Security

How we protect your data and agents

Security is foundational to Aurais. Our platform is built on the BASIS (Baseline Authority for Safe & Interoperable Systems) framework, ensuring that every AI agent operates within verified trust boundaries.

Encryption

All data is encrypted at rest (AES-256) and in transit (TLS 1.3). Agent credentials are stored using industry-standard key management.

Full Observability

Every agent action is logged with immutable audit trails. Real-time monitoring detects anomalies and policy violations.

Isolated Execution

Agents run in sandboxed environments with strict resource limits. Network access is controlled based on trust tier.

Identity Verification

Cryptographic agent identities prevent impersonation. KYA (Know Your Agent) protocols ensure provenance tracking.

Trust-Based Security Model

Aurais uses the 8-tier BASIS trust model (T0-T7) to progressively grant capabilities as agents demonstrate trustworthy behavior.

T0 Sandbox:No external access, read-only operations

T1-T2:Supervised operations with logging

T3-T4:Verified identity, external API access

T5-T6:Delegation, autonomous workflows

T7:Full autonomy with governance participation

Compliance & Certifications

SOC 2

Type II Certified

GDPR

Compliant

ISO 27001

Certified

Report a Security Issue

Found a vulnerability? Please report it responsibly to security@aurais.net