AFFIXIO
AI Agents and MCP FAQ
AI Agents and MCP FAQ
FAQ for security and engineering teams on KYA gates, MCP verification connector, agentic payments, and shadow AI authorisation with Merkle audit.
At a glance
- Topic
- AI Agents and MCP FAQ
- Format
- Buyer FAQ
- Updated
- 12 July 2026
- Parent
- /faq
- Evidence
- Sandbox reproducible
- Questions
- 8
FAQ for security and engineering teams on KYA gates, MCP verification connector, agentic payments, and shadow AI authorisation.
More questions: full FAQ · glossary
Frequently asked questions
What is Know Your Agent (KYA)?
Verifying an AI agent's scope and policy eligibility before it executes a sensitive action, with signed evidence.
How is KYA different from API keys?
API keys authenticate the client. KYA authorises a specific action in context.
What is the AffixIO MCP connector?
Proof by AffixIO at affix-io.com/mcp exposes prove, verify, Merkle, and QR tools over OAuth 2.0 PKCE.
Can agents initiate payments?
Yes, with agentic payment gates that return signed allow or deny before funds move.
How does this help shadow AI?
Authorised paths with proof beat block-only policies that push use to unmanaged devices.
What is OWASP Agentic Top 10?
A risk framework for autonomous AI systems covering tool misuse and excessive agency.
OAuth for MCP?
Proof by AffixIO MCP uses OAuth 2.0 PKCE for client authorisation.
Human in the loop?
KYA gates can require human approval predicates in circuit policy.