100%
GRIMOIRE
GrimoireDindon CorpusSynthesis VolumesThe Foundation of Iron
FRENAR
← PreviousNext →
RATIO
FOUNDING STUDY · OPÉRATION DINDON · JUNE 2026
◆◆◆
NO SOVEREIGNTY
WITHOUT MATTER
Philosophy of Bare-Metal and the Condition
of Digital Sovereignty
◆ POSITION OF THIS STUDY IN THE CORPUS

This study is the founding thesis of which all other Opération Dindon corpus studies are extensions. It poses the philosophical question the corpus had never explicitly formulated: what is sovereignty? What is the relationship between sovereignty and matter? Why does purely extraterritorial cloud represent a dissolution of sovereignty — not merely a technical risk? From Bodin to Kubernetes — what controlling infrastructure really means.

◆◆◆
Amine RAITI — Infrastructure Architect & SRE
Former engineering school professor · Infrastructure instructor
Public document · CC BY-NC-SA 4.0 · AI Powered by Amine · Opération Dindon
RATIO
1
SECTION 1 · SOVEREIGNTY — DEFINITION AND CONDITION
THE HUMAN IS SOVEREIGN WHEN THEY CAN ACT ON MATTER

Sovereignty is not an abstract legal attribute. It is a concrete capacity — the capacity to act, decide, and intervene on reality without depending on a third party to exercise that capacity. This definition precedes and conditions all its legal, political and organisational forms.

◆ FROM BODIN TO SCHMITT — SOVEREIGNTY AS MASTERY OF TERRITORY

Jean Bodin, in 1576, defined sovereignty as "the absolute and perpetual power of a Republic". But behind the legal formula lies a physical reality: this power only exists if it is exercised over a real territory, with real subjects, over accessible matter. Carl Schmitt clarifies four centuries later: "Sovereign is he who decides on the exception." Deciding the exception presupposes that it can be imposed — which presupposes control of the substrate on which that decision applies.

Thomas Hobbes, in Leviathan, links sovereignty to protection: the sovereign protects their subjects in exchange for obedience. But protecting presupposes the capacity to intervene — to deploy force on a territory. A sovereign who does not control their territory cannot protect their subjects. They are no longer sovereign — they are a tenant.

◆ THE METAPHOR OF THE FARMER AND THE TENANT

The landowner-farmer is sovereign over their production. They decide what to plant, when to harvest, how to manage their soil's resources. If the harvest fails, it is their responsibility — their problem to solve. The tenant who rents land from a foreign owner who can reclaim it at any time, modify lease conditions unilaterally, or forbid certain crops — this tenant is not sovereign. They are precarious. They produce on soil that does not belong to them, under rules they did not set, with the permanent risk of termination.

This distinction — owner vs tenant, sovereign vs precarious — is exactly the one that separates sovereign bare-metal infrastructure from extraterritorial cloud.

◆ NASSIHA — SOVEREIGNTY IS NOT A REFUSAL OF THE MARKET

This study does not defend digital autarky. It defends the capacity to choose — to negotiate from a position of strength, to leave if conditions become unacceptable, to build outside the cloud if the situation requires it. Sovereignty is the exit option. Without this option, there is no market — there is captivity.

RATIO
2
SECTION 2 · BARE-METAL AS DIGITAL TERRITORY
THE CABLE IS THE SOIL. THE RACK IS THE LAND. THE SERVER IS THE FOUNDRY.

The territorial metaphor is not a metaphor. It is an exact functional description. Territory is what conditions the existence of everything deployed on it. For digital infrastructure, this physical substrate — servers, cables, racks, datacentres — is territory in the literal sense.

◆ WHAT BARE-METAL IS — A FUNCTIONAL DEFINITION

Bare-metal is the physical substrate of digital infrastructure. It is the layer that cannot be further abstracted — below bare-metal lies electricity, materials physics, semiconductor chemistry. Bare-metal is the physical server, the disks, the network cards, the cables, the switches, the routers, the redundant power supplies. It is what cloud abstracts behind an API and a smiling console.

Mastering bare-metal means mastering digital territory. It means knowing where data is physically stored, in which datacentre, in which country, under which jurisdiction, on which hardware, administered by whom. Without this mastery, one does not know what one controls — and what one does not know, one cannot defend.

◆ DIGITAL SOIL — WHAT "THE DIGITAL GROUND" DID NOT STATE EXPLICITLY

The study "The Digital Ground" documented the geography of datacentres, the AMS-FRA-DUB concentration, Interxion's acquisition by Digital Realty for $8.4 billion. It did not pose the philosophical question explicitly: why is datacentre geography a sovereignty question and not merely a latency question?

The answer lies in the territoriality of law. The law applicable to a datacentre is the law of the country where it is physically located — and the law of the country of residence of the company operating it. An AWS datacentre in Ireland is simultaneously subject to Irish law, European law, and American law via the CLOUD Act — because AWS is an American company. The data is physically in Europe. It is legally accessible from the United States. This is variable-geometry sovereignty — and variable-geometry sovereignty is nominal sovereignty.

◆ THE CHIP AS INGOT — WHAT "THE DIGITAL IRON" ESTABLISHED

"The Digital Iron" documented that the chip is the ingot of the 21st century. This formula is not a metaphor: it describes a geopolitical reality. Controlling chip production means controlling the substrate of all global digital infrastructure — exactly as controlling gold mines controlled economies in the Middle Ages. TSMC in Taiwan, ASML in the Netherlands, Chinese rare earths — the territory of bare-metal begins in the mines and foundries, not in the datacentres.

RATIO
3
SECTION 3 · EXTRATERRITORIAL CLOUD — ANATOMY OF A DISPOSSESSION
WHAT PURE CLOUD EXTRACTS FROM CONTROL

Cloud is not inherently bad. It is problematic when it is pure — meaning when it is the only option, when the exit option has disappeared, and when the physical substrate is out of reach and out of the jurisdiction of the person depending on it. In this configuration, cloud is not a service — it is organised dispossession.

◆ WHAT CLOUD EXTRACTS — THE FOUR DIMENSIONS

Physical location: where is my data? On which server, in which datacentre, in which city, in which country? The AWS console says "eu-west-1" — Paris or Ireland. It does not say the building, the rack, the server, the disk. Abstraction is total. The user does not know where their data physically is — and they are not entitled to know.

Applicable jurisdiction: the CLOUD Act of 2018 authorises the American government to access data stored on servers of American companies, regardless of their geographic location. Data hosted at AWS Frankfurt is legally accessible by the US Department of Justice without notification to the European user. This is legally framed and assumed extraterritoriality.

Unilateral termination capacity: AWS, Azure and GCP can suspend an account within hours for terms of service violation. No prior recourse, no obligation of sufficient notice to migrate. A state or critical organisation depending 100% on a hyperscaler cloud can be cut off from its infrastructure by a private American decision.

Pricing power: egress fees, contractual commitments, opaque service pricing — once dependent, the user has no negotiating power. The provider sets prices. The user pays.

◆ CLOUD AS TERRITORY RENTED WITH UNILATERAL TERMINATION CLAUSE

The tenant metaphor applies exactly. The organisation that migrates its entire infrastructure to AWS rents foreign digital territory. The rental contract can be modified unilaterally. The lease can be terminated without sufficient notice. The applicable law is not the tenant's law. And the tenant cannot inspect the subsoil of their own land. This is not sovereignty — it is digital precarity.

RATIO
4
SECTION 4 · THE THREE CONCRETE VULNERABILITIES
LEGAL · ECONOMIC · OPERATIONAL
◆ VULNERABILITY 1 — LEGAL: THE CLOUD ACT AND EXTRATERRITORIALITY

The Clarifying Lawful Overseas Use of Data Act (CLOUD Act, 2018) authorises American authorities to access data controlled by companies subject to American law, regardless of physical storage location. AWS, Azure, GCP are American companies. Their data — including that stored in European datacentres — is potentially accessible to the US DOJ via an American judicial warrant, without mandatory notification to the European user. This extraterritoriality directly conflicts with European GDPR. The organisation hosting personal data of European citizens at an American hyperscaler is structurally in jurisdictional conflict — a conflict it cannot resolve by its own decision alone.

◆ VULNERABILITY 2 — ECONOMIC: LOCK-IN AS CAPTURE

"Anatomy of the Loss" documented the mechanisms of technical lock-in — proprietary formats, services without sovereign equivalents, certifications that chain teams to platforms. The economic consequence is documented in "The Digital Ground": organisations that migrated to cloud for economies of scale discover 18 to 36 months later that their costs have increased. Egress fees — data exit charges — are the economic mechanism that makes lock-in permanent. One enters cloud for free. One exits paying. This is the pricing structure of a territory one cannot leave.

◆ VULNERABILITY 3 — OPERATIONAL: DEPENDENCE ON A THIRD PARTY FOR CRITICAL FUNCTIONS

In July 2021, an Akamai outage simultaneously took offline websites of several governments, central banks and public health services. In December 2021, an AWS us-east-1 outage paralysed dozens of critical services for several hours. These incidents are not accidents — they are the structural demonstration that concentrating infrastructure with a few providers creates systemic failure points. A state depending 100% on AWS for its critical digital services entrusts its operational continuity to a private American company that has no public service obligation toward it.

RATIO
5
SECTION 5 · REBUILDING SOVEREIGNTY
THREE NECESSARY CONDITIONS — NONE SUFFICIENT ALONE

Digital sovereignty is not decreed. It is built — through human, technical and political investments that articulate and reinforce each other. Three conditions are necessary. Each is insufficient without the other two.

◆ CONDITION 1 — THE ENGINEERS WHO KNOW

Digital sovereignty rests on a professional body capable of building, operating and maintaining infrastructure independent of hyperscalers. This body is the bare-metal SRE, the systems administrator, the network engineer documented in "The State and the Invisible Body". Without this body, any sovereignty policy remains nominal — one may decree preference for European actors, but if nobody knows how to operate OVHcloud's datacentres, the policy is empty. "The Departure of the Last One Who Knows" documented the cost of this knowledge disappearing. "The Mentor and the Metal" documented the only mechanism that allows it to be transmitted. "The Foundation of Iron" is the concrete proposal to rebuild it.

◆ CONDITION 2 — THE TOOLS THAT ENABLE

Sovereign European actors exist — OVHcloud, Ecritel, Scaleway, Hetzner, Infomaniak, Clever Cloud. They have datacentres, offerings, teams. They cannot absorb the potential demand for want of qualified personnel (condition 1) and for want of a preference policy that would orient markets toward them (condition 3). Sovereign infrastructure exists in its elementary bricks. It does not exist as a credible alternative at scale — because the other two conditions are not met.

◆ CONDITION 3 — THE POLITICAL DECISION

The state that advocates digital sovereignty in its speeches and hosts its own data at AWS practises a contradictory injunction. The necessary political decision includes: European preference in digital public procurement, mandatory certifications for public administration providers, infrastructure training funding (Foundation of Iron via France Travail), RNCP protected title for infrastructure roles, annual report on the state of the body. These six levers were documented in "The State and the Invisible Body". Without political decision, conditions 1 and 2 remain unactivated potential.

RATIO
6
SECTION 6 · GRADUAL SOVEREIGNTY — A REALISTIC PROPOSAL
NEITHER ALL-CLOUD NOR ALL-BARE-METAL — THE SOVEREIGNTY ARCHITECTURE

Absolute digital sovereignty is a horizon, not a near-term achievable state. What is immediately achievable is a gradual sovereignty architecture — an approach that distinguishes data and systems by criticality and sensitivity, allocating each category to the infrastructure that guarantees the appropriate level of control.

◆ THE GRADUAL SOVEREIGNTY ARCHITECTURE

Tier 1 — Critical infrastructure: health data, judicial data, tax data, defence systems, energy networks, critical telecoms. On sovereign physical infrastructure, in France or the EU, operated by certified, auditable actors, subject to French and European law only. Zero extraterritorial cloud.

Tier 2 — Sensitive infrastructure: citizens' personal data, administrative systems, non-critical health systems, non-critical judicial systems. On European sovereign cloud (SecNumCloud, German C5) or hybrid infrastructure with portability clauses and annual third-party audit.

Tier 3 — Non-critical infrastructure: public websites, non-sensitive communications, productivity tools. Free cloud with contractual real portability clauses and egress fee caps. The Opération Dindon ultimatum is precisely this demand: resiliable commits, reasonable egress fees, real portability, CLOUD Act limited to its territory.

◆ WHAT THIS ARCHITECTURE CONCRETELY REQUIRES

— Engineers capable of operating Tier 1 (condition 1 — the bare-metal SRE body)
— European actors capable of absorbing Tier 2 (condition 2 — OVHcloud, Ecritel, Scaleway)
— Public policy that funds Tiers 1 and 2 and regulates Tier 3 (condition 3 — preference in public procurement)
— And an engineering culture that understands why these distinctions exist — what the Foundation of Iron has sought to build from the beginning.

◆ NASSIHA — SOVEREIGNTY IS AN OPTION, NOT A PRISON

This study does not defend closure. It defends the capacity to open and close at will. A sovereign state can choose to work with foreign partners — because it has the competences to do without them if needed. This exit option defines sovereignty. Without it, there is no partnership — there is dependence.

RATIO
7
SECTION 7 · THE CONDENSED THESIS — WHAT THE CORPUS ALWAYS SAID
FROM BODIN TO KUBERNETES — THE SAME TRUTH

The Opération Dindon corpus has produced more than twenty structural studies. Re-reading these studies with the perspective of this founding thesis, one realises they all say the same thing — from different angles, with different data, for different audiences. This same thing is the thesis of this study.

◆ THE THESIS IN ONE SENTENCE

No digital sovereignty without mastery of bare-metal.
And no mastery of bare-metal without the engineers who understand it,
without the organisations that operate it,
and without the states that protect them.

◆ WHAT EACH CORPUS STUDY SAID ABOUT THIS THESIS

Anatomy of the Loss → how mastery of bare-metal is lost through cognitive capture.
The Digital Iron → that the bare-metal substrate begins in chip mines and foundries.
The Digital Ground → that datacentre geography is a question of territorial sovereignty.
The Infrational Crisis → that sovereignty is first lost in words before being lost in competences.
The State and the Invisible Body → that the state does not protect the professional body that is the condition of its own sovereignty.
The Infrational Loop → how the market destroys this body without anyone having decided it.
The Mentor and the Metal → that knowledge transmission is the only mechanism that keeps this body alive.
The Foundation of Iron → that reconstruction begins before secondary school, in classrooms and workshops.

◆◆◆

The human is sovereign when they can act on matter.
Purely extraterritorial cloud removes this capacity.
Bare-metal restores it.
Everything else is consequence.

◆◆◆
NEMO SUPRA LEGEM EST
← PreviousNext →