Aqua Protocol v4

Write agents,
with confidence.

Cryptographic trust infrastructure for the agentic era. Verifiable identity, tamper-proof provenance, and granular access control — without vendor lock-in or blockchain overhead.

Try the Portal Learn more
scroll
The problem

AI agents are scaling fast.
Trust infrastructure isn't.

Intelligence is no longer the bottleneck. Security is. When an AI agent executes a payroll run, approves a transaction, or files a tax document — who verifies it actually did what it claimed?

"Security will become THE bottleneck for effectiveness and usefulness of AI agents as a whole."

— Lex Fridman, February 2026
No provenance

No verifiable record of what data was used, which models processed it, or what outputs were produced.

No accountability

When an agent acts on your behalf, there is no cryptographic proof of who authorized what — or which system is responsible.

No granular control

Current agent frameworks offer all-or-nothing access. No context-aware, operation-level policies.

100% manual verification

Users leave the AI interface to manually verify every write action in the source application. The trust gap is structural.

The solution

Aqua Protocol v4

An open cryptographic protocol that gives AI agents verifiable trust — so every operation is signed, every action is traceable, and every claim is independently verifiable.

Self-sovereign identity

Decentralized identity (DID) for every agent and user. No central authority. You own your keys.

Provenance chains

Tamper-proof AquaTrees link every operation in a signed hash chain. Full audit trail, offline-verifiable.

Granular access policies

Operation-level, context-aware access control. Not all-or-nothing — fine-grained policies per action.

Independent verification

Any third party can verify the entire chain without trusting the agent, the platform, or the provider.

Blockchain-optional

Full cryptographic guarantees without chain overhead. Use a blockchain when you want to, not because you have to.

Vendor-neutral

Works with any AI model, any API, any infrastructure. Not tied to a single provider's ecosystem.

Portable verification

Verify offline, across organizations, without network access. Evidence travels with the data.

Regulation-ready

Designed for EU AI Act (Art. 10/12/13), NIST AI RMF, SOX, and SOC 2 compliance out of the box.

See it in action

A real agent. A real API. Real trust.

We built a payroll agent that operates against a major US payroll provider's public API — not a toy demo, but a production-grade integration with full cryptographic signing.

Alfred — Payroll Agent

Alfred handles employee onboarding, contractor setup, payroll runs, tax filings, and benefits management — all through natural language, all cryptographically signed and independently verifiable.

Every API operation flows through a template-driven trust chain: user authorization, agent execution, and independent notarization. The result is a complete, tamper-evident audit trail of everything the agent did and why.

19
API resources covered
69
Signed operation templates
3
Layer signing chain
10
Verified capabilities
Current status

Where we are today

We believe in transparency. Here is exactly where the project stands.

Repositories are currently closed

The Aqua Protocol source repositories are not publicly accessible while we resolve licensing terms for v4. The protocol specification is being formalized, and the SDK is available to partners under agreement. We expect to re-open access once the licensing framework is finalized.

In the meantime, the trusted Agents Portal below is live — you can interact with Alfred, our payroll agent, and see the trust infrastructure in action. The demo uses sandbox data only; no real payroll operations are performed.

Try the trusted Agents Portal

30 minutes free / sandbox data only / see the trust chain for yourself

Log in

Enter your email to start a session.

By logging in you confirm your continued agreement to our data processing and log retention terms accepted at registration.
Don't have an account? Register
Services & data processing
SendGrid (Twilio) — email verification (OTP delivery)
Deepgram — speech-to-text & text-to-speech
Claude (Anthropic) — AI inference
Gusto — payroll sandbox API (no real payroll data)
This is a prototype using sandbox data. No real payroll operations are performed. Your email and usage data are retained for service operation. Session logs are accessible to you and administrators.