8-Layer Defense in Depth

Trust is not optional. Every operation is validated, scoped, and signed.

Always Active

6 layers — every deployment

Input Validation

WASM parse-time rejection. Malformed CTX never reaches the gateway.

Auth + RBAC

Role-based access with scope enforcement. Agents only see what they're allowed to.

Convergent Encryption

Content-addressable dedup preserving privacy across tenants.

Signed Translations

Every sidecar operation gets an Ed25519 cryptographic receipt.

Constant-Time Ops

Timing-attack resistant comparisons on all security-critical paths.

Parameterized Queries

Injection-proof database operations. No string concatenation.

Cloud / Team

4 additional layers

Sentinel Monitoring

Pre/post execution hooks, behavioral heuristics, and cross-agent anomaly correlation.

Alignment Enforcement

Divergence detection, groundedness verification, and sandbagging detection in real-time.

Audit Trail

Queryable execution history with Ed25519-signed cryptographic receipts across sessions.

Credential Vault

Encrypted secret storage with op:// URI resolution, per-tool RBAC, and RAM-only caching.

Enterprise

2 additional layers

OIDC / SAML Federation

Auto-discovery from .well-known endpoints with JWKS caching. One-file auth bridge for enterprise IdPs.

Multi-Tenant Isolation

Gateway-level tenant separation with dedicated memory namespaces and scoped RBAC.

Sentinel Monitoring

Standard MCP gives you request logs. Secure MCP gives you execution receipts, behavioral analysis, and pluggable detection.

Sentinel monitoring capabilities: Standard MCP vs Secure MCP (AgentCTX)
Capability Standard MCP Secure MCP (AgentCTX)
Edge Monitoring Basic request logging Full pre/post execution hooks
Execution Receipts Ed25519 signed proof of every action
Pattern Detection Rule-based + behavioral heuristics
Cross-Agent Correlation Multi-signal anomaly detection
Custom Hooks Hook SDK for custom detection

Alert Severity Ladder

Low Log
Medium Log + Notify
High Log + Notify + Throttle
Critical Quarantine

Hook SDK

import { SentinelEngine } from '@agentctx/core/sentinel';

const sentinel = new SentinelEngine({
  hooks: {
    preExecution: [credentialScanner, injectionDetector],
    postExecution: [piiRedactor, driftDetector],
  },
  alertLadder: ['log', 'notify', 'throttle', 'quarantine'],
});

Enterprise Auth Bridge

One-file migration: OAuth / OIDC / mTLS / API keys terminate at the edge → CTX identity inside. When you're ready to go fully native: rm bridge.ts