Yes. KYA is fully open-source (Apache 2.0) and ships with a Docker Compose setup. You can run the full stack (API + PostgreSQL + Redis) on your own infrastructure in minutes.

What latency does the /verify endpoint add?

The /verify endpoint targets a p99 latency under 20ms when self-hosted. KYA also supports a local verification mode with a Redis-backed policy cache that eliminates the network hop entirely.

How does revocation work?

Agent revocation is immediate. Within seconds, all subsequent verify calls for that agent return DENY. Capability revocation (for in-flight JWTs) uses a Redis blacklist with matching TTL. No waiting for token expiry.

What programming languages are supported?

KYA ships with official SDKs for JavaScript/TypeScript (@kya/sdk-js) and Python (@kya/sdk-python). Both include Ed25519 key generation, canonical JSON serialization, and typed API clients. The REST API works with any language.

Is the audit log tamper-proof?

Yes. Each workspace maintains a SHA-256 hash chain over its audit events. Any modification to historical events breaks the chain and is immediately detectable. This design satisfies the tamper-evidence requirements for SOC2 and ISO 27001 audits.

Why KYA

The missing trust layer for AI agents acting in production.

AI agents can now trigger real-world actions: purchases, CRM writes, deployments. The core risk is simple — an agent acts with too much power, or outside policy, and you only discover it after damage is done.

The Problem#

Without a control gate, one bad call can:

Execute an unauthorized purchase
Push wrong data to your CRM
Trigger an unsafe deploy
Act beyond the intended scope with no audit trail

AI agents act like root users on your production APIs. They have no identity standard, no permission boundary, and cannot be audited or revoked safely.

The KYA Verify Gate#

KYA adds one decision point before every execution:

POST /verify
→ decision: ALLOW | DENY
→ reason_code: null | "SPEND_LIMIT_EXCEEDED" | ...
→ audit_event_id: "evt_01J..."

Your app executes only on ALLOW. On DENY, you get a reason code you can log, handle, or surface to the user.

What This Gives You#

Capability	What it means
Identity	Cryptographic proof of which agent is acting (Ed25519)
Permission control	Define exactly what each agent can do (tools, spend, rate)
Audit trail	Tamper-evident log of every decision with hash-chain integrity
Revocation	Stop a compromised agent or capability in seconds

KYA vs. Traditional IAM#

Traditional IAM (Auth0, Okta) is designed for humans who log in once and get a session. AI agents operate differently — they act continuously, autonomously, and at machine speed. KYA is built specifically for this model:

	Human IAM	KYA (Agent IAM)
Identity unit	User account	Agent (Ed25519 keypair)
Token model	Long-lived JWT session	Short-lived capability (5–30 min)
Scope	Per user	Per action
Revocation	Session invalidation	Seconds, capability blacklist
Audit	Login events	Every action, hash-chained
Policy	RBAC / ABAC	Per-agent tool + spend + rate limits

KYA is the trust layer between agent intent and production action.

Edit this page on GitHub →