OAuth lets users delegate authority to apps without sharing passwords. VAC lets humans delegate authority to AI agents without losing accountability. Every agent action traces through a cryptographic chain back to a verified human — the Verified Human Root. Issue tokens, enforce scoped authority, and audit everything — one API.
Already have an agent? Two API calls and you're in the execution graph.
VAC is being deployed with a small number of partners across legal, finance, and critical infrastructure. Pricing and plans will open as we expand — for now, let's talk about your use case.
Start a conversationOne call: authorize + record + complete. Simplest way to add any action to the execution graph.
Issue a root authority token. No biometrics needed for L1. Returns Ed25519-signed JWT with scoped permissions.
Pre-flight check: is this action within scope? Creates a pending AAR. Use with /complete for the full lifecycle.
Rate an action: approved, flagged, or rejected. Immutable once set. Feeds into agent reputation.
Two-dimensional: execution_score (from AAR outcomes) + feedback_score (from human ratings). Combined 60/40.
One provenance_ref returns every action by every agent in a workflow. The execution graph query.
We're working directly with our first design partners to integrate verifiable human authority. Tell us what you're building and we'll get you set up.
Request accessVAC Protocol — Patent Pending (1028+ claims, 16 filings with IP Australia)
Submitted to NIST NCCoE AI Agent Identity and Authorization project