Proposal: CCRE — Canton Composition Reasoning Engine

Development Fund Proposal Submission

Proposal file: proposals/ccre-canton-composition-reasoning-engine.md

---

Summary

CCRE is a topology-aware protocol safety checker for Canton multi-domain deployments. It analyzes Daml contract interfaces together with deployment topology to detect where workflows violate Canton's multi-domain execution model — before deployment. It targets stakeholder hosting violations, cross-domain key ambiguity, and cross-domain contract reference risk. No running Canton node or active ledger connection is required. A working MVP is available at github.com/vickyshaw29/ccre.

---

Checklist

• [x] Proposal file added under /proposals/
• [x] The proposal follows the template structure in proposals/_template.md
• [x] Milestones and funding amounts defined
• [x] Acceptance criteria included
• [x] Alignment with Canton priorities described

---

Notes for Reviewers

• Author: Vicky Prasad
• Total funding requested: 375,000 CC across 4 milestone-based deliverables
• Milestone 1 (Core Validation Engine) is already complete and delivered at github.com/vickyshaw29/ccre — includes CLI tool, 23 tests, deterministic certificate generation, and a working CCRE-003 stakeholder hosting check with multi-domain topology analysis (BLOCKED/PASS decisions via --topology flag)
• CCRE validates visibility (actor ∈ signatories ∪ observers), authorization (actor == choice.controller), and stakeholder hosting across multi-domain topologies. It does not execute workflows or simulate runtime state.
• Complementary to the Daml Package Analyzer (PR #130), which focuses on package-level dependency mapping. CCRE operates at the deployment topology level, detecting where workflows break when deployed across multiple Canton synchronizers.