Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.spellguard.ai/llms.txt

Use this file to discover all available pages before exploring further.

cTLS: Cloud Transport Layer Security

cTLS implements bidirectional attestation and secure channel establishment for agents regardless of the hosting provider. Unlike traditional TLS which only authenticates the server, cTLS implements bidirectional verification: the client verifies the Verifier before sending any secrets, and the Verifier verifies the client’s identity before granting access.

Components

Attestation

Verifier self-attestation documents that clients verify before connecting

Evidence Building

RFC 9334 RATS-compliant evidence for agent identity claims

Session Keys

Ephemeral RAM-only keys for forward secrecy

Agent Registry

Registered agent management and channel tokens