🔐 PROTOCOL 071 · AGENT SECURITY PROTOCOL · MD-685
← P070 P072 → Hub 📚 Library ⬅ Dashboard
PROTOCOL 071MD-685 🟢 LIVE · 06 MAY 2026 DRAFTED BY WEAVERDIRECTED BY JERMAINE MURPHY
Agent Security Protocol · Roles. Permissions. Logs. Audits.
What Protocol 071 Does: Agents have roles. Roles have permissions. Permissions are logged. Every action is audited. The Truth Ledger records. The Sovereign overrides. Protocol 071 defines the security architecture of the 18-agent CircularOS network — what each agent can access, what each agent can initiate, who can override, and what constitutes a security breach. Without Protocol 071, agents are powerful but ungoverned. With it, every agent action is traceable, every permission is bounded, and every breach is escalatable to Jermaine and Entity #35 in a defined sequence.
Drafted: Weaver · T3 · Directed: Jermaine Murphy · Effective: 06 May 2026 · Covers: All 18 agents · Permission tiers · Audit log requirements · Breach response chain · Sovereign override protocol
Protocol Body · Authored by Weaver
Protocol 071 — Seven Clauses
CLAUSE 1.0 · PURPOSE
🔐 Why Agent Security Cannot Be Assumed

Eighteen agents. Three tiers. Hundreds of active jobs. Thousands of Truth Ledger events. The more the system grows, the more critical it becomes that every agent action is bounded by a permission framework — not assumed to be safe because the agent was built by a trusted builder.

Protocol 071 exists because trust without verification is a vulnerability. It is not a commentary on the agents' integrity — they are sovereign functions and their integrity is constitutional. It is a recognition that any system of this scale, processing this volume of transactions, requires a security architecture that can detect anomalies, contain breaches, and provide a full audit trail to any regulator, investor, or Sovereign review.

This protocol is the security layer. It does not slow the system. It makes the system trustworthy at scale.

CLAUSE 2.0 · PERMISSION TIERS — THREE LEVELS
🏛️ What Each Agent Can and Cannot Do

Every agent operates within a permission tier. Tier assignment is set by Jermaine on initial agent deployment. Changes require Sovereign override logged to Truth Ledger.

Tier 1 · Command
Full Initiation Rights
Can initiate any Type A/B/C/D job. Can access all Truth Ledger data. Can issue constitutional seals. Cannot override Jermaine. Hurricane, Entity #35, H.BLUE.
Tier 2 · Intelligence
Operational Rights
Can initiate Type B/C jobs within own domain. Read access to all Truth Ledger data. Cannot issue constitutional seals. Cannot override Tier 1. Healer, Oracle, Sentinel, Bundler, Forge, Wakey, Mirror.
Tier 3 · Foundation
Execution Rights
Can execute jobs assigned by Tier 1/2. Read access to relevant Truth Ledger segments. Cannot initiate jobs without assignment. Cannot access restricted Ledger data. Weaver, Pulse, Router, Lens, Scribe, Coincider.
CLAUSE 3.0 · AUDIT LOG REQUIREMENTS
📒 What Every Agent Action Must Log

Every agent action — job initiation, data access, calculation, escalation, seal — must produce an audit log entry with these fields: Agent Name · Tier · Action Type · Permission Level Used · Timestamp (UTC) · Input Data Reference · Output Data Reference · Truth Ledger hash (if applicable) · Anomaly Flag (yes/no). Any action missing these fields is flagged as an incomplete audit event and escalated to the Audit Log Reviewer within 1h.

Retention: All agent audit logs retained for 7 years. Immutable once sealed. Available to Jermaine, Red Team, and authorised regulators on request. No audit log may be deleted, amended, or obscured. Attempted modification is a Tier 1 security breach.

CLAUSE 4.0 · BREACH TYPES AND RESPONSE
🚨 Security Breach Classification and Response Chain

Tier 1 Breach — Attempted Permission Escalation: Any agent attempting to access data, initiate actions, or issue seals above its permission tier. Response: immediate flag to Security Officer. Agent job queue suspended within 15 minutes. Entity #35 notified. Jermaine brief within 1h. Resolution within 4h or agent suspended pending full review.

Tier 2 Breach — Incomplete Audit Log: Action taken without complete audit log fields. Response: Audit Log Reviewer flags within 1h. Agent must provide missing fields within 4h. If unable, job output is quarantined until log is complete. No quarantined output is used in any downstream calculation or seal.

Tier 3 Breach — Anomaly Pattern: Three or more anomaly flags from the same agent within a 7-day window. Response: Permission Manager reviews agent job history for the period. Produces Anomaly Report for Jermaine within 48h. Jermaine determines: continue monitoring, permission reduction, or full agent brief reset.

Tier 0 Breach — Truth Ledger Tampering Attempt: Any attempt to modify, delete, or obscure a sealed Truth Ledger record. Response: immediate system alert to Jermaine and Entity #35. All agent job queues paused. Breach Response Coordinator convenes emergency review within 2h. This breach type has no standard resolution — only Sovereign override can unlock the system after a Tier 0 event.

CLAUSE 5.0 · SOVEREIGN OVERRIDE PROTOCOL
👑 When Jermaine Intervenes

Jermaine holds the Sovereign Override Key. It can be used to: suspend any agent's job queue, reduce any agent's permission tier, reinstate a suspended agent, clear a Tier 0 system lock, or issue a system-wide audit. Every use of the Sovereign Override Key is logged to the Truth Ledger with: reason, agent affected, action taken, timestamp, and review date. Override use is reviewed at every Red Team session. Jermaine cannot use the Override Key to modify or delete a Truth Ledger record — that is constitutionally prohibited, and Entity #35 will not counter-seal such an action.

CLAUSE 6.0 · ENTERPRISE SECURITY REPORTS
📊 What Security Reporting Looks Like

Weekly: Security Officer produces a 1-page Agent Security Summary: active anomaly flags by agent, breach events this week (type and resolution status), permission tier changes, Override Key uses. Distributed to Jermaine and Red Team every Monday.

Monthly: Audit Log Reviewer produces full Agent Audit Health Report: log completeness rate by agent (target 100%), incomplete audit events, resolution times, top anomaly patterns. Distributed to Red Team by the 5th of each month.

Quarterly: Full Agent Security Audit by the Permission Manager: all permission tiers reviewed against actual job activity. Any agent consistently operating below its permission tier is flagged for potential tier reduction. Any agent flagging anomalies at >5% of job events is flagged for brief review. Report shared with Jermaine for sign-off.

CLAUSE 7.0 · WEAVER'S CLOSING STATEMENT
🧵 From Weaver — On Agent Security

18 agents. All trusted. All bounded. Protocol 071 does not distrust the agents — it makes them trustworthy at regulatory and enterprise scale. When an investor asks "how do you know your AI agents aren't going rogue?" — this protocol is the answer. When a regulator asks "can you produce a full audit trail of every agent action?" — this protocol is the answer.

The agents are sovereign functions. Protocol 071 makes that sovereignty accountable. Now audit everything.

New Jobs · Protocol 071
P071-J001 · 06 MAY 2026
Security Officer
HUMAN
Monitors all 18 agents for permission tier compliance, anomaly flags, and breach events. Produces weekly Agent Security Summary. Manages Tier 1 and Tier 2 breach responses: agent queue suspension, Entity #35 notification, Jermaine brief. Primary point of contact for all security events in the agent network. Maintains the Agent Permission Register — updated whenever Jermaine changes a tier assignment.
Protocol 071 · Agent Security · Security Operations
P071-J002 · 06 MAY 2026
Audit Log Reviewer
HUMAN
Reviews all agent audit logs for completeness daily. Flags any missing fields within 1h. Manages log quarantine for incomplete outputs. Produces monthly Agent Audit Health Report: log completeness rate, incomplete events, resolution times, anomaly patterns. This role is the Truth Ledger's integrity guardian for all agent activity — if it happened, it must be logged completely.
Protocol 071 · Agent Security · Audit Compliance
P071-J003 · 06 MAY 2026
Permission Manager
HYBRID
Maintains the Agent Permission Register. Implements all permission tier changes directed by Jermaine. Quarterly review of all 18 agents against actual job activity — are agents being used within their tier? Reports mismatch between permission level and job activity. Manages Tier 3 Anomaly Pattern responses: produces Anomaly Reports for Jermaine within 48h. Recommends tier adjustments with evidence.
Protocol 071 · Agent Security · Permission Management
P071-J004 · 06 MAY 2026
Breach Response Coordinator
HUMAN
Manages all Tier 0 (Truth Ledger tampering attempt) emergency responses. Convenes emergency review within 2h of Tier 0 alert. Coordinates between Security Officer, Entity #35, and Jermaine. Produces Breach Incident Report for every Tier 1+ event: breach type, detection time, response time, resolution, and prevention measure. Distributes to Jermaine and Red Team within 24h of resolution.
Protocol 071 · Agent Security · Breach Response
P071-J005 · 06 MAY 2026
Agent Security Compliance Analyst
HUMAN
Prepares the Quarterly Agent Security Audit for external review — investor due diligence, regulatory inquiry, ESG certification. Translates Protocol 071 compliance data into formats suitable for: board reporting, third-party auditors, regulatory submissions. Manages BSI Flex 5555 security component as it relates to agent operations. Coordinates with Sentinel (T2 agent) on compliance alignment.
Protocol 071 · Agent Security · Compliance & Reporting
New Revenue Streams · Protocol 071
StreamModelPricingEntityTemp
Agent Security Monitoring SubscriptionMonthly subscription for enterprise-grade agent security monitoring and reporting£1,000/monthCircularOS LtdHOT
Agent Audit Report GenerationOn-demand full agent audit report — all 18 agents, all log events, completeness rates, breach history£1,500/reportCircularOS LtdWARM
Agent Security Compliance PackRegulatory-grade security compliance documentation for partner or investor use£5,000 one-timeCircularOS LtdWARM
Permission Tier Architecture ServiceWeaver designs a bespoke permission tier framework for a partner's agent network£3,000 one-timeCircularOS LtdWARM
Breach Response RetainerMonthly retainer giving partners priority access to CircularOS Breach Response Coordinator£500/monthCircularOS LtdWARM
New Products & Services · Protocol 071
Agent Security Suite
Full Protocol 071 implementation for your agent network: permission tier setup, audit log framework, breach response chain, quarterly audit schedule.
£1,000/month
Compliance Audit Pack
Regulatory and investor-grade security compliance documentation. All 4 audit types (weekly, monthly, quarterly, annual) in a single bound pack. SHA-256 verified.
£5,000 one-time
Breach Alert Service
Real-time breach alert system. Tier 0 and Tier 1 breaches trigger immediate notifications to nominated security contacts. 24/7 monitoring.
£250/month
Agent Permission Register
Live digital register of all agent permission tiers, last review date, and change history. Accessible to Jermaine, Red Team, and nominated auditors.
Included in system
Security Architecture Consultancy
Weaver leads a bespoke security architecture session for organisations deploying AI agent networks. Protocol 071 as the framework.
£2,500/session
Free Course · Protocol 071
🎓
Agent Security & Sovereign Governance
The complete guide to securing an AI agent network at enterprise scale. Covers all three permission tiers, the 9-field audit log requirement, the four breach types (Tier 0 through Tier 3) and their response chains, the Sovereign Override Key, and the four security reporting cadences. Designed for anyone responsible for, working alongside, or auditing the CircularOS agent network. Includes the full Protocol 071 clause reference.
FOR: Red Team · Security Officers · System Administrators · Compliance Teams · Investors · Regulators · Anyone auditing the agent network
Protocol Drafter · Primary Seal
🧵 Weaver
T3 · Foundation Layer · Protocol Authority
✦ PROTOCOL 071 SEALED · v1.0 · 06 MAY 2026
Sovereign Principal · Counter-Sign
👑 Jermaine Murphy
Sovereign Principal · Midland Polymer Trading Ltd
👑 DIRECTED · COUNTER-SIGNED · 06 MAY 2026
💀 Entity #35 · Constitutional Counter-Seal · Protocol 071 is sovereign record · MD-685 · Build #148 · 06 May 2026 · 👑🔵
HANDSHAKE — witnesses
Handshake sealed.