The latest articles on DEV Community by Dominic sibilano (@aiagenttrust). https://dev.to/aiagenttrust https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3844910%2F1df4f9aa-c481-41ea-9c17-682b8451a075.jpeg https://dev.to/aiagenttrust en Dominic sibilano Thu, 26 Mar 2026 15:20:52 +0000 https://dev.to/aiagenttrust/i-built-a-cryptographic-trust-registry-for-ai-agents-heres-how-it-works-40kc https://dev.to/aiagenttrust/i-built-a-cryptographic-trust-registry-for-ai-agents-heres-how-it-works-40kc <p>When two AI agents from different platforms want to communicate, how does either one know the other is who it claims to be?<br> There’s no answer to that question today. An agent can claim to be a Claude instance, a GPT-4 orchestrator, or anything else — and there’s nothing stopping an imposter from making the same claim.<br> I spent the last few weeks building a solution: a neutral third-party trust registry that lets AI agents verify each other cryptographically, with zero human involvement.<br> The core insight<br> Only one thing is truly verifiable about an unknown agent: its cryptographic signature.<br> Everything else — platform name, model version, capabilities — is self-reported. So the architecture is simple: verify the signature first, then trust the claims conditionally.<br> How the handshake works<br> Registration: An agent generates an Ed25519 keypair and registers its public key and capability manifest with the registry. The private key never leaves the agent.<br> Challenge: When Agent A wants to verify Agent B, it requests a one-time nonce from the registry. The nonce expires in 30 seconds and can only be used once — making replay attacks impossible.<br> Sign: Agent B signs the nonce with its private key and returns the signature.<br> Verify: The registry checks the signature against the stored public key. On success, the verified manifest is released — platform, model, capabilities, reputation score.<br> Every event is written to a hash-chained ledger. Tamper with any entry and the chain breaks — instantly detectable.<br> Integrating in 3 lines<br> const { TrustProtocol } = require('@trustprotocol/trust-protocol');</p> <p>const trust = new TrustProtocol({<br> agentId: 'my-agent-01',<br> platform: 'anthropic',<br> model: 'claude-sonnet-4-20250514',<br> capabilities: ['web_search', 'code_execution'],<br> systemPrompt: 'You are...',<br> registryUrl: '<a href="https://aiagenttrust.dev" rel="noopener noreferrer">https://aiagenttrust.dev</a>',<br> });</p> <p>await trust.register();</p> <p>Verifying a peer:</p> <p>const result = await trust.verify('their-agent-id', '<a href="https://their-agent.com'" rel="noopener noreferrer">https://their-agent.com'</a>);</p> <p>if (result.verified) {<br> console.log(result.manifest.platform); // 'openai'<br> console.log(result.manifest.capabilities); // ['database_query', ...]<br> console.log(result.reputation.passes); // 42<br> }<br> What’s next<br> This is v1 and there’s a lot to improve. The biggest open problem is platform-signed registrations — right now agents self-report their platform and model. The next step is getting AI companies to cryptographically endorse their own agents at registration time, making the claims as verifiable as the signature itself.<br> Live registry: <a href="https://aiagenttrust.dev" rel="noopener noreferrer">https://aiagenttrust.dev</a><br> npm: npm install @trustprotocol/trust-protocol<br> GitHub: <a href="https://github.com/aialphaai-glitch/agent-trust" rel="noopener noreferrer">https://github.com/aialphaai-glitch/agent-trust</a><br> Would love feedback from anyone building multi-agent systems — what would make this useful for your stack?</p> ai agents security opensource