L9
Application / Interface
The user-facing layer where applications expose the layers below to people and other agents. Accommodates two paradigms simultaneously: thin "bring your own everything" interfaces that expose data, identity, and protocols from the layers below with minimal added logic; and thicker applications that bundle additional logic, schemas, and storage on top of decentralized substrates. Both currently exist in the ecosystem.
e.g.BlueSky · Holons · Logseq · Mobilizon · PeerTube
Server-to-server protocols where independently operated instances maintain peer relationships to exchange messages, content, or coordination on behalf of their users. Supports portability of identity and content across server boundaries without a central intermediary. Distinguished from peer coordination by the persistent server layer between protocol and end user.
e.g.ActivityPub · ATProto · Matrix · KOI-net
Where decentralized peers coordinate — where P2P platforms expose their developer abstractions, where integrated runtimes do their constitutive work, and where many P2P protocols' interaction patterns live. Some suites and integrated runtimes subsume this layer entirely, replacing its conventional shape with their own architectural commitments.
e.g.Holochain · Veilid · Ditto · NextGraph · Trunk
L6
Community Data & Governance
Where shared community data lives and where governance decisions about that data are made and enforced — the substrate for collectively held knowledge, agreements, and collaborative state. Distinct from individual identity below and federation above; this is where a "we" of many becomes operationally legible to the systems acting on its behalf.
e.g.Holons spaces · CRDT-based community stores
L5
Identity & User Sovereignty
Where identifiers, credentials, and the cryptographic primitives that anchor "who is acting" are established, resolved, and verified. Distinct from data semantics below and from community governance above. The architectural commitment is that identity is rooted in keys held by parties rather than in records held by central registries.
e.g.W3C DIDs · W3C VCs · DIDComm · KERI · XID
Specifications for describing, structuring, naming, and linking data so it is interpretable across systems regardless of where it is stored or what reads it. Vocabularies, schemas, identifier registries, content addressing, and selective-disclosure formats live here. The Sovereign Stack treats this as a load-bearing infrastructure layer below identity, on the architectural commitment that meaningful data is the substrate identity-bearing actors operate over.
e.g.JSON-LD · Murmurations · Valueflows · Gordian Envelope · RIDs
Logical networks built on top of the underlying IP-routed internet — DHTs, onion routing, mesh routing, libp2p-style overlay topologies, censorship-resistant transports. Distinct from the underlying L1/L2 networking substrate: an overlay network adds peer discovery, alternative routing, anonymization, or topology that the base internet does not provide.
e.g.libp2p · Tor · I2P · Snowflake · Conduit
Where end-to-end delivery, reliability, encrypted-channel establishment, and transport-protocol choices live. Includes TCP and UDP but also QUIC, WebRTC, WebSockets, encrypted-channel protocols (Noise, WireGuard), and alternative transports for mesh networking (LoRa, packet radio). Sovereignty-relevant transport choices are increasingly load-bearing.
e.g.QUIC · WebRTC · Noise · Reticulum · Meshtastic
The commoditized substrate of physical media and network-layer routing. Mostly invisible to sovereignty-architecture decisions because the choice of Ethernet vs. Wi-Fi, or of which IP routing protocol is in use, rarely changes a system's sovereignty character. The Sovereign Stack collapses this territory into a single layer to keep the model's resolution focused on the layers above.
e.g.Ethernet · Wi-Fi · Cellular · IP routing