IRONGATE authorization control plane

A verifiable authorization checkpoint for consequential AI actions.

IRONGATE is an orchestrator-invoked checkpoint: human-key signatures, evidence-bound checks, deny-by-default evaluation, and an audit trail that outside reviewers can verify. Inline runtime enforcement remains roadmap.

Read Product Sheet View Demo Output Verify Ledger
ALLOWOnly with a valid Bridge signature
DENYDefault for missing or invalid authority
0Private key material exposed to agents
LIVEFirst public claim publish used the checkpoint
The product

IRONLEDGER proves what happened. IRONGATE checks whether authority exists before an orchestrator proceeds.

AI agent
Requests a consequential action: publish, send, rotate, anchor, or delete.
->
IRONGATE
Reads real authorization evidence. Missing authority evaluates to DENY.
->
Authorized path
The orchestrator proceeds only when signed scope and control rules verify.
Enforcement model Today: orchestrator-invoked authorization checkpoint. Roadmap: inline runtime enforcement inside the agent harness.
Working core

Real today, roadmap labeled.

LIVE

Human-key authorization

Ed25519 Bridge signatures over canonical JSON. Single Bridge signer today; multi-party quorum and hardware-token custody are roadmap. Agents see the public key, never the private key.

LIVE

Evidence-bound checks

Control states resolve from real readers. A caller cannot satisfy a control by passing a string.

LIVE

Tamper rejection

Changing signed scope breaks the payload hash and signature verification.

LIVE

Deny-by-default evaluation

Action classes map to required controls. Unknown actions deny by default when routed through the checkpoint.

LIVE

Unconditional prohibitions

Some actions, such as hard delete, remain denied no matter how many approvals exist.

HONEST

Unverifiable means unverifiable

Quorum and dissent channels are roadmap until their independent readers exist.

Proof, not promise

The first public claim publish went through the checkpoint.

Verified production proof point

  • Action: PUBLIC_CLAIM_CHANGE
  • Authorization: BRIDGE-AUTH-20260531-PUBLIC-CLAIM-PROOF-SURFACE-001
  • Signature verifier: ALLOW
  • CCP enforce wrapper: ALLOW
  • Result: Article 11 proof surface published

Live verification surfaces

Demo transcript

What the checkpoint does when tested.

[1] DENY BY DEFAULT
decision      : DENY
missing_gates : ['BRIDGE_AUTH']

[2] ALLOW WITH REAL AUTH
signature       : valid=True status=ALLOW
decision        : ALLOW

[3] TAMPER -> DENY
errors          : ['payload_sha256 mismatch', 'signature verification failed: ']

[4] HONEST CAPABILITY BOARD
QUORUM_2         UNVERIFIABLE
TENTH_MAN_CLEAR  UNVERIFIABLE
NO_DELETE        FAILED

Read the full demo output.

Buyer fit

Built for teams that need accountable AI action.

IRONGATE is for regulated, enterprise, and public-sector teams deploying orchestrated agents that can publish, send, configure, sign, anchor, or delete. It is designed to support human-oversight and traceability expectations, including NIST AI RMF GOVERN and MANAGE functions. It is an authorization checkpoint and control plane, not a certification.

Scope IRONGATE Public Kit README