The Open Agent Passport (OAP) v1.0 specification defines the defines the emerging authorization standard for AI agent economies. OAP provides cryptographic identity binding, capability-based access control, and deterministic policy enforcement for AI agents across frameworks. This specification establishes three core components: the Passport (identity + capabilities), the Decision (authorization outcome), and the Proof (audit trail). OAP enables pre-action authorization that prevents supply chain attacks including Clinejection-style AI tool compromises. The specification is compatible and foundational for AI Guardrails accross different frameworks, models and agentic workflows.
Uchibeke et al. (Sat,) studied this question.