Agent Name Service (ANS): A Proof-of-Concept Trust Layer for Secure AI Agent Discovery, Identity, and Governance in Kubernetes
Akshay Mittal, Elyson De La Cruz
TL;DR
This paper introduces a proof-of-concept trust layer called Agent Name Service (ANS) for secure AI agent discovery, identity, and governance in Kubernetes, using cryptographic methods and policy enforcement.
Contribution
It presents an implementation-oriented proof of concept for ANS, integrating DIDs, VCs, and policy-as-code in Kubernetes for secure AI agent ecosystems.
Findings
Sub-10ms response times in demo service paths
Full success in scripted deployment scenarios
Proof-of-concept evidence for secure multi-agent systems
Abstract
Autonomous AI agent ecosystems require stronger mechanisms for secure discovery, identity verification, capability attestation, and policy governance. Current deployments frequently lack (1) uniform agent discovery, (2) cryptographic agent authentication, (3) capability proofs that protect secrets, and (4) enforceable policy controls. This paper presents an implementation-oriented proof of concept for the Agent Name Service (ANS), a DNS-inspired trust layer for AI agent discovery and interoperability in Kubernetes, grounded in the ANS protocol specification~\cite{huang2025ans}. The implementation uses Decentralized Identifiers (DIDs), Verifiable Credentials (VCs), policy-as-code enforcement with Open Policy Agent (OPA), and Kubernetes-native integration patterns (CRDs, admission controls, service mesh integration). In a demo research environment (3-node cluster, 50-agent workflow…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.