Anchor · Trust fabric

Identity, policy, and evidence, bound to every agent.

Anchor is the cryptographic backbone of the platform. Every agent carries a signed passport. Every action lands in a tamper-evident audit log. Every policy bound on issuance, never bolted on after.

Read the architecture Trust report (NDA)

Agent Passport
Invoice triage · prod
● Anchor-Certified
"id":"agt_8f3c91a4…"
"version":"v3.2.1"
"owner":"[email protected]"
"vendor":"halcyon · custom"
"scope":["read:gmail", "write:netsuite"]
"policy_envelope":"sha256:9f2c…"
"data_residency":"us-central1"
"retention_days":90
"issued_at":"2025-11-04T14:22:01Z"
"signed_by":"anchor-prod-key-04"
SIGNATURE0x3e8f…b921 · ed25519 · verified ✓

Evidence streamed to audit

Every action signed and streamed

Three primitives

Passport. Envelope. Evidence.

Three primitives, one rule: nothing runs in production without all three. Studio adds them at deploy. Meridian audits them. Auditors verify them.

Passport

Identity that travels with the agent

Cryptographic identity bound to owner, version, scope, and policy. Issued at deploy, not a tag, not a label. Signed by Anchor.

Ed25519 signed
Owner attribution
Scope-locked
Version-pinned

Envelope

Policy that runs at the boundary

A versioned bundle of permissions, tool scopes, data residency, retention, and approval rules. Enforced at the runtime boundary on every call.

Tool-level scopes
Approval routing
Residency enforcement
Retention rules

Evidence

Audit log no one can tamper with

Every action, read, write, decision, approval, is hashed, signed, and chained. Stream-ready for audit, risk, and compliance systems.

Per-action signing
Hash-chained
Replay-able
Vendor-portable

Certification states

The vocabulary your auditors learn first.

Created

Studio drafts. No production access. Local test harness only.

Pending

Owner has signed. Awaiting Anchor key issuance and policy review.

Anchor-Certified

Passport issued. Envelope bound. Evidence streaming. Authorized for production.

Frozen

Owner left, scope drifted, policy violated. Frozen pending re-issuance.

Retired

Decommissioned. Evidence archived under retention policy. Signature revoked.

Only Anchor-Certified agents touch production. Auditors and risk reviewers can verify state in seconds, and freeze any agent that drifts.

Stream out, key in

Evidence belongs in the systems your auditors already use.

Anchor streams signed evidence to your SIEM, GRC, and warehouse. BYOK encryption is available on Pro, your keys, our infrastructure, no decryption material at CPL.

Splunk

Datadog

Elastic

Snowflake

BigQuery

ServiceNow GRC

Archer

OneTrust

Vanta

Drata

AWS S3

GCP GCS

Azure Blob

HashiCorp Vault

GCP KMS

Ready to put your AI workforce to work?

Private preview is open now. Tell us what you want to run. We’ll be in touch, and we won’t waste your time.

Get early access Explore the platform