Skip to content
@openagentidentityprotocol

Agent Identity Protocol

AIP. An open protocol enabling authentication, enforcement authorization, and audit trails for AI agents

Agent Identity Protocol (AIP)

The Zero-Trust Identity Layer for MCP & Autonomous Agents

A protocol for secure identity management, governance, and policy enforcement in the Internet of Agents (IoA)

AIP is a language-agnostic protocol for establishing cryptographic identities for AI agents, enabling authentication, authorization through policy enforcement, and audit trails across heterogeneous systems. AIP provides a standardized way to separate agentic and human authentications.

How It Works

AIP operates at two layers that work together — identity and enforcement — connected by the Agent Authentication Token (AAT):

  • Layer 1 — Identity: Agents receive cryptographic identities from the AIP Registry. The Token Issuer signs AATs that encode who the agent is, which user it acts on behalf of, and what capabilities it holds.
  • Layer 2 — Enforcement: The AIP Proxy sits between the AI client and any MCP tool server. It verifies the AAT on every tool call, evaluates policy, DLP-scans data, and writes an immutable audit log — before any request reaches your infrastructure.

Repositories

Repository Description
agentidentityprotocol Protocol specification, architecture, and formal docs
agentidentityprotocol/docs Source for agentidentityprotocol.io
aip-playground Example webapp with basic authentication to test out AIP in real world scenarios
aip-go Go reference implementation — MCP proxy with policy enforcement, DLP, and audit logging
aip-rust Rust implementation (in progress)
aip-python Python implementation (in progress)
aip-policy-examples Agent Identity Protocol YAML Example Policies - use with proxy layer (in progress)

Get Involved

AIP is an open specification. We welcome protocol feedback, new language implementations, security research, and documentation contributions.

Licensed under Apache 2.0

Pinned Loading

  1. agentidentityprotocol agentidentityprotocol Public

    Agent Identity Protocol - Zero-trust security layer for AI agents. Policy enforcement proxy for MCP with Human-in-the-Loop approval, DLP scanning, and audit logging.

    16 2

Repositories

Showing 8 of 8 repositories
  • aip-go Public

    Agent Identity Protocol GO Implementation

    openagentidentityprotocol/aip-go’s past year of commit activity
    Go 1 0 0 1 Updated Feb 23, 2026
  • .github Public
    openagentidentityprotocol/.github’s past year of commit activity
    0 0 0 0 Updated Feb 23, 2026
  • docs Public archive
    openagentidentityprotocol/docs’s past year of commit activity
    MDX 0 MIT 0 0 0 Updated Feb 23, 2026
  • aip-python Public

    Agent Identity Protocol Python Implementation

    openagentidentityprotocol/aip-python’s past year of commit activity
    Python 0 0 0 0 Updated Feb 23, 2026
  • openagentidentityprotocol/aip-policy-examples’s past year of commit activity
    0 0 0 0 Updated Feb 22, 2026
  • agentidentityprotocol Public

    Agent Identity Protocol - Zero-trust security layer for AI agents. Policy enforcement proxy for MCP with Human-in-the-Loop approval, DLP scanning, and audit logging.

    openagentidentityprotocol/agentidentityprotocol’s past year of commit activity
    16 Apache-2.0 2 2 1 Updated Feb 22, 2026
  • aip-playground Public

    A reference application for exploring the Agent Identity Protocol. Includes an authenticated MCP server with role-based email tools to plug any AIP proxy in front and see identity-aware policy enforcement in action

    openagentidentityprotocol/aip-playground’s past year of commit activity
    Python 0 0 0 0 Updated Feb 19, 2026
  • aip-rust Public

    Agent Identity Protocol Rust Implementation

    openagentidentityprotocol/aip-rust’s past year of commit activity
    0 Apache-2.0 0 0 0 Updated Feb 17, 2026