Biometric mandate authorization, processor-agnostic validation, and cross-processor cascade revocation — with cryptographic proof. The cybersecurity layer between AI agents and your money.
Free in test mode. Enterprise licenses for production.
This will trigger your device's biometric prompt
Three steps between an AI agent wanting to spend and a processor authorizing the transaction. Every step produces cryptographic proof.
Your AI agent calls the Attesso SDK to request spending authorization. Constraints like amount, merchant categories, and expiry are specified upfront.
const request = await attesso.mandateRequests.create({
agentId: "agent_01J8KM",
amount: 250000, // $2,500 in cents
constraints: {
categories: ["hotels", "flights"],
maxPerTransaction: 80000,
expiresIn: "7d"
}
});The user receives a mandate request and authorizes it using their device biometrics (Touch ID, Face ID, Windows Hello). This creates a non-repudiation proof — cryptographic evidence that the human approved this specific authorization.
// User's device — WebAuthn ceremony
const credential = await navigator.credentials.create({
publicKey: {
challenge: mandate.challenge,
rp: { name: "Attesso" },
user: { id: userId, name: email },
authenticatorSelection: {
userVerification: "required" // biometric
}
}
});Any payment processor can validate the mandate via a simple API call before processing a transaction. One mandate can authorize spending across multiple processors simultaneously.
// Processor-side validation
const validation = await fetch(
"https://api.attesso.com/v1/mandates/{id}/validate",
{
method: "POST",
headers: {
"X-Processor-Key": processorKey,
"X-HMAC-Signature": hmac
},
body: JSON.stringify({
amount: 45000,
merchantCategory: "hotels"
})
}
);
// { valid: true, remainingAmount: 205000 }Every authorization decision is cryptographically verifiable. Every revocation cascades atomically. No trust required between parties.
Revoke a mandate and all derived instruments across every processor are destroyed atomically. SHA-256 hash chain provides cryptographic proof of the revocation cascade.
Works with any card issuer, payment acquirer, or financial processor. One authorization layer, multiple processing rails.
Every authorization, validation, and revocation generates a cryptographic proof. Full audit trail with non-repudiation for four-party liability resolution.
Hierarchical mandates with monotonic constraint narrowing. Delegated mandates can only have equal or tighter constraints than their parent.
Clear liability chain between user, agent, platform, and processor. When disputes arise, the cryptographic audit trail resolves who authorized what.
Drop-in tools for Vercel AI SDK, LangChain, and MCP. Your agents can request mandates using the same tool-calling patterns they already use.
The Attesso SDK integrates directly with the Vercel AI SDK. Add mandate authorization as a tool your agent can call — no separate payment integration required.
import { Attesso } from "@attesso/sdk";
import { generateText } from "ai";
const attesso = new Attesso({
apiKey: process.env.ATTESSO_API_KEY,
});
const result = await generateText({
model: openai("gpt-4o"),
tools: {
...attesso.aiTools(),
// your other tools
},
prompt: "Book the cheapest flight to Tokyo",
});Your AI agents are about to start spending real money. Make sure every dollar is authorized by a human, verified by cryptography, and revocable in milliseconds.