← all work
Designer & implementer
HMAC-Based Operator-Intent Verification
Cryptographic proof that a privileged AI call was authored by operator intent, not smuggled by prompt injection.
summary
A signing pattern that defends privileged AI-driven API calls against prompt injection. Direct analog of the human-MFA step in regulated CI/CD pipelines: existing approval and audit workflows carry forward, AI just becomes another principal in the audit log.
highlights
- Privileged write surfaces refuse calls that lack a fresh, scoped signature.
- Compatible with existing approval/audit workflows; no parallel governance regime required.
stack
HMAC-SHA256OPA gatesAudit pipelines