Skip to main content

PGAR Foundation Playbooks

PGAR overview · Blueprint · Foundation overview · Policy contracts →

Foundation playbooks define how PGAR works before you wire a specific agent surface. They cover contracts, custody, enforcement, verdicts, attestation, and audit. Read them before boundary and domain playbooks.

THE CLAIM

Build foundations first. Boundaries describe where control lives; domain playbooks describe what side effects look like. Neither replaces SARAC, PEP, or audit.

Implementation order

#PlaybookWhat it definesRead when
1Policy contractsSARAC shape the PDP evaluatesDesigning PEP-to-PDP payloads
2Token & sessionWhat crosses the LLM line (and what never does)PGAR test, credential stripping
3PEP enforcementReceive, ask PDP, audit, actBuilding the choke point
4PDP surfacesALLOW, DENY, STEP_UP rulesAuthoring policy versions
5Step-up & attestationRe-eval after human approvalHigh-risk actions, four-eyes
6Audit & replayImmutable verdict chain for examinersRetention, replay packs

Then boundary playbooks (where each control sits in the request path) and domain playbooks (tools, manifests, RAG).

How foundations connect

Every tool proposal at runtime flows: agentic app assembles SARAC → PEP asks PDP → verdict logged → ALLOW reaches downstream or DENY/STEP_UP returns to app.

Assurance (after foundations)

PlaybookPurpose
Policy test scenariosGolden authorization cases in CI
Adversarial testingBypass attempts, prompt injection against enforcement

See the Assurance playbooks category in the sidebar for both.

Policy contracts →