Passport – issue revocable, Secure Enclave-signed permissions to AI agents

I built Passport, a free iOS/macOS app that lets a human issue signed, scoped, time-bounded...

venerdì 12 giugno 2026 New tab

335 words~2 min read

I built Passport, a free iOS/macOS app that lets a human issue signed, scoped, time-bounded credentials to AI agents — and revoke them instantly.

The problem: when an agent acts on your behalf (books, buys, emails), the receiving service can't tell whether a human authorized that specific agent to do that specific thing. Today it's raw API keys (no scoping, no audit trail, no kill switch) or nothing.

A Passport credential is a standard ES256 JWT that asserts:

which agent this is (human-readable name)

what it may do (scopes like browse, purchase:general)

Passport – issue revocable, Secure Enclave-signed permissions to AI agents

Passport – issue revocable, Secure Enclave-signed permissions to AI agents

Other newsrooms on this story

Related reading

I Built a Post-Quantum Cryptographic Identity SDK for AI Agents — Here's Why It…

Coming to Apple OSes: A seamless, secure way to import and export passkeys

Per-User OAuth for AI Agents: Why It Matters and What to Look For

auth.md — Open Protocol for Agent Registration

Your AI agents are authorized by vibes. Here's how to fix that.

Passkeys: Enterprise Adaptation and Individual Use Cases

Other newsrooms on this story

Related reading

I Built a Post-Quantum Cryptographic Identity SDK for AI Agents — Here's Why It…

Coming to Apple OSes: A seamless, secure way to import and export passkeys

Per-User OAuth for AI Agents: Why It Matters and What to Look For

auth.md — Open Protocol for Agent Registration

Your AI agents are authorized by vibes. Here's how to fix that.

Passkeys: Enterprise Adaptation and Individual Use Cases