ActPlane: Programmable OS-Level Policy Enforcement for Agent Harnesses
6 hours ago
- #policy-enforcement
- #ai-agents
- #os-kernel
- ActPlane is a policy engine designed for AI agent harnesses that enables programmable OS-level policy enforcement.
- It bridges the gap between natural language policy intent and concrete system actions by enforcing policies in the OS kernel.
- ActPlane uses an information-flow control (IFC) DSL to support cross-event policies and provides semantic feedback and isolation.
- Implemented with eBPF, it improves policy compliance on indirect execution paths that tool-call interception cannot observe.
- Evaluation shows ActPlane enhances policy compliance with overhead ranging from 1.9% to 8.4%.