ArXiv OpenKedge: Cryptographic protocol requiring permission before every AI agent action

As AI agents become increasingly autonomous, the question of “who controls what an agent is allowed to do” becomes critical. OpenKedge is a new protocol that offers an answer — a system requiring explicit permission before every agent action while creating an indelible trail of all operations.

How OpenKedge works

The protocol is based on the concept of “execution-bound safety” — every action an AI agent wants to execute must be approved before it is carried out. It is similar to a digital signature system where each step requires authorization.

The key innovation is cryptographic evidence chains that record every requested and approved action. These chains are immutable and fully auditable, meaning the exact sequence of events can be reconstructed at any time — who approved what, why, and when.

Application at scale

OpenKedge is designed for scenarios with large numbers of autonomous agents operating simultaneously. In such systems, a single uncontrolled agent can cause cascading problems. The protocol prevents this by requiring every agent to receive the green light before making any changes to its environment.

Significance for the industry

With the growth of autonomous AI systems in enterprise environments, compliance and audit trails are becoming increasingly important. OpenKedge offers a practical framework that balances agent autonomy with the need for control and accountability — something regulators will likely require as AI agents take on increasingly complex tasks.