Grimlock: eBPF-Based Agent Guard for Secure Sandbox Communication
Grimlock is an Agent Guard system that enforces trust in high-agency agentic systems by intercepting sandbox communication via eBPF and using post-handshake attestation bound to TLS 1.3 channel bindings. It authorizes communication and issues short-lived, channel-bound scope tokens for least-privilege delegation, without modifying agent code.
Key facts
- Grimlock uses eBPF-enforced traffic interception
- It combines interception with post-handshake attestation
- Attestation is bound to standard TLS 1.3 channel bindings
- The guard authorizes communication after channel establishment
- It mints short-lived, channel-bound scope tokens
- Scope tokens capture least-privilege delegation
- Agent code remains unchanged
- Trust enforcement is moved into the sandbox substrate
Entities
—