A cryptographic gate in front of every agent action.
Three components, one protocol. The agent SDK requests a release token; the cosign signer evaluates policy and returns an ML-DSA-87 signed verdict; the evidence ledger records the decision in a hash-chained, independently verifiable log.
Architecture
Agent SDK
Client library that wraps any LLM provider. Requests a release token before executing a tool call.
Cosign signer
Evaluates the policy bundle, emits an ML-DSA-87 signed release token, and appends to the ledger.
Evidence ledger
SHA-256 hash-chained evidence ledger of decision records. Verifiable with public tooling.
Specification and verification
| Protocol specification | Included in evidence pack (available on request) |
|---|---|
| Golden vectors | Reference chains included in evidence pack |
| TLA+ model | Public verification repository, 1.94B states checked |
| Verification report | Six-Layer Formal Verification paper |
| Evidence verifier | Included in evidence pack |
TLA+ specifications, Lean 4 proofs, and the verification manifest are published in the public verification repository. Full source access and the evidence pack are available to qualified buyers under NDA.