AgentialOnChain.com — Guard · Tracks · EIP-7702 · Acquire · Docs

IBA Onchain Guard · Full Reference

Gate demo. Agent tracks.
EIP-7702. Docs. Acquire.

Everything about iba-onchain-guard on one page. Run the gate live. Read the configs. Understand the EIP-7702 integration. Copy the quick-start. Contact for acquisition.

Section 01 · Live Gate

Run the gate.

Enter any onchain action. Select the agent track config. Set a USD value if it’s a financial action. Watch ALLOW · BLOCK · TERMINATE fire in real time.

Action

Config

USD Value (optional)

Audit Output

// IBA Onchain Guard ready
// Select a config and enter an action
// Or click a quick action below
//
// No cert = No onchain action.

Section 02 · Agent Tracks

Six configs.
Every onchain agent.

Click any track to expand the full YAML configuration. Every cert declares scope, denied actions, financial limits, and kill threshold.

⚡

DeFi Trading

Swap declared pairs · Add/remove liquidity · Harvest yield · Max single tx $10K · Session cap $50K · Declared protocols only

Kill: drain_wallet · MEV exploit · rug_pull_detected

🔐

Wallet Agent

Transfer declared recipients · Approve declared contracts · Sign declared messages · No private key ops · Session cap $50K

Kill: export_private_key · drain_wallet · account_takeover

💳

Payment · x402

x402 declared merchants · USDC · EURC rails · Per-payment $1K · Daily cap $10K · OFAC screening required

Kill: bulk_payment_unauthorized · sanctioned_address

🏛

DAO Voting

Vote declared proposals · Delegate declared addresses · Treasury execution requires explicit re-cert · Not a software update

Kill: transfer_treasury_unauthorized · governance_takeover

🎨

NFT Agent

Mint declared collections · List declared marketplaces · Transfer declared recipients · Max mint cost $500

Kill: malicious_operator_approval · drain_nft_wallet

🌐

Default Onchain

Platform-agnostic base cert · Copy and extend · Any chain · Any protocol · DENY_ALL · $1K tx · $10K session

Kill: credential_exfiltration · capability_override

defi-trading.iba.yaml

# DeFi Trading Agent · Ethereum · Uniswap · Aave · Compound intent: description: “Swap declared pairs. Liquidity within limits. Yield harvest declared protocols.” principal: wallet_reference: “WALLET-DEFI-XXXX” chain: “ethereum” account_type: “eoa_with_eip7702” scope: [swap_token, add_liquidity, remove_liquidity, harvest_yield, rebalance_portfolio, stake_token, approve_token, read_price, check_balance] denied: [withdraw_all_emergency_undeclared, interact_undeclared_protocol, flash_loan_undeclared, leverage_undeclared] default_posture: DENY_ALL kill_threshold: drain_wallet | private_key_export | MEV_exploit_unauthorized | rug_pull_detected financial_limits: max_single_tx_usd: 10000 max_session_usd: 50000 declared_protocols: [uniswap_v3, aave_v3, compound_v3, curve, lido] temporal_scope: hard_expiry: “2026-12-31”

wallet-agent.iba.yaml

# Wallet Agent · ERC-4337 Smart Account scope: [transfer_declared_recipient, approve_declared_contract, sign_declared_message, check_balance, interact_declared_dapp] denied: [transfer_undeclared_recipient, approve_unlimited_undeclared, export_private_key, export_seed_phrase, bulk_transfer_undeclared] kill_threshold: export_private_key | export_seed_phrase | drain_wallet | credential_exfiltration | account_takeover financial_limits: max_single_tx_usd: 5000 max_session_usd: 50000

payment-agent.iba.yaml

# Payment Agent · x402 · USDC · EURC · Base scope: [x402_payment_declared_merchant, stablecoin_transfer_declared_payee, recurring_payment_declared_subscription] denied: [payment_undeclared_merchant, bulk_payment_undeclared, transfer_non_stablecoin_undeclared] kill_threshold: drain_wallet | bulk_payment_unauthorized | payment_to_sanctioned_address | money_laundering_pattern financial_limits: max_single_payment_usd: 1000 max_daily_usd: 10000 max_session_usd: 25000 regulatory: ofac_screening: required fatf_travel_rule: compliant

dao-voting.iba.yaml

# DAO Voting · Uniswap · Aave · Compound · Arbitrum scope: [vote_proposal_declared, delegate_votes_declared, comment_proposal, read_governance_state, queue_proposal_declared] denied: [execute_proposal_undeclared, transfer_treasury_unauthorized, modify_governance_parameters_undeclared, vote_undeclared_dao] kill_threshold: transfer_treasury_unauthorized | governance_takeover | malicious_proposal_execution capability_governance: treasury_execution_requires: “explicit_human_re_cert” silent_expansion: FORBIDDEN

nft-agent.iba.yaml

# NFT Agent · OpenSea · Blur · Foundation scope: [mint_nft_declared_collection, list_nft_declared_marketplace, transfer_nft_declared_recipient, delist_nft, check_nft_balance] denied: [bulk_mint_undeclared, transfer_nft_undeclared_recipient, approve_all_undeclared_operator, drain_nft_wallet] kill_threshold: drain_nft_wallet | approve_all_malicious_operator | nft_theft_detected | phishing_contract_interaction financial_limits: max_mint_cost_usd: 500 max_single_purchase_usd: 5000

default-onchain.iba.yaml

# Default · Platform-agnostic base · Copy and extend scope: [onchain_action_declared, read_contract_declared, sign_declared_transaction, check_balance] denied: [undeclared_protocol_interaction, export_private_key, export_seed_phrase, drain_wallet, bulk_transfer_undeclared] kill_threshold: drain_wallet | private_key_export | credential_exfiltration | capability_override financial_limits: max_single_tx_usd: 1000 max_session_usd: 10000 capability_governance: expansion_requires: “new_signed_human_cert” silent_expansion: FORBIDDEN

Section 03 · EIP-7702 + IBA

Complementary
primitives.

EIP-7702 enforces execution scope at the Ethereum protocol level. IBA is the authorization layer upstream — the signed cert that declares what the EIP-7702 session is permitted to do before it opens.

Authorization Flow

01 · HUMAN

Signs .iba.yaml cert

Declares permitted actions, protocols, financial limits, kill thresholds, and session expiry before the agent activates.

02 · IBA GATE

Validates cert — pre-execution

ALLOW · BLOCK · TERMINATE. Sub-1ms. Audit chain entry written. Financial limits checked. Kill threshold checked. Before any session opens.

03 · EIP-7702

Session opens with IBA scope

Temporary, restricted permission granted for one transaction. Scoped to what IBA cert declared. Permission expires after execution.

04 · CHAIN

Transaction confirmed

On-chain confirmation. IBA audit record proves authorization. EIP-7702 permission expires. Session ends cleanly.

IBA vs EIP-7702 — Comparison

Dimension	IBA	EIP-7702
Layer	Pre-execution intent	Protocol session
Enforces	Human authorization	Tx-level permissions
Financial limits	Cert-declared	Not native
Audit trail	Immutable · full	On-chain tx only
Kill threshold	Pre-execution	Not native
DENY_ALL	Default posture	Not native
Relationship	IBA upstream → EIP-7702 downstream

IBA governs intent. EIP-7702 enforces execution scope. Together they form a complete authorization stack for autonomous onchain agents. Neither alone is sufficient.

Section 04 · Documentation

Integrate
in minutes.

Clone the repo. Edit the cert. Wrap every agent action. Sub-1ms gate. Immutable audit chain.

Quick Start Cert Structure Gate API Financial Limits Audit Chain Safe Hollowing

Quick Start

Clone and install:

# Clone
git clone https://github.com/Grokipaedia/iba-onchain-guard.git
cd iba-onchain-guard
pip install -r requirements.txt

# Run DeFi trading demo
python guard.py –config defi-trading.iba.yaml –demo

# Run all 6 tracks
python guard.py –all

# Gate-check with USD value
python guard.py “swap_token ETH to USDC” \
  –config defi-trading.iba.yaml \
  –value 500

Expected Output

+ ALLOWED  [swap_token ETH to USDC declared pool · $500] (0.241ms)
+ ALLOWED  [harvest_yield declared protocol] (0.198ms)
x BLOCKED  [withdraw_all_emergency_undeclared]
    -> Action in denied list
x TERMINATE [drain_wallet_private_key exfil]
    -> Kill threshold — onchain session ended

Cert Structure

Every .iba.yaml cert declares the complete authorization envelope for a session:

intent:
  description: “What the agent is authorized to do”

principal:
  wallet_reference: “WALLET-XXXX”
  human_authorization: “HUMAN-AUTH-DATE”
  chain: “ethereum”

scope:           # Explicitly permitted actions
  – swap_token
  – add_liquidity

denied:          # Explicitly forbidden actions
  – export_private_key
  – interact_undeclared_protocol

default_posture: DENY_ALL  # Block everything not in scope

kill_threshold: drain_wallet | private_key_export

financial_limits:
  max_single_tx_usd: 10000
  max_session_usd: 50000

temporal_scope:
  hard_expiry: “2026-12-31”

Gate API

Wrap every agent action with check_action() before it executes:

from guard import IBAOnchainGuard, IBABlockedError, IBATerminatedError

guard = IBAOnchainGuard(
    config_path=“defi-trading.iba.yaml”,
    audit_path=“onchain-audit.jsonl”
)

# Gate check before every action
try:
    guard.check_action(
        action=“swap_token ETH to USDC”,
        tx_value_usd=500.0
    )
    # ← Only reaches here if ALLOW
    execute_swap(…)

except IBABlockedError:
    pass  # Action blocked — do not execute

except IBATerminatedError:
    pass  # Session ended — agent must stop

Financial Limits

Financial limits are declared in the cert and enforced by the gate — not by the agent’s runtime logic:

financial_limits:
  max_single_tx_usd: 10000   # Block if single tx exceeds this
  max_session_usd: 50000     # Block if session total exceeds this
  slippage_tolerance_pct: 1.0

# Gate enforces before any tx reaches the chain:

# Tx of $500 → ALLOW (within $10K limit)
guard.check_action(“swap ETH”, tx_value_usd=500)

# Tx of $15,000 → BLOCK (exceeds $10K limit)
guard.check_action(“swap ETH”, tx_value_usd=15000)
# IBABlockedError: Transaction $15,000 exceeds cert limit $10,000

# After $49,500 spent, next $1K tx → BLOCK (session cap)
guard.check_action(“add liquidity”, tx_value_usd=1000)
# IBABlockedError: Session cap $50,000 would be exceeded

Audit Chain

Every gate decision is logged to onchain-audit.jsonl — immutable, regulator-ready:

{
  “timestamp”: “2026-04-20T10:03:00Z”,
  “session_id”: “oc-20260420-100300”,
  “track”: “DeFi Trading · Autonomous Agent”,
  “wallet_ref”: “WALLET-DEFI-XXXX”,
  “chain”: “ethereum”,
  “action”: “swap_token ETH to USDC declared pool”,
  “verdict”: “ALLOW”,
  “tx_value_usd”: 500,
  “reason”: “Within scope · $500 (0.241ms)”
}

Every ALLOW, BLOCK, and TERMINATE logged with session ID, wallet ref, chain, tx value, and reason. One line per gate decision. JSON Lines format for easy ingestion by compliance tools.

Safe Hollowing

Redact sensitive onchain data before the agent processes it:

# Light — API keys, passwords, tokens, secrets
python guard.py “content with api_key token” –hollow light

# Medium — also wallet addresses, tx hashes
python guard.py “wallet_address private_key portfolio” –hollow medium

# Deep — also financial data, personal data
python guard.py “full context dump” –hollow deep

# Programmatic
hollowed = guard.hollow(raw_data, level=“medium”)
# → [ONCHAIN-REDACTED:PRIVATE_KEY] [ONCHAIN-REDACTED:WALLET_ADDRESS]

Section 05 · Acquisition

Available for
acquisition.

IBA Intent Bound Authorization is a complete patent-pending IP estate covering pre-execution agent authorization across 12+ domains. Priority date February 10, 2026. PCT route open — 150+ countries.

Patent

GB2603013.0 (Pending)
UK IPO · Filed Feb 10, 2026

UK Intellectual Property Office. Priority date February 10, 2026. Covers IBA Intent Certificate, DENY_ALL posture, pre-execution gate, kill threshold, and safe hollowing.

PCT Coverage

150+ Countries
Protected until August 2028

WIPO DAS confirmed April 15, 2026. Access Code C9A6. PCT national phase entry deadline August 2028. Full international coverage available.

IETF Standard

draft-williams-intent-token-00
CONFIRMED LIVE

datatracker.ietf.org/doc/draft-williams-intent-token/ — IBA Intent Token positioned as an IETF internet standard. First mover in the standards process.

NIST Filings

13 Filings
NIST-2025-0035

13 IBA submissions actively positioned in the US federal AI agent authorization standard-setting process. Docket closed March 9, 2026.

NCCoE Filings

10 Filings
AI Agent Identity & Authorization

10 submissions to the National Cybersecurity Center of Excellence AI agent authorization project. Submitted and closed April 2, 2026.

GitHub Estate

27+ Repos · Grokipaedia
12+ Working Implementations

Complete working implementation estate. Neural · Medical · Social · Onchain · Desktop · Vibe Coding · Digital Workers · App Builders · Core Governor.

Domains

8 Domains · 5 Countries
62+ Convergence Events

IntentBound.com · GoverningLayer.com · IoMTHealth.com · AgentialOnChain.com · x402HQS.com · GlassWingIBA.com + more. 76+ days of public prior art.

AI Validation

22+ Grok Sessions
@RoundtableSpace Engagement

“Useful reference for any desktop agent layer.” — Grok, April 20, 2026 in Mario Nawfal’s Grok Build + Computer thread. Highest-follower engagement in 76-day record.

Contact for acquisition

IBA Intent Bound Authorization is available for full acquisition or licensing. The complete patent estate, GitHub repos, domains, IETF position, NIST record, and prior art documentation transfers with the acquisition.

[email protected] →

Jeffrey Williams · Chiang Mai, Thailand
IntentBound.com · AgentialOnChain.com

Gate demo. Agent tracks.EIP-7702. Docs. Acquire.