Skip to main content

20 docs tagged with "governance-trust"

View all tags

Adversarial Testing

Prompt injection, PEP bypass, manifest violations, and entitlement escalation tests for PGAR runtimes.

Audit & Replay

Immutable verdict logs, examiner questions, and replaying authorization without chat transcripts.

Domain: RAG Retrieval

Retrieval as a PEP-gated tool, context pack logging, validation handoff, and PGAR applied to RAG.

Domain: Tool Registry

Tool manifests, schema compliance, PEP gating per tool, and blocking proposals outside the registry.

PDP Policy Surfaces

ALLOW, DENY, and STEP_UP only — policy versioning, rule authoring, and deterministic authorization.

PEP Enforcement

The four steps every Policy Enforcement Point runs on every proposal: receive, ask PDP, audit, act.

PGAR Boundary Playbooks

The five PGAR trust boundaries in request order (ingress, agentic app, LLM proposal, PEP + PDP, downstream), including multi-agent workflows, with links to each implementation playbook.

PGAR Foundation Playbooks

Core PGAR building blocks in implementation order — SARAC contracts, token custody, PEP/PDP enforcement, step-up, and audit replay.

PGAR Runtime Playbooks

Hub for Policy-Governed Agent Runtime playbooks (foundation, assurance, boundary, and domain groups in recommended implementation order).

Policy Test Scenarios

Golden scenario libraries for PDP/PEP regression, representative, edge, adversarial, and incident replay cases.

Step-Up & Attestation

STEP_UP verdict handling, four-eyes approval, re-evaluation with context.approval, and UX ownership in the agentic app.