Signed Audit Receipts for AI Agent Actions

AI agents need proof, not just logs. Aletheia Core generates signed audit receipts so teams can verify what an agent attempted, what policy was applied, and whether the action was allowed or blocked.

Problem

  • Plain logs can be edited, deleted, or disputed
  • No standard format exists for AI decision evidence
  • Compliance teams need tamper-evident records, not screenshots
  • Incident reviews need to prove what the agent saw and decided

How Aletheia Core solves it

  1. Request ID and timestamp
  2. Decision: PROCEED or DENIED
  3. Risk category and threat band
  4. Policy version and manifest signature status
  5. Payload fingerprint (SHA-256, not raw content)
  6. HMAC-SHA256 signature with 16-byte nonce

Use cases

  • AI agent compliance
  • Security reviews
  • Customer incident reports
  • Internal governance
  • Enterprise audit trails
  • Red-team evidence

FAQ

What is AI agent security?

AI agent security protects systems where AI agents can call tools, access data, trigger workflows, or execute actions. It focuses on preventing unsafe behavior before the action happens.

What is runtime enforcement?

Runtime enforcement means checking an action while the system is running, before the agent executes it. This is different from reviewing logs after the fact.

What is prompt injection protection?

Prompt injection protection detects and blocks malicious instructions that try to override the agent's original rules, leak data, or force unsafe tool use.

What are signed audit receipts?

Signed audit receipts are cryptographic records of security decisions. They show what action was checked, what decision was made, and whether the receipt has been modified.