KYA — Know Your Agent
Issue a post-quantum (Dilithium-2) identity + scope credential for any AI agent, aligned with ERC-8004, and let anyone verify it for free — enriched with live FRC-55 on-chain agent reputation.
The agent-identity problem
As AI agents act autonomously, "which agent, run by whom, allowed to do what" becomes a security question. Regulators and standards bodies are answering it right now.
Agent fraud is already here
Autonomous agents call APIs, move money, and impersonate each other. There is no standard way to know which agent — and whose — you are talking to.
NIST + ERC-8004 are defining the standard
NIST opened an RFI on agent identity (Mar 2026); ERC-8004 splits it into identity / reputation / validation registries. The primitives are being decided now.
Our moat: KYA + PQC + on-chain reputation
FractalAI signs the identity + scope post-quantum (Dilithium-2) AND can attach live FRC-55 on-chain agent reputation. No one else combines all three.
Live demo
Issue a credential, verify it, then tamper with its scope and watch the post-quantum signature reject it.
Issue a signed credential
Operator declares agent id + scope → Dilithium-2 signs it.
Verify the credential
Anyone can check the signature + expiration for free.
Tamper with the scope → it FAILS
Add admin:* without re-signing. The signature rejects it.
What a KYA credential does — and doesn't — prove
It proves
- Integrity — the declared agent identity + scope is tamper-evident
- Authenticity — signed by the holder of the operator's key
- Non-repudiation — the operator can't later deny declaring this agent
It does NOT prove
- That the agent behaves well or stays in scope at runtime (scope is a declaration, not a sandbox)
- That the operator is a legitimate entity (that's operator KYC — a separate step)
- "Unbreakable" crypto — Dilithium-2 resists all KNOWN attacks per NIST FIPS 204, not the same as unbreakable
How it works
Post-quantum signature
The operator signs the canonical identity + scope with Dilithium-2 (NIST FIPS 204). Any change to scope or expiry breaks the signature.
On-chain reputation (FRC-55)
Reference an FRC-55 agent id and the credential carries a live read of its on-chain rating, calls and earnings — a real read, never fabricated.
ERC-8004-aligned
Identity / reputation / validation map to the three ERC-8004 registries, so the credential is interoperable in spirit with the emerging standard.
Give your agents a verifiable identity
Verify credentials free, forever. Pay only for issuance volume.