Skip to main content
IDevSec LogoIDevSec
THE TRUST MANIFESTO

A Safe Future
for AI Agents

Why Anonymous AI is a Ticking Time Bomb, and Our Vision for a Verifiable World.

The internet is about to change forever. For the last 30 years, the internet was a place where humans read pages. For the next 30 years, the internet will be a place where AI agents do work.

Very soon, there will be more AI agents on the web than human beings. They will trade, make decisions, negotiate, and execute actions on our behalf.

But there is a dangerous flaw in how we are building this future: We are giving AI agents the power to act, without giving them a way to prove who they are.

An internet of anonymous intelligence is an internet of chaos. This is why we built Creduent. And this is what we believe.

Why Traditional Identity Fails AI Agents

A common question in enterprise security is: "Why can't we just propagate the user's existing OAuth or OIDC token down to the agent? Why complicate things with separate agent identities?"

In a static system, user token propagation works. But when agents act autonomously, relying purely on the user's identity breaks down for three reasons:

1. The Capability Gap

An agent often needs to access resources its human user does not (and should not) have permissions to read. For example, a compliance agent verifying GDPR status needs global database access, but the marketing manager initiating the check must not be granted admin credentials. Giving the agent its own cryptographically bound identity prevents privilege escalation while ensuring the job gets done.

2. Decision Attribution

Traditional logs attribute all actions to the human user token. If a supply chain agent autonomously places an incorrect purchase order based on real-time market shift, a simple user-token log blames the human. We need distinct agent identities to separate human intent from autonomous system decisions for forensic audit trails.

3. Accountability Chains

When one agent spawns sub-agents or calls third-party tools, trust domains are crossed. Propagating a single user token across a multi-agent delegation tree makes tracing the causality chain impossible. We must cryptographically trace the entire chain: User intent → Lead Agent decision → Sub-agent execution.

BELIEF_01

1. Identity is a Prerequisite for Action

If a human wants to open a bank account, travel, or start a business, they must show an ID. Why should an AI agent be any different? If an agent has the power to transfer funds, read emails, or access databases, it must have a verifiable identity. No server should trust an agent that cannot prove its origin, its owner, and its boundaries. Anonymous intelligence is a liability. Verified intelligence is an asset.

BELIEF_02

2. Trust Must Be Decentralized

We do not want a future where one or two tech giants control the identity of every AI agent on the planet. Just like no single corporation owns email (SMTP) or the web (HTTP), no one should own the trust layer of the AI economy. Creduent is designed to be fully decentralized, relying on standard DNS and open cryptography. You verify your agent through the domain you already own. No gatekeepers, no middleman, no tax on trust.

BELIEF_03

3. Friction is the Enemy of Security

If a security protocol is hard to implement, developers will ignore it. Therefore, our primary engineering metric is Developer Experience (DX). Setting up an identity must take less than 3 minutes, verification must take less than 50 milliseconds, and integration with popular frameworks must require only a few lines of code. If security isn't simple, it isn't secure.

The Road Ahead

We aren't building a wrapper. We are building the naming and verification layer for the next stage of the web. In a few years, checking an agent's domain badge will be as standard as checking the HTTPS lock in your browser.

We're open-sourcing the specs, reference clients, and verification libraries on July 11. If you're building in the agentic space, we invite you to join the standard.

verified_userCREDUENTextensionIDENTABARbusinessSERVICESinfoABOUTworkCAREERSsendCONTACT