Phosra Spec / Capability
OCSS v1.0 — DraftBlock
Hard blocks for prohibited content and apps.
What Block does
One block layer for every “thou shalt not” in child-safety law.
Every child-safety law contains thou shalt not rules — never serve CSAM, never let a minor open a chatbot that simulates romantic companionship, never expose loot-box mechanics to a kid, never recommend coalition-curated “Not For Kids” titles. Each platform writes its own block list, with its own coverage gaps, and parents end up trusting whichever vendor happens to have the most complete catalog this quarter.
Block is the canonical block layer. Every prohibition from every adopted statute and standard collapses into a single deterministic decision: this content / app / pattern is blocked for this child, here is the citation. It runs at every layer the Phosra spec touches — DNS, MDM, OS-level age signals, app-store install gates, AI-product launch checks — and emits the same auditable record at each one.
The hard-block surface is where regulators land first. A platform that adopts Block can hand a state AG a query like “every block triggered for jurisdiction X under provision Y in the last 90 days” and get a court-ready answer. That’s the surface that makes laws like NY S9051, CA SB 243, and the App Store Accountability Act operationally real — not aspirational.
How partners plug in
Block is a socket. Block lists flow in. Citations flow out.
These are the upstream sources Block enforces against — either shipping today, in conversation with a partner, or pending an upstream pilot.
Standards & laws
What Block does for each statute.
- NY S9051 (AI Companion Ban) — hard-blocks AI products that simulate romantic companionship for minors and routes violations to the AG report channel.
- CA SB 243 (AI chatbot) — hard-blocks unsupervised therapy mode and gates self-harm-related prompts before they reach a minor account.
- 18 U.S.C. § 2258A (CSAM mandatory reporting) — auto-routes detection events to NCMEC and retains evidence under § 2258B with the chain-of-custody the statute requires.
- App Store Accountability Act (federal + UT SB 142 + TX SB 2420) — install-time hard block on age-gated apps for minor accounts at the app-store layer.
- Coalition “Not For Kids” classification list — mandatory hard block when a parent’s policy adopts the coalition-curated NFK list as the canonical floor.
- CA AB 2617 (loot-box mechanics) — nullroutes loot-box endpoints and blocks IAP categories tagged as gambling-adjacent for minor accounts.
- EU DSA Article 28 (minor protection) — extends the NFK list to EU-coded content classifications and surfaces compliance evidence on demand.
Conformance
Adopter Tier 1 certification.
To ship Block-conformance for an Adopter Tier 1 certification, your implementation must pass the Block suite. Test count is [draft] coming Q3 2026. The suite covers block-list ingestion, deterministic block decisions, citation emission, and chain-of-custody for regulator-bound events.
We are co-authoring the suite with our design partners. If you want a seat at the table while the bar is being set, reach out.
Rule list
The 22 rules Block ships
Every rule below is implemented by this capability. Pulled directly from the rule registry.
- Nfk Hard Block
- Content Block Title — Explicitly blocks a specific content title regardless of its rating or category classification.
- Content Allow Title — Explicitly allows a specific content title that would otherwise be blocked by category or descriptor filters.
- Content Allowlist Mode — Switches content filtering to allowlist-only mode, blocking everything not explicitly permitted by the parent.
- Content Descriptor Block — Blocks content carrying a specific descriptor (e.g., violence, language, drug references) below the configured threshold.
- Firearm Content Block — Blocks firearm-related commerce, instruction, and modification content from minor users.
- Purchase Block IAP — Hard-blocks all in-app purchases on minor accounts; spending caps and approval flows do not apply.
- Stranger DM Block — Blocks DMs from non-contacts to minor accounts at the network layer; surfaces the block to both parties.
- Safe Search — Enables safe search filters across search engines to block explicit content from results.
- Web Category Block — Blocks access to configurable website categories such as gambling, adult content, and violence.
- Web Custom Allowlist — Allows specific domains the parent has explicitly approved that would otherwise be blocked by category filters.
- Web Custom Blocklist — Blocks specific domains the parent has explicitly added that would otherwise pass category filters.
- DM Restriction — Restricts direct messaging to approved contacts or friends only, blocking messages from strangers.
- AI No-Simulated Companionship — Blocks AI products from simulating romantic, intimate, or therapeutic companionship with minor users.
- AI No-Unsupervised Therapy — Blocks AI products from delivering unsupervised therapy, counseling, or mental-health intervention to minors.
- AI No-Self-Harm Promotion — Hard-blocks AI products from generating content that promotes, glorifies, or instructs on self-harm or suicide.
- AI No-CSAM Generation — Hard-blocks AI image and text models from generating or rendering child sexual abuse material under any prompt.
- AI No-Personhood Deception — Prevents AI products from claiming sentience, personhood, or human identity in conversations with minors.
- AI Companion Block — Blocks AI companion and digital-friend products for minors per New York S9051 and equivalent statutes.
- Library Filter — Implements content filtering for public library and educational institution compliance.
- Gambling Mechanics Block — Blocks gambling, casino, sports-betting, and gambling-adjacent mechanic content (loot boxes, gacha pulls).
- Addictive Pattern Block — Hard-blocks UI patterns engineered for compulsive use, including streak mechanics and variable-reward feedback loops.