policy package. This separation is what keeps the trust model stable even as business logic evolves.
Orchestration chain
What each layer is responsible for
ExecutionTrustApplication— the composition root; wires together services, repositories, and the pipeline for a running instance.BusinessTransactionService— accepts and validates incoming Business Transactions before they enter the pipeline.Runtime/RuntimeOrchestrator— coordinate the ordered execution of pipeline stages against an immutable transaction.RuntimePipeline— the ordered sequence of Runtime Components a transaction passes through.ExecutionComponent→VerificationComponent→ReceiptComponent— each stage consumes an immutable transaction/record and returns a new immutable one; no stage mutates its input.ExecutionTrustPipeline/ExecutionTrustRecordBuilder— assemble the final, immutableExecutionTrustRecordfrom everything the pipeline produced.
Runtime vs. trust
An important nuance from the platform’s own terminology: the Runtime produces execution records — it does not itself establish trust. Trust is established by Verification acting independently on the evidence the Runtime produced. This is why Verification is implemented as a separate package (verification) rather than a step the Runtime performs on itself.
Related
Execution Lifecycle
The end-to-end stage sequence a transaction moves through.
Package Architecture
Where each of these components physically lives.