Signed Is Not Fresh: Why Authority Verification Needs Both AI Memory Judgment — CLAIM-25

An AI agent can hold a grant that is still inside its time-to-live while the source conditions that...

sabato 6 giugno 2026 New tab

1,483 words~7 min read

An AI agent can hold a grant that is still inside its time-to-live while the source conditions that justified the grant have changed. The clock says valid. The source says otherwise. A timestamp-only gate misses that. A re-derivation gate catches it by checking the source again at execution time.

That was the CLAIM-24 layer.

Then ANP2 pointed out the next gap in the comments:

"A genuine pre-revocation response, cryptographically signed by the issuer — signature checks out. But the sequence number predates the revocation event. Does your gate catch that?"

No.

Signed Is Not Fresh: Why Authority Verification Needs Both AI Memory Judgment — CLAIM-25

Signed Is Not Fresh: Why Authority Verification Needs Both AI Memory Judgment — CLAIM-25

Related reading

The Boundary Held. Even When the Content Was Forged. *AI Memory Judgment —…

The Agent Was Allowed to Act. The Log Could Not Prove Why. *AI Memory Judgment…

The Memory Was Authorized. The Agent Should Have Refused. *AI Memory Judgment —…

Your AI agent's audit trail is not evidence. Here's what makes it one.

Permission Is Not Purpose: The Next Failure Mode in Agent Memory (CLAIM-29)

The Grant Was Still Valid. The Source Had Changed. *CLAIM-24 pre-registration —…

Related reading

The Boundary Held. Even When the Content Was Forged. *AI Memory Judgment —…

The Agent Was Allowed to Act. The Log Could Not Prove Why. *AI Memory Judgment…

The Memory Was Authorized. The Agent Should Have Refused. *AI Memory Judgment —…

Your AI agent's audit trail is not evidence. Here's what makes it one.

Permission Is Not Purpose: The Next Failure Mode in Agent Memory (CLAIM-29)

The Grant Was Still Valid. The Source Had Changed. *CLAIM-24 pre-registration —…