Search papers, labs, and topics across Lattice.
This paper introduces the Sovereign Execution Broker (SEB), a novel runtime enforcement mechanism designed to ensure that autonomous agents adhere to certified authority during production mutations. By integrating a verification process that checks against a certificate issued by the Sovereign Assurance Boundary (SAB), SEB creates a robust boundary that separates proposal, admission, and execution phases, thereby enhancing security and accountability. The evaluation of a prototype implementation on AWS and Kubernetes demonstrates SEB's effectiveness in managing latency, revocation propagation, and fault injection resilience, highlighting its potential to improve agentic control systems.
SEB transforms how autonomous agents execute actions by enforcing certified authority in real-time, ensuring that only verified mutations are permitted.
Autonomous agents are increasingly connected to cloud, deployment, and data-control workflows, but production mutation authority should not reside inside non-deterministic reasoning processes. Existing access-control mechanisms authorize identities, while assurance layers certify proposed actions; neither alone provides a mandatory enforcement point for certified authority at the moment of mutation. This paper introduces the Sovereign Execution Broker (SEB), a runtime enforcement boundary for certificate-bound agentic infrastructure. SEB consumes certificates issued by the Sovereign Assurance Boundary (SAB), verifies that the requested mutation matches the certified execution contract, checks validity windows, policy epochs, revocation epochs, and live-state drift, mints scoped execution identity, invokes infrastructure APIs, and records signed decision and outcome records. By separating proposal, admission, and execution, SEB turns certified authority into a short-lived, revocable, auditable runtime capability, provided that production mutation APIs reject non-broker identities. We present the SEB execution model, certificate and replay-verification predicates, scoped identity semantics, bypass-prevention deployment patterns, failure behavior, and a concrete prototype implementation. We evaluate the prototype on AWS and Kubernetes clusters, measuring latency overheads, revocation propagation, drift detection, and security under fault injection.