authID (Nasdaq: AUID) has launched its Mandate™ Framework, a governance model designed to enhance security for Agentic AI by providing a system for verifying non-human identities, including autonomous and semi-autonomous AI agents.

The framework aims to establish a trusted foundation, policy controls, and auditability for enterprises deploying agentic systems at scale. Currently, AI agents often operate with weak, static, and phishable credentials such as keys and tokens that lack biometric or cryptographic binding to a human. This absence of a consistent governance framework to validate these credentials before actions are taken poses significant risks. If credentials are breached or reused in account takeover attacks, a compromised token can be exploited by an AI agent, potentially leading to fraudulent transactions, data leaks, and a loss of accountability. Such risks have the potential to impede large enterprise Agentic AI initiatives.

Mandate defines a mechanism for organizations to establish accountability for autonomous activity. Each AI agent is sponsored by a verified human, ensuring it operates within explicitly authorized boundaries. The platform also generates immutable records for post-facto auditing. The framework operationalizes the issuance of biometric-rooted, cryptographically verifiable credentials for human sponsors and enforces them at runtime across digital workflows, APIs, and multi-agent ecosystems.

“Enterprises are ready to let AI agents work, but not without a governance framework,” stated Rhon Daguro, CEO of authID. “The authID Mandate Framework is our blueprint for accountable Agentic AI. Customers can govern which agents take action, who sponsors them, and what they are allowed to do, before, during, and after every action.”

The Mandate Framework establishes a unified, control-ready model for governing agentic AI activity through four key pillars: Provenance & Sponsorship, which cryptographically binds each AI agent to a verified human sponsor using biometric-anchored identity; Authorization & Policy, designed to define and enforce fine-grained scopes, guardrails, and contextual risk checks for AI agent actions; Continuous Observability, which monitors AI agent invocations, decisions, and escalations in real time; and Accountability & Audit, which produces non-repudiable, tamper-evident logs for compliance, incident response, and post-trade review.

Erick Soto, Chief Product Officer at authID, noted, “One of the greatest concerns enterprise CEOs face today is the introduction of Agentic AI solutions into their businesses, and it’s not without reason. Just last week, fraudsters successfully orchestrated attacks on over 30 companies through AI agents. This incident shows how quickly AI tools can be weaponized when there’s no clear chain of trust.” He added that the Mandate Framework provides accountability and trust through unphishable credentials linked to a human and a specific AI agent instance. It also supports standards-aligned interoperability across protocols like OIDC, A2A, and MCP, and includes human-in-the-loop confirmation for high-risk actions such as final approvals.

Headquartered in Denver, authID (Nasdaq: AUID) specializes in biometric identity authentication, ensuring