Cryptographic identity for autonomous actors.
Issues, verifies, and revokes the cryptographic identity every autonomous actor holds — bound to principal, runtime, and lineage from the moment of instantiation.
What it is
Sigil is constitutive: there is no autonomous actor without one. Every agent, robot, drone, and autonomous service receives a cryptographic identity at the moment it comes into being. The Sigil binds the actor to the human or system that authorized its existence, the runtime hosting it, and the lineage of spawning actors back to a human root. For embodied actors, the Sigil includes hardware attestation rooted in TPM, Secure Enclave, or vendor roots of trust — a verifier can determine, cryptographically, that a request originated from a specific physical robot, running a specific firmware, in a specific configuration.
The problem
Autonomous actors today have no identity. They are merely the process holding an API key. There is no answer to who an actor is, who authorized its existence, what its lineage is, or whether it has been revoked. Without identity, every authorization, audit, and revocation operation is impossible.
Capabilities
Sigil structure
sigil := {
pubkey: Ed25519PublicKey,
principal: Sigil | HumanIdentityRef,
runtime: SigilRef,
lineage: [SigilRef, ...] // chain back to root principal
bundle: ContentHash, // the bundle this actor was instantiated from
issued_at: Timestamp,
not_after: Timestamp,
attestation: HardwareAttestation? // for embodied actors
revocation_endpoint: URL,
}Open and commercial
Sigil is delivered through two surfaces: an open-source reference in Lattice Runtime (MPL 2.0), and a managed, enterprise-grade delivery in Visca Cloud. Features in the open never move behind the paywall.
Open
MPL 2.0 · self-hostable · foundation-track governance
Commercial
Hosted SaaS · self-managed · hybrid · air-gapped
TLM · same pillar
Zero-trust access for autonomous actors.
Brokers every access from an autonomous actor to a consequential resource — identity-bound, scoped, time-limited, audited. Long-lived credentials disappear.
The autonomic fabric.
Discovery, mTLS, and routing across every autonomous actor and every resource an actor reaches — rooted in Sigil identities, not hardcoded URLs.
Across the platform
The system of record.
A queryable knowledge graph of every autonomous actor in the estate — and the append-only, cryptographically chained audit of every action taken.
Data model as code.
The declarative primitive for your data model. Agents write it as source; humans edit it as a spreadsheet. Plan, apply, drift-detect.
Reproducible bundles for autonomous actors.
Immutable, content-addressed, Sigil-signed bundles. Everything an autonomous actor needs to execute, packaged as a single attestable artifact.
Autonomy-aware runtime.
Runs autonomous workloads across cloud, edge, on-device, and on-robot — with first-class awareness of tokens, models, memory, and embodiment.
The autonomy economy is shipping
Build, run, and trust autonomous systems on an integrated platform — software, embodied, and hybrid. Open foundation. Enterprise cloud. No license rug-pulls, ever.