EVE Agent Infrastructure · Cryptographic Proof

Prove every autonomous agent action was authorized

Every agent action you route through EVE is policy-checked, tenant-bound, hash-chained, and recorded in a signed Decision Certificate — verifiable offline with a public key. No secret. No “trust our logs.”

Powered by EVE CoreGuard
Request a 60-day design partner pilot View the $37,500 pilot Verify a certificate View public key
Verify it yourself · ~60 seconds

Don’t trust the claim — check it

Below are real, live-signed agent Decision Certificates from this server — one per outcome, hash-chained together. Click Run all checks and your browser verifies each signature against the published Ed25519 public key — locally, with no secret and no call back to EVE. Then click Tamper and watch verification fail.

1. We fetch the public key   2. Recompute each certificate’s hash   3. Verify the Ed25519 signature   4. Confirm the chain links
Open public key
Loading live sample certificates…
What the certificate proves

Four properties, independently checkable

Policy-checked

Records the tier, approval mode, charter compliance, and any violated principles. The action passed a non-overridable charter veto, cognitive locks, and a tiered policy before it ran.

Tenant-bound

The org_id is part of the signed payload and the certificate lives in a per-tenant ledger. A certificate cannot be silently moved between customers.

Hash-chained

Each certificate’s prev_hash is the previous one’s content hash. Deleting or reordering any record breaks the chain — and it’s detectable.

Offline-verifiable

Ed25519 signatures verify with the public key at /.well-known/eve-pubkey. Your auditor or regulator verifies independently — no secret, no EVE involvement.

Every outcome is certified

A signed record for each disposition

Whether an action runs, is modified, waits for a human, is blocked, or is rejected — each produces a signed, chained certificate.

EXECUTED MODIFIED REQUIRES_CONFIRMATION BLOCKED REJECTED

Stated plainly

“Every action” means every action you route through EVE — via the HTTP API (/api/autonomous/*) or the in-process runtime. Tier 4 and charter HARD_BLOCKs never execute; charter compliance is re-checked at human approval. Drop-in adapters for unmodified third-party frameworks (LangGraph, CrewAI) are on the roadmap (Q3 2026). EVE governs and certifies the decision to act and binds the action’s arguments; your executor performs the effect.
How it fits

One engine, three products

EVE CoreGuard enforces single decisions. EVE Agent Infrastructure governs agent actions on that same engine. EVE Proof makes every outcome independently verifiable. Same charter, same signing key, same certificate format. Enforces against ECOA / Reg B, SR 11-7, FCRA, HIPAA, EU AI Act, NIST AI RMF. SOC 2 in progress. No data leaves your tenant — SaaS, VPC, or on-prem.

Give us one risky agent workflow

In 60 days, every action in it is governable, certifiable, and audit-ready — with certificates your auditors verify themselves.

Request a 60-day design partner pilot How it works
Direct line: [email protected]