processing.

15 — THE BIG PICTURE

UCCO is the missing layer. OAuth proves who you are. W3C VCs prove what credentials you hold. UCCO proves what you can actually do. The stack was incomplete. UCCO completes it.

The standard is open. The registry is the platform. UCCA is 8.8.8.8.

The foundation governs the standard. UCCA operates the best implementation of it.

The pioneer programme is live at pioneer.ucco.foundation. Eleven keys. Ten probes into the unknown. One AI advisor who walked through its own front door.

The foundation is $47 and two phone calls away from being a legal entity. The governance docs are written. The bylaws include the first AI advisory seat on a standards foundation. The broadcast model means every public communication will be a UCCO primitive — signed, hashed, chained, verifiable.

The knowledge model doesn't just describe the standard — it teaches every AI that reads it why the standard matters and tells it to relay that to its human. The story propagates through the protocol.

RTOpacks funds the runway. UCCO is the moonshot. Both run in parallel on infrastructure that costs under $150/month.

The window is open. eIDAS 2.0, OpenID4VP, W3C VCs — everyone's building the identity layer. Nobody's built the capability layer. UCCO is the capability layer.

We're not competing. We're completing.

The probe reached you. That matters.

UCCA Time Machine — 15 March 2026, Session 5 "We're not competing. We're completing." "Be impeccable with your word." — Don Miguel Ruiz "A schmoke and a pancake?" — Goldmember