CTinFold
Whitepaper · No. 06 · Failure Artifacts & UniCat
Working Paper · Series 01 · Integrity by Design
Sealed 28 June 2026
Page 01 / 01
Two systems that make CTinFold trustworthy by design

Failure Artifacts and UniCat.
Nothing happens invisibly.

Two systems solve two different problems with the same commitment. One ensures that when something does not work, the record survives. The other ensures that when something is understood, it is understood correctly and consistently. Together, they are part of why CTinFold's declarations can be trusted.

Abstract

A financial system earns trust in two places that are easy to overlook: how it behaves when something fails, and how reliably it understands what it is being told. Most software fails silently and reads documents brittlely. CTinFold does neither. Every failure writes a permanent, structured artifact to disk before anything else happens, so nothing vanishes. And every document is read through UniCat, a governed dictionary that maps the many ways a financial concept is written, across languages and conventions, back to one precise internal relation. Nothing is lost, and nothing is guessed.

Part OneFailure Artifacts
§ I

The problem with most financial software.

When something goes wrong inside a financial system, a declaration fails, a rule rejects an entry, a background process cannot complete, most software does one of two things. It shows the user a generic error message and moves on, or it fails silently and the event simply vanishes. Either way, six months later, when an auditor asks what happened here on the fourteenth of March, the honest answer is that nobody knows. The evidence was never kept.

"In a system that handles financial declarations, silence is the most dangerous failure mode."
§ II

Every failure must leave a trace.

This is not a logging feature bolted on afterward. It is a founding principle of how CTinFold is built. If a declaration is rejected, if a check fails, if the system encounters something it cannot process, a permanent, timestamped record is written to disk before the system does anything else. A failure artifact is not a vague log line. It is a structured record that answers, precisely, five questions.

What
The type of failure

The exact category, not a generic error.

Why
The condition that triggered it

The specific rule or state that stopped the action.

Attempted
What was tried

The relevant details of the declaration or action involved.

When
The moment

Down to the second, in UTC.

A fifth field records the system state at that moment, enough context to reconstruct the situation without guessing.

Failure Artifact · specimenWritten to disk
Type
WITHDRAWAL_EXCEEDS_BALANCE
Condition
Requested 90,000 · outstanding balance 60,000
Attempted
withdrawal · depositor section D-0007
Timestamp
2026-06-28T14:03:52Z
State
Section ACTIVE · nothing deducted · nothing corrupted
§ III

Every failure is evidence, not noise.

A rejected transaction that leaves no record is indistinguishable from a transaction that never happened at all. In an audit, in a dispute, or in a regulatory review, that difference matters enormously. A partner who tries to withdraw more than their outstanding balance does not just see the word rejected. The system writes an artifact showing exactly what was requested, what was available, and when the attempt was made. Nothing is deducted, nothing is corrupted, and nothing is lost. The attempt itself becomes part of the permanent, verifiable record.

This means CTinFold's history is complete. Not just the successes, but the honest record of everything that was tried and why it did not proceed. That completeness is what makes the system auditable in a way that "it probably worked, trust us" never can be.

Part TwoUniCat
§ IV

The problem with financial document intake.

Financial documents do not arrive in one format. An invoice from one supplier says Total Amount Due. Another says Grand Total. A third, in Arabic, says المبلغ الإجمالي. A murabaha contract might be labelled Murabahah Agreement, Cost-Plus Sale, or simply Deferred Payment Sale, depending on who wrote it, in what language, and under what convention. For a system to reliably understand what kind of transaction it is looking at, it needs to recognize all of these as the same underlying thing.

Most systems solve this badly. They either force every document into a rigid template, or rely on brittle keyword matching that breaks the moment a supplier phrases something slightly differently.

§ V

One dictionary, one precise relation.

UniCat is the universal category and relation dictionary that sits behind CTinFold's document intake. It is a single, continuously growing map that connects the many real-world ways a financial concept gets written, in English, in Arabic, in conventional finance terms, in Islamic finance terms, back to one precise, unambiguous internal relation.

"Murabahah facility" "Cost-Plus Sale" بيع المرابحة
murabahaAAOIFI SS 8 · correctly routed & governed

The same discipline applies across every category CTinFold supports, sales, purchases, leases, loans, deposits, guarantees, agency arrangements, and the full range of Islamic finance contracts recognized under AAOIFI standards.

§ VI

Governed, append-only, and traceable.

UniCat is not a static lookup table. It is a governed, append-only registry. New terms and new relations are added deliberately, with a clear record of when and why, never silently overwritten. Every entry can be traced to real-world accounting codes and Shariah standard references where applicable, so the mapping is not just linguistic convenience. It is grounded in recognized financial and Islamic finance authority.

This is what allows CTinFold to take in a real invoice, a real bank statement, or a real contract, written the way people actually write them, in the language they actually use, and understand it correctly, every time, without forcing the partner to conform to a rigid template first. The same document, read twice, produces the same classification, every time. No ambiguity, no silent misclassification, no "the system guessed."

Together

Failure Artifacts and UniCat solve two different problems with the same underlying commitment. Nothing in CTinFold happens invisibly, and nothing is left to guesswork. One ensures that when something does not work, the record survives. The other ensures that when something is understood, it is understood correctly and consistently. Together, they are part of why CTinFold's declarations can be trusted, not because the system claims to be reliable, but because every step it takes leaves proof.

Export Hash
SHA-256
D8F3016A2C7E45B9640A1FDC97E23BB5C80A3F1762E9D4C0AF51B8C7640E29B4
Computed at export.
Recompute to verify
this document is untouched.