{"ID":2881377,"CreatedAt":"2026-06-01T04:54:23.091178241Z","UpdatedAt":"2026-06-01T04:54:23.091178241Z","DeletedAt":null,"paper_url":"https://arxiv.org/abs/2508.12259","arxiv_id":"2508.12259","title":"Fortifying the Agentic Web: A Unified Zero-Trust Architecture Against Logic-layer Threats","abstract":"This paper presents a Unified Security Architecture that fortifies the Agentic Web through a Zero-Trust IAM framework. This architecture is built on a foundation of rich, verifiable agent identities using Decentralized Identifiers (DIDs) and Verifiable Credentials (VCs), with discovery managed by a protocol-agnostic Agent Name Service (ANS). Security is operationalized through a multi-layered Trust Fabric which introduces significant innovations, including Trust-Adaptive Runtime Environments (TARE), Causal Chain Auditing, and Dynamic Identity with Behavioral Attestation. By explicitly linking the LPCI threat to these enhanced architectural countermeasures within a formal security model, we propose a comprehensive and forward-looking blueprint for a secure, resilient, and trustworthy agentic ecosystem. Our formal analysis demonstrates that the proposed architecture provides provable security guarantees against LPCI attacks with bounded probability of success.","short_abstract":"This paper presents a Unified Security Architecture that fortifies the Agentic Web through a Zero-Trust IAM framework. This architecture is built on a foundation of rich, verifiable agent identities using Decentralized Identifiers (DIDs) and Verifiable Credentials (VCs), with discovery managed by a protocol-agnostic Ag...","url_abs":"https://arxiv.org/abs/2508.12259","url_pdf":"https://arxiv.org/pdf/2508.12259v3","authors":"[\"Ken Huang\",\"Yasir Mehmood\",\"Hammad Atta\",\"Jerry Huang\",\"Muhammad Zeeshan Baig\",\"Sree Bhargavi Balija\"]","published":"2025-08-17T06:52:39Z","proceeding":"cs.CR","tasks":"[\"cs.CR\",\"cs.AI\",\"cs.ET\"]","methods":"[]","has_code":false}