Thalorin
Thalorin
Open demo
Capabilities

Coalition interoperability demands integrated compliance orchestration. Thalorin provides the platform that CJADC2 implementation requires.

Abstract gradient
45+3
Zero Trust Capabilities
Target and advanced capabilities required by FY2027.
110
CMMC Controls
Level 2 controls derived from NIST 800-171.
800+
Australian ISM Controls
Information Security Manual requirements.
4
Classification Levels
NIPR, SIPR, JWICS, and SAP environments.
5
Warfighting Domains
Air, land, sea, space, and cyber integration.
7
Zero Trust Pillars
DoD zero trust architecture framework pillars.

CJADC2 compliance spans multiple frameworks, classification levels, and coalition partners.

Coalition Interoperability Demands Integrated Compliance

The Combined Joint All Domain Command and Control initiative connects sensors, shooters, and decision makers across air, land, sea, space, and cyber domains. This requires unprecedented data sharing between the United States and coalition partners.

When DoD shares tactical data with Australia and Japan individually, those partners may lack mutual agreements between themselves—creating scenarios where operationally necessary data cannot flow despite bilateral approvals on both sides.

GAO
GAO-25-106454
April 2025 — Identified scenarios where operationally necessary data cannot be placed in shared environments despite bilateral approvals existing on both sides

Cybersecurity Framework Conflicts Are Measurable

Defense contractors working on multinational CJADC2 programs face framework proliferation that creates real operational burden. When a single system must demonstrate compliance across all frameworks simultaneously, organizations encounter substantial duplication.

A contractor who implements MFA to meet CMMC IA.L2-3.5.3 has likely satisfied requirements in three other frameworks—but no tool provides that mapping automatically.

Feynman Engine
Automated Reciprocity Analysis
When evidence satisfies a control in one framework, the platform identifies corresponding controls in other frameworks that share the same evidence base.
CMMC Level 2
NIST 800-171
110
controls
Australian ISM
ACSC
800+
controls
UK Cyber Essentials
NCSC
~40
controls
Canadian ITSG-33
CSE
Var.
controls
4frameworks unified
into one evidence base

Implementation Spans Classification Boundaries

45
Target Capabilities
+ 3 advanced
7
Pillars
DoD ZT framework
4
Networks
Simultaneous tracking
FY27
Deadline
Full compliance
Classification Environments
NIPR
Development
SIPR
Integration
JWICS
Operations
SAP
Special access
USN
Navy Flank Speed Initiative
October 2024 — Achieved full 91-target zero trust compliance nearly three years ahead of schedule

Vendor Architecture Requirements

The Chief Digital and Artificial Intelligence Office released the Open Data and Analytics Global Interoperability Reference architecture in January 2025—establishing requirements for CJADC2 data ecosystem participation.

01
API conformance to CDAO-defined messaging patterns
02
Data rights allowing government ownership and unlimited access
03
ETL code ownership transfers to government where possible
04
Integration with DoD Data Catalog
05
Enterprise API layer compatibility
Thalorin
Architecture Validation
Documents API conformance, data rights, code ownership, and catalog integration—creating audit-ready evidence packages for acquisition officials.

MPE Compliance Requires Workflow Automation

Coalition operations depend on Mission Partner Environments where allied nations share tactical data. Partners join and exit as missions evolve, creating compliance workflows that must execute reliably under operational tempo.

These workflows execute repeatedly as coalitions form for exercises, humanitarian operations, and contingency responses.

Partner Onboarding Workflow
01
Verify agreements
02
Confirm security posture
03
Provision credentials
04
Document authorization
Join
Validate compliance posture, check agreements, generate approval packages
Exit
Comprehensive access revocation and data handling compliance

cATO Supports Operational Flexibility

Traditional authorization approaches cannot support the pace of CJADC2 development. Systems must evolve continuously to address emerging threats.

Traditional ATO
  • Months of documentation
  • Point-in-time assessments
  • Static assumptions
  • Retrospective evidence
Continuous ATO
  • +Ongoing monitoring
  • +Continuous validation
  • +Automatic deviation detection
  • +Real-time evidence accumulation

Systems connecting tactical networks, satellite communications, and coalition data environments must evolve continuously.

The CJADC2 vision cannot be achieved through compliance approaches designed for simpler environments.

Coalition framework mappingZero trust trackingArchitecture validationContinuous monitoring

By unifying these capabilities within a single platform, organizations can focus on building the connected force rather than managing compliance fragmentation.

Connected force. Unified compliance.

The CJADC2 vision cannot be achieved through compliance approaches designed for simpler operational environments. Thalorin provides the compliance orchestration platform that coalition interoperability requires.

Request a coalition compliance assessment