Agent Governance Architecture — GoverningLayer.com
Canonical Reference Architecture

Agent
Governance
Architecture

AGA · A COMPLETE FRAMEWORK FOR AI AGENT AUTHORIZATION AND GOVERNANCE

A four-layer reference architecture defining how AI agents declare intent, obtain authorization, operate within governed boundaries, and submit to immutable audit. Built around a patent-pending enforcement primitive that makes every layer cryptographically real.

★ IBA IS THE ENFORCEMENT CORE Patent Application GB2603013.0 (pending) · The load-bearing layer
WHY IBA IS THE ENFORCEMENT LAYER

Most governance frameworks
define policy. Few enforce it
at runtime.

ISO standards, NIST frameworks, EU AI Act compliance guides — all define what agents should do. Most stop short of enforcing it at execution time. Intent-Based Authorization is a patent-pending enforcement primitive that operates at every agent action: cryptographic verification, scope enforcement, behavioral drift detection, and a hardware-layer kill-switch — with a target enforcement latency under 5ms. Without IBA at its center, AGA is a policy document. With IBA, it is a machine-enforced architecture.

AGA · COMPLETE LAYER ARCHITECTURE · GOVERNING LAYER · MARCH 2026
APPLICATION LAYER — IoMT · Commerce · Finance · Enterprise · Gov
MEDICAL
IoMT
COMMERCE
Freelance / ClawHQ
FINANCE
FinTech Agents
ENTERPRISE
Autonomous Pipelines
GOVERNMENT
Regulated AI Systems
4
AGENT
BEHAVIOR
BEHAVIORAL STANDARDS LAYER
Agentic EtiquetteAE
Defines what AI agents should and should not do in the presence of other agents and human principals. Behavioral standards, interaction protocols, and the normative framework for agent conduct. Aligned with EU AI Act, NIST AI RMF, NCCoE AI Agent Identity.
DOMAIN
agenticetiquette.com
SCOPE
Normative Behavioral Standards
ENFORCEMENT
Via IBA at Layer 2
VISIT SITE →
3
GOVERNANCE
CONTROL
GOVERNANCE CONTROL LAYER
GoverningLayerGL
Platform-level governance infrastructure. The TheAxiomCore agent platform, ClawHQ governed freelance marketplace, and DigiHum human-agent interaction protocols all operate at this layer. Governance without runtime enforcement is advisory. IBA makes it mandatory.
DOMAIN
governinglayer.com
SCOPE
Platform Governance + Control
ENFORCEMENT
Via IBA at Layer 2
VISIT SITE →
2
AUTH
PROTOCOL
PATENT-PENDING ENFORCEMENT CORE
AUTHORIZATION PROTOCOL LAYER — THE LOAD-BEARING LAYER
Intent-Based AuthorizationIBA
The cryptographic runtime enforcement primitive that makes the entire architecture real. Every agent action triggers a TBDE validation pipeline (Trust-Boundary Decision Engine — a multi-step check that verifies identity, scope, and behavioral consistency before any action executes): signature verification, scope envelope check, behavioral drift detection, and WitnessBound audit commit — target latency under 5ms, at the transport layer, model-agnostic, platform-independent.

Layers 3 and 4 define what agents should do. IBA enforces it. Deterministically. Cryptographically.
★ PATENT APPLICATION GB2603013.0 (PENDING) · UK IPO · PCT 150+ COUNTRIES
PATENT GB2603013.0
LATENCY Target: <5ms
NIST 13 FILINGS
NCCoE 6 FILINGS
PROTOCOL SPEC IBA-SPEC-001 v0.1
INTENTBOUND.COM →
LAYER 1
INFRASTRUCTURE
PKI / X.509Identity certificates
ECDSA-P384Cryptographic signing
TLS 1.3Transport security
HSMKey management
BlockchainWitnessBound ledger
MZI GateResearch hardware layer
IBA PROTOCOL — DEVELOPER FLOW
01 — ORIGIN
Agent
AI system acting on behalf of a principal
02 — ISSUANCE
Create Intent Certificate
Principal signs · Agent counter-signs · ECDSA-P384
Scope, expiry, and permitted actions declared
★ IBA PATENT APPLICATION GB2603013.0
X-IBA-Certificate header
03 — TRANSMISSION
Send Request + Certificate
HTTP request carries certificate in header
X-IBA-Resource · X-IBA-Action · X-IBA-Version
04 — ENFORCEMENT
IBA Validation (TBDE)
Trust-Boundary Decision Engine runs in sequence:
· Verify signatures (principal + agent)
· Check certificate not expired or replayed
· Evaluate scope envelope against requested action
· Behavioral drift check against declared intent
· Commit decision to WitnessBound before execution
verdict
05A — PERMIT
ALLOW
200 OK
X-IBA-Verdict: ALLOW
Action executes within scope
05B — BLOCK
DENY
403 Forbidden
X-IBA-Verdict: BLOCK
Action nullified · New cert required
both paths
06 — AUDIT
WitnessBound Audit
Every decision committed to append-only chain
Before execution · Tamper-proof · Permanent record
IBA — THE LOAD-BEARING LAYER

The architecture exists
because IBA makes it enforceable.

Every governance framework before IBA had the same flaw: at the moment of execution, the agent either complied or it didn’t. There was no mechanism to guarantee compliance cryptographically before the action ran.

IBA closes that gap. The Intent Certificate is signed by both the agent and the principal before any action is taken. The TBDE (Trust-Boundary Decision Engine) verifies it at the transport layer — checking identity, scope, and behavioral consistency before execution proceeds. WitnessBound records every decision to an immutable ledger.

Recent litigation involving AI agents highlights the growing legal need for verifiable agent authorization. Amazon v. Perplexity (N.D. Cal., March 2026) serves as a legal signal: a federal court found that user consent alone was insufficient for agent platform access, pointing toward the kind of machine-readable authorization credential that IBA provides.

READ PROTOCOL SPEC →
PATENT APPLICATION GB2603013.0 (PENDING)
FILED 5 February 2026 · UK IPO
PCT RIGHTS 150+ Countries · Until Aug 2028
NIST DOCKET NIST-2025-0035 · 13 FILINGS
NCCoE AI Agent Identity · 6 FILINGS
LEGAL SIGNAL Amazon v. Perplexity · 2026
ENFORCEMENT LATENCY Target <5ms · Deterministic · O(1)
DEFAULT POSTURE DENY_ALL · No exceptions
AUDIT WitnessBound · Append-only chain
HARDWARE GATE MZI Photonic · Optional research layer
PROTOCOL SPEC IBA-SPEC-001 v0.1 · March 2026
§ FRAMEWORK COMPARISON

AGA vs existing
governance frameworks.

Capability ISO 42001 NIST AI RMF EU AI Act Zero Trust ★ AGA / IBA
Runtime enforcement ✓ Cryptographic
Agent-specific authorization ✓ Intent Certificate
Scope enforcement at execution Partial ✓ DENY_ALL default
Behavioral drift detection ✓ Behavioral drift detection
Hardware kill switch ✓ Optional research hardware layer
Immutable audit chain ✓ Partial ✓ WitnessBound
Legal signal: agent authorization ✓ Amazon v. Perplexity 2026
Patent-protected core ✓ GB2603013.0 (pending)
Sub-5ms latency ✓ O(1) deterministic
Model agnostic ✓ Transport layer
§ PART OF THE AGA ECOSYSTEM

One architecture.
Four sites. One enforceable core.

Each site in the AGA ecosystem carries a reference to the full stack. Here is the badge that appears on every AGA component site:

PART OF THE AGENT GOVERNANCE ARCHITECTURE
Agentic Etiquette
Agentic Etiquette defines the behavioral standards layer of the Agent Governance Architecture — a complete framework for AI agent authorization and governance built around the IBA enforcement core.
Layer 4 — Agentic Etiquette · Behavioral Standards
Layer 3 — GoverningLayer · Platform Governance
Layer 2 — Intent-Based Authorization · ★ Patent-Pending Enforcement Core
Layer 1 — Identity / PKI / TLS
LAYER 4 · BEHAVIORAL STANDARDS
Agentic Etiquette
agenticetiquette.com
LAYER 3 · GOVERNANCE CONTROL
GoverningLayer
governinglayer.com
★ LAYER 2 · AUTHORIZATION PROTOCOL
Intent-Bound Authorization
intentbound.com
PATENT APPLICATION GB2603013.0 (PENDING)
IBA COMPONENT · AUDIT CHAIN
WitnessBound
witnessbound.com
APPLICATION LAYER · MEDICAL
TheIoMT
theiomt.com
LAYER 3 PLATFORM · AGENT COMMERCE
TheAxiomCore
theaxiomcore.com
Agent Governance Architecture · Canonical Reference · GoverningLayer.com
IBA Patent Application GB2603013.0 (pending) · Filed 5 Feb 2026 · UK IPO · PCT 150+ countries
NIST-2025-0035 · 13 Filings · NCCoE AI Agent Identity · 6 Filings · © 2026 Jeffrey Williams
INTENTBOUND ETIQUETTE WITNESSBOUND AXIOMCORE IoMT