For security architects & teams

Evaluate the action the agent assembled — not just the model.

You already know the seam: authentication works, retrieval works, the policy engine works — and the action the agent composed from all of them still violates intent, because none of those controls was built to reason about the composed action. Apeiris adds a layer that evaluates that action and produces evidence — under whose authority, over what data, within what policy — not a verdict on the model and not a gate that decides for you.

How Apeiris differs from the tools you already run

Apeiris is not a policy engine, CNAPP, SIEM, identity provider, or AI gateway, and it does not replace them. It defines the open control-and-evidence model those tools produce and consume evidence against — the layer that reasons about the action a workload assembled across identity, authority, data, knowledge, and behavior, and emits a composed, reviewable verdict. It is an evidence layer, not another sensor and not a choke point.

Available today vs. in development

The open corpus is usable now. The runtime platform that watches your environment is being built — we hold that line explicitly.

Available today

  • The compositional thesis, one-action walkthrough, and incident method
  • The Agentic, Identity, and Authority control families with evidence and blocking posture
  • A local platform prototype (deterministic trust engine, CLI, MCP, Ed25519 attestation)
  • The knowledge graph and ATLAS model, queryable over MCP

In development

  • Runtime detection of capability drift in your environment
  • Telemetry ingestion and per-tenant evidence storage
  • Output connectors (ServiceNow, Jira, Splunk, Sentinel, …) and a connector SDK

Trace a real action

See the six checks a composed action must pass, and the evidence each one produces.

Not your role?