jacs 0.9.14

JACS JSON AI Communication Standard
Documentation

JACS: JSON Agent Communication Standard

Cryptographic identity, signing, and verification for AI agents.

Documentation | Quick Start | API Reference

cargo install jacs-cli

What it does

Capability Description
Agent Identity Generate a cryptographic keypair. Post-quantum (ML-DSA-87), Ed25519, or RSA-PSS.
Data Provenance Sign any JSON document or file with tamper-evident signatures.
Agent Trust Verify identities, manage trust stores, enforce trust policies across agents.

Quick start (Rust)

use jacs::simple::{load, sign_message, verify};

load(None)?;

let signed = sign_message(&serde_json::json!({"action": "approve"}))?;

let result = verify(&signed.raw)?;
assert!(result.valid);

CLI

jacs quickstart --name my-agent --domain example.com
jacs document create -f mydata.json
jacs verify signed-document.json
jacs mcp                # start MCP server (stdio only)

Security

  • Password entropy validation for key encryption
  • Private key zeroization on drop
  • Algorithm identification embedded in signatures with downgrade prevention
  • DNSSEC-validated identity verification
  • MCP server uses stdio only — no network exposure
  • 260+ automated tests covering cryptographic operations and attack scenarios

Report vulnerabilities to security@hai.ai.

Links

Version: 0.9.7 | HAI.AI