VALIDANT AI
Back to validant.ai
Guide · Agents

Signed agent mandates, explained.

A signed agent mandate is a cryptographically signed, scoped and revocable authorization that proves a person granted an AI agent permission to act on their behalf. This guide explains the problem it solves, what a mandate contains, and how it builds on self-sovereign identity.

By The validant.ai team6 min readLast updated 22 May 2026
Technical line drawing: a person hands a signed, sealed mandate to a humanoid AI agent standing inside a bounded, revocable scope, with soft coral and amber accents on white

What is a signed agent mandate?

A signed agent mandate is a cryptographically signed, scoped and revocable authorization that proves a person granted an AI agent specific permission to act on their behalf. It answers the question every counterparty will soon ask an autonomous agent: "Who said you could do this, and within what limits?"

Think of it as a verifiable power of attorney for software: machine-readable, narrow in scope, time-bound, and checkable by the other side without trusting the agent's own claims.

The problem it solves

AI agents are starting to take actions, booking, buying, negotiating, filing, but the systems they interact with have no reliable way to know what a given agent is actually allowed to do. Today that authority is implicit: an API key, a logged-in session, a stored password. Those grant broad, hard-to-audit access and are easy to misuse if an agent is compromised or simply behaves unexpectedly.

A mandate makes authority explicit and provable: the agent presents a credential that states exactly what it may do, and the counterparty verifies it before acting.

What a mandate contains

A well-formed mandate is built to be narrow and accountable:

  • Principal and agent: who is granting authority and which agent holds it, bound to cryptographic keys.
  • Scope: the specific actions permitted, for example "book travel up to €500" rather than "act as me".
  • Constraints: limits on amount, time window, counterparties or frequency.
  • Revocability: the principal can withdraw the mandate, and verifiers can check it has not been revoked.
  • Auditability: every use can be logged against the mandate, so there is a record of what the agent did and under whose authority.

How mandates relate to self-sovereign identity

Signed agent mandates are an application of self-sovereign identity. They are verifiable credentials whose subject is an action, not a person: the principal uses an identity they control to issue a scoped credential to their agent. Without self-sovereign identity as the foundation, there is no trustworthy place for that authority to originate.

Status at validant.ai

Signed agent mandates are part of validant.ai's research direction, not a shipped feature. They express the third pillar of our mission, personal AI agents that act only in your interest, and they sit on the roadmap alongside self-sovereign identity. Our delivered work today is in AI fairness and digital trust. We describe mandates here because where AI is heading, accountable agency will matter as much as accurate models.

Related guides
FAQ

Frequently asked questions

What is a signed agent mandate?
A signed agent mandate is a cryptographically signed, scoped and revocable authorization that proves a person granted an AI agent specific permission to act on their behalf. It works like a verifiable, machine-readable power of attorney for software.
Why do AI agents need mandates?
AI agents increasingly take real actions, but the systems they interact with cannot reliably tell what a given agent is allowed to do. Today that authority is implicit in API keys or sessions. A mandate makes authority explicit and provable, so a counterparty can verify exactly what the agent may do before acting.
How do signed agent mandates relate to self-sovereign identity?
A signed agent mandate is an application of self-sovereign identity: it is a verifiable credential whose subject is an action. The principal uses an identity they control to issue a scoped, revocable credential to their agent, so the authority has a trustworthy origin.