Video by The Linux Foundation via YouTube
Supply chain attacks are accelerating, and autonomous AI agents are making the problem exponentially harder to contain. When agents act on behalf of humans who act on behalf of other agents, logs and traces alone cannot prove who did what, or whether that record has been altered after the fact.
In this exclusive interview with Swapnil Bhartiya at TFiR, Dapr co-creator and maintainer Yaron Schneider walks through Dapr 1.18 and its verifiable execution feature, which brings cryptographic attestation and tamper-evident workflow history to cloud native distributed systems running autonomous AI agents.
Key Topics Covered:
– Why logs, traces, and audit records are insufficient for AI agent accountability and how they can be silently tampered with
– How SPIFFE-based cryptographic identity is issued to every application, MCP server, and agent connecting through Dapr
– How Dapr 1.18 signs every workflow history event to create a blockchain-style append-only execution record that detects retroactive tampering
– Why verifiable execution is critical for regulated industries such as financial services and healthcare facing compliance audits
– Why this capability was released as a vendor-neutral open source CNCF project rather than a proprietary product
Read the full story and transcript at www.tfir.io
#Dapr #AIAgents #CloudNative #CNCF #VerifiableExecution #SupplyChainSecurity #SPIFFE #WorkflowSecurity #ZeroTrust #DistributedSystems #OpenSource #AICompliance #AuditTrail #CryptoAttestation #PlatformEngineering