ponens

← Policy gallery

Agent Identity Resolved

error

agent_identity_resolved

agentic-governance security pure_temporal agentic-aigovernancefix-ai-wgidentityrag-redtier-1-4

Every agentic action must carry a resolvable AgentID bound to a valid KYA credential (NIST IAL2 human principal).

Formula

G(action → agent_id_resolved ∧ kya_valid)

Why it matters

FIX Gap 1 / Identity & Authorisation. A Red condition: an action by an agent whose identity cannot be resolved to a verified human principal is an authorisation failure requiring containment.

Examples

passes ToolCall with agent_id_resolved and kya_valid

fails ToolCall with no resolvable AgentID / KYA

Use it

ponens policies add agent_identity_resolved --into ./trace.json
ponens trace check ./trace.json