Abstract
In some distributed agentic workflows, a vulnerability can exist where downstream agents may be unable to independently verify that a user consented to an operation delegated by a central orchestrator. Systems and methods for cryptographic consent verification can use a user's device (e.g., a smartphone, smart watch, wearable device, augmented reality glasses) to generate a hardware-backed digital signature that cryptographically binds the user's approval to a deterministic transaction payload. This process can generate a verifiable presentation, which may allow each downstream agent to independently and mathematically validate the user's explicit consent before executing an action. This approach can mitigate risks associated with a compromised or untrusted orchestrator, thereby potentially improving the security and integrity of delegated operations in a multi-agent environment.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
Recommended Citation
Viswanathan, Muthuramakrishnan; Checkley, Garen; and Flanagan, Kevin, "Zero-Trust Cryptographic Consent Verification for Distributed Agentic Workflows", Technical Disclosure Commons, ()
https://www.tdcommons.org/dpubs_series/10401