CCMM · Integration Architecture

Works with your
existing systems.

CCMM does not replace your existing platforms. It sits above them, ingesting evidence from your current systems and returning a single, court-defensible convergence score without exposing any proprietary methodology to your environment.

No data leaves your environmentAPI and secure feed integrationCourt-admissible output formattingAnnual SLA and recalibrationIRAP assessment ready
Regulatory and compliance frameworks supported
ISM
Information Security Manual · All government entities and contractors
PSPF
Protective Security Policy Framework · Commonwealth entities
Essential Eight
ASD mitigation strategies · Maturity levels 1 to 3 · All organisations
IRAP
Information Security Registered Assessors Program · Systems handling government data
APRA CPS 234
Information security · Banks, insurers, and superannuation funds
Privacy Act / APPs
Australian Privacy Principles · PII handling · All entities holding personal information
PCI-DSS
Payment Card Industry Data Security Standard · Any entity processing card payments
SOCI Act 2018
Security of Critical Infrastructure Act · Electricity, water, gas, airports, ports
NIST CSF / ISO 27001
International frameworks · Multinational and enterprise environments
Supported data classification levels:
OFFICIALOFFICIAL: SensitivePROTECTEDSECRETTOP SECRETPIIPCI-DSS Cardholder DataPHI / My Health Record
CCMM integration scope and output classification are calibrated to the data classification level of the environment. A PROTECTED environment receives a different integration architecture from an OFFICIAL environment. Classification scoping is confirmed during the scoping consultation.
Select your sector to see the integration model
Your existing systems
Convergence
Engine
Proprietary scoring
Calibrated weights
Domain thresholds
Protected
No formula weights or calibration values are exposed to your environment
CCMM outputs
F2 ECS
Evidence Convergence Score
How many independent streams align on a single conclusion. The prosecution-readiness metric.
F1 BEU
Suspect Probability
Bayesian posterior updated sequentially as each evidence item is processed.
F9 FCCS
Case Readiness Rating
Master composite score for senior investigator briefings and prosecution counsel.
Report
Court-Admissible Output
Formatted analytical record with full audit trail. Classification-stamped to environment level.
Request scoping consultation →
🔒
Formula weights never exposed
Calibrated P(E|H) values, evidence stream weights, threshold bands, and corroboration multipliers are processed server-side only. Your integration receives scores, not the scoring logic. IRAP assessors can verify this separation.
📋
Audit trail on every output
Every CCMM score is accompanied by a documented analytical record showing which evidence streams were active, at what tier, and what the convergence basis was. Court-defensible and APRA audit-ready by design.
🔄
Annual recalibration included
CCMM calibration values are updated annually based on case outcome data and new precedent. Active integration clients receive recalibrated weights automatically under the SLA. ISM and Essential Eight mapping updated at each release.
Ready to scope your integration?
Each engagement is configured to your environment and classification level. Law enforcement, banking, healthcare, critical infrastructure, and government each require different integration architectures. A scoping consultation is the first step.
📋 Request a scoping consultation ← Back to CCMM
NOMATEQ · CCMM Integration Architecture · GABEY Consulting Pty Ltd ACN 121 511 055SSRN Abstract ID: 6364078 · Submitted 7 March 2026