Blast Radius Containment
Limit the maximum operational and financial damage of a hijacked agent.
When an agent goes off the rails—either through hallucination or adversarial attack—Blast Radius Containment ensures the maximum resulting damage is bounded.
Sandboxing
Agents run in isolated execution enclaves using Read-Only (RO) scopes by default. Write (RW) scopes are granted ephemerally through human-in-the-loop (HITL) overrides or strict EAAP verification sequences.
EAAP Protocol v1.0Verified Architecture