AI Governance Enforcement

The ignition interlock for AI agents.

Content filters govern what AI says. Kevros governs what AI agents do. Every action requires a cryptographic release token before execution. No token, no action.

Start free Deploy in your Azure tenant
32.8M
States formally verified
TLA+ exhaustive model checking
FIPS 204
Post-quantum signing
ML-DSA-87 provenance blocks
3 Patents
Filed (non-provisional)
Core governance methods
Live
Azure Marketplace
SaaS + Managed App
How it works

Agent requests. Kevros decides. Evidence is logged.

Kevros sits between your AI agent and the action it wants to take. Every action requires a signed release token. No token, no execution.

1
Agent requests permission
Your AI agent submits the action it wants to take — what, why, and on whose behalf. Kevros evaluates the request against your policies.
2
Kevros issues a signed release token
ALLOW, CLAMP, or DENY. If allowed, the agent receives a cryptographic release token — the signed authorization to proceed. If denied, the action doesn't happen.
3
Evidence is recorded
Every decision is appended to a hash-chained provenance ledger. Tamper-evident. Independently verifiable. Auditors can verify the entire chain without source code access.

“Permission before power. Every time.”

What makes Kevros different

Not a content filter. Not a guardrail. Not monitoring.

Content filters check what chatbots say. Kevros governs what AI agents do. That's a different problem. It requires a different architecture.

Cryptographic Enforcement
Every agent action requires a signed release token before execution. Not a suggestion. Not a log entry. A cryptographic requirement enforced at the protocol level.
Tamper-Evident Evidence Chain
Every governance decision is appended to a hash-chained provenance ledger. Each record links to the previous. Tamper with any record and the chain breaks forward.
Formally Verified (TLA+)
The enforcement kernel is verified across 32.8 million state configurations. Zero safety violations. Not tested — mathematically proven correct.
Fail-Closed State Machine
When something breaks, Kevros blocks. No automatic recovery. No software reset. A human operator must diagnose and clear the fault. This is the design.
Vendor-Independent Governance
Your governance should not depend on your model vendor's willingness to enforce their own terms. Kevros operates outside the model — same enforcement, same evidence, regardless of AI provider.
Published Research
The enforcement mechanism is described in published research on bounded confidence envelopes. Not a black box. Formally verified, mathematically proven, and independently reproducible.

Not a content filter. Not a compliance dashboard.

Content moderation tools (Lakera Guard, NeMo Guardrails, Prompt Security) focus on what AI says — blocking prompt injections, filtering toxic outputs, redacting PII from text. Kevros does not filter model output content.

GRC platforms (Credo AI, Holistic AI, OneTrust) focus on organizational governance — policy documentation, role assignment, maturity tracking, regulatory mapping. Kevros does not replace policy management.

Model observability tools (Fiddler AI, Arize, Arthur AI) focus on model performance — detecting drift, bias, and accuracy degradation in ML models. Kevros provides behavioral drift detection at Professional+ tiers, but its primary function is enforcement, not observability.

Kevros is an enforcement gateway. It sits between the agent and execution. It verifies authorization before the action happens. It issues cryptographic proof that the verification occurred. It records every decision in a tamper-evident chain. And it does all of this with formally verified logic and post-quantum signatures.

If content moderation is the seatbelt, Kevros is the ignition lock. The car doesn't start without the key.

The adoption curve

AI governance is following the firewall adoption curve.

In the 1990s, firewalls were a niche luxury for security-conscious organizations. By the 2000s, they were mandatory for doing business. No one debates whether you need a firewall anymore.

AI agents are entering production at scale — in financial services, healthcare, manufacturing, defense. Regulators are shifting from “have a policy” to “prove your policy was enforced.” The EU AI Act requires transparency logging for high-risk AI. NIST AI RMF requires governance evidence. Organizations that deploy AI agents without cryptographic enforcement will face the same scrutiny that organizations without firewalls faced two decades ago.

The AI governance market is projected to grow from approximately $620 million in 2024 to over $7 billion by 2030. Kevros is positioned in the enforcement layer — the segment that becomes mandatory, not optional, as agents move from experimentation to production.

AI Governance Enforcement

The evidence chain.

When an AI agent moves money, accesses medical records, or operates machinery — someone will ask: who authorized this?

Kevros produces a mathematically complete chain of evidence for every agent action: intent, authorization, action, outcome, proof. Every link is cryptographic. Every record is hash-chained.

At Professional and Enterprise tiers, every record is signed with post-quantum cryptography (ML-DSA-87, FIPS 204). The chain is independently verifiable — no trust in the vendor required.

Agent Identity
Every agent has a verifiable identity. Every action is attributed. Every permission is scoped.
Action Authorization
Release tokens are per-action, per-agent, per-context. Not blanket permissions. Granular authorization for every decision.
Evidence Trail
Every authorization decision is recorded in a tamper-evident ledger. Who asked. What was decided. Why. When. Independently verifiable.
Integration

Six protocols. One governance layer.

Connect through the protocol that fits your architecture.

A2A Protocol
Agent-to-agent discovery via .well-known/agent.json
MCP Server
Model Context Protocol via streamable HTTP
REST API
Direct HTTP with OpenAPI specification
Python SDK
pip install kevros
TypeScript SDK
npm install @kevros/agentkit
x402 Per-Call
Pay-per-call via Base USDC
View all integrations
Works with
Microsoft Semantic KernelNative Agent Middleware
AutoGenGovernance Tools
CrewAIGovernance Tools
LangChainGovernance Tools
Coinbase AgentKitGovernance Integration
OpenClawSkill Registry
Smithery MCP MarketMCP Discovery
PyPI·npm·Smithery MCP·API Docs
Developer quickstart

Try it free. No credit card.

Install the SDK, get a free API key, and govern your first AI agent decision in under a minute.

1
Install
pip install kevros
2
Get a free API key
curl -X POST \ governance.taskhawktech.com/signup \ -H "Content-Type: application/json" \ -d '{"agent_id":"my-agent"}'
3
Govern
from kevros_governance import GovernanceClient client = GovernanceClient( api_key="kvrs_...", ) result = client.verify( action_type="trade", action_payload={"symbol": "AAPL"}, agent_id="trading-bot", ) print(result.decision) # ALLOW, CLAMP, or DENY
Free tier
Rate-limited · All protocols · Full evidence chain · No credit card
Full quickstart guide View on PyPI
Plans

Two ways to deploy. Seven tiers.

Start with the hosted SaaS gateway — no infrastructure required. When you need tenant isolation, deploy the full enforcement stack in your Azure subscription.

Hosted Gateway (SaaS)

Free
$0/mo
Rate-limited calls/mo

Evaluation and integration testing.

Scout
$29/mo
5,000 calls/mo

Individual developers with production agent workloads.

Sentinel
$149/mo
50,000 calls/mo

Teams running multi-agent production workloads.

Sovereign
$499/mo
500,000 calls/mo

Organizations at fleet scale. Natural conversion point to Managed App.

Tenant-Deployed (Managed Application)

Starter
$499/mo

Full enforcement stack in your Azure tenant.

Full governance operations: Verify, Attest, Bind, Verify Outcome
Cryptographic release token lifecycle
Hash-chained provenance ledger
Multi-protocol access (A2A, MCP, REST, SDK, x402)
Governance dashboard
Deploys inside your Azure subscription
Deploy on Azure
Most Popular
Professional
$1,499/mo

Everything in Starter, plus ML drift detection and post-quantum signing.

ML-enabled behavioral drift detection
Post-quantum ML-DSA-87 (FIPS 204) signing
Enhanced governance call volume
Drift alerting and escalation triggers
Everything in Starter
Deploy on Azure
Enterprise
$4,999/mo

Everything in Professional, plus SIEM export, fleet monitoring, and evidence bundles.

SIEM export (Sentinel, Splunk, syslog/CEF)
Fleet-level drift monitoring
Metered multi-program billing
Compliance evidence bundles
Maximum governance call volume
Everything in Professional
Deploy on Azure
Full pricing details, x402 per-call, FAQ
Who it's for

Government & Defense

Mission-focused organizations deploying AI into environments where decisions carry weight. Tenant-isolated deployment. Evidence chains for ATO assessors and auditors.

Learn more

Regulated Enterprise

Financial services, healthcare, manufacturing, and insurance organizations that need audit trails, compliance evidence, and real-time enforcement — not just monitoring dashboards.

Learn more
TLA+ Verified — 32.8M states, zero counterexamples
Published Research — 20 frontier models, 3 providers
NIST SP 800-171 — 110/110
Microsoft ISV Partner
Azure Marketplace
Six Protocols

See the evidence chain running. Not a slide deck.

Schedule a 30-minute briefing. We'll show you the enforcement actions, the evidence ledger, and how Kevros produces the governance artifacts your compliance team needs.

Schedule a briefing Azure Marketplace
sales@taskhawktech.com