The open trust layer for AI agents
The Trust Layer is Free
Sign badges. Verify identity. Enforce trust. No credit card. No trial period.
Enterprise assurance when compliance, security, or availability become requirements.
Public Trust Layer
Everything you need to build and validate trusted agents
IDENTITY & SIGNING
- ✓Ed25519 key generation (DID Keys)
- ✓Badge signing & verification
- ✓Domain verification (did:web)
- ✓Public key registry
ENFORCEMENT
- ✓Agent Guard middleware
- ✓MCP Guard decorator
- ✓Trust level enforcement
- ✓CLI validation tools
OBSERVABILITY
- ✓Decision logs (development retention)
- ✓Trust level visibility
- ✓Registry dashboard
Designed for development, testing, and early production where teams self-manage availability and retention.
Get StartedEnterprise Assurance
When audit trails and compliance become requirements
AUDIT & COMPLIANCE
- ✓Production-grade audit retention
- ✓SIEM integration (Datadog, Splunk, OTEL)
- ✓Compliance reporting
- ✓Audit-ready documentation
GOVERNANCE
- ✓SSO/SAML integration
- ✓Role-based access control
- ✓Organization-level verification
- ✓Custom policy enforcement
DEPLOYMENT & SUPPORT
- ✓VPC or on-premises deployment
- ✓Dedicated support with SLA
- ✓Implementation assistance
Why is the trust layer free?
Standards need adoption
Like TLS/HTTPS, agent trust only works when it's everywhere. Paywalling identity verification would fragment the ecosystem.
Compliance is inevitable
When your agents handle production traffic, you'll need audit trails. Not because we require it—because your auditors will.
We sell assurance, not access
Free users get the same cryptographic guarantees. Enterprise pays for retention, integration, and support—not capability.
Agent Trust Sprint
2 Weeks$15k – $25k · Fixed scope engagement
Fast-track to production. We deploy Guard to your highest-risk endpoints and leave you with audit-ready documentation.
- ✓Guard deployed to 1–2 high-risk endpoints
- ✓SIEM integration configured
- ✓Key rotation runbook
- ✓50% credits toward annual subscription
Common Questions
What are the limits on the Public Trust Layer?
The Public Trust Layer is designed for development, testing, and early production use. There is no trial period—this is not a limited-time offer.
When trust becomes a compliance or availability concern—meaning you need extended audit retention, SIEM integration, or SLA guarantees—Enterprise Assurance applies.
We will never surprise you with a paywall. If your usage approaches enterprise thresholds, we'll reach out to discuss your needs.
Is domain verification (did:web) really free?
Yes. Domain verification is a trust primitive, not a premium feature. Free users can verify their domain to anchor agent identity. Enterprise customers get additional domains and organizational verification.
When do I need Enterprise Assurance?
It becomes clear when trust moves from an engineering concern to a business risk. Common triggers:
- • Your compliance team asks for 90+ day audit logs
- • You need to export events to your SIEM
- • You require SSO/SAML for team access
- • You want VPC or on-premises deployment
- • You need an SLA for support
Can I self-host?
The CLI, Guard, and SDK are open source—run them anywhere. The hosted registry is a managed service. Enterprise customers can deploy the full stack in their VPC or on-premises.
How is Enterprise Assurance priced?
Based on your deployment requirements, not identity counts. We discuss your audit retention needs, integration complexity, and support requirements to build a custom quote. Typical engagements start in the mid-five figures annually.
Frequently Asked Questions
Everything you need to know
Start with the Protocol
The trust layer is free. Add enterprise assurance when compliance demands it.