What is a deny-by-default AI governance framework?

A deny-by-default AI governance framework means all agent actions are blocked unless explicitly authorized by a policy decision point. This is the opposite of the default behavior in most agent frameworks, where agents can take any action they are technically capable of.

Guide

What Is AI Governance? (And Why It Matters for Agentic Systems)

AI governance is the set of policies, controls, and audit mechanisms that determine what AI systems are and aren't allowed to do. As AI agents gain the ability to take autonomous actions, AI governance becomes critical infrastructure, not a compliance checkbox.

The traditional definition of AI governance

Most existing AI governance work describes the governance of AI development:

Policy frameworks such as the NIST AI RMF, the EU AI Act, and the OECD principles.
Risk assessment and model documentation.
Ethics review and bias testing.

This matters, but it governs how models are built and approved. It says little about what an autonomous agent is allowed to do at runtime.

Why agentic AI needs a new kind of governance

Traditional frameworks assume a human reviews AI output before any action is taken. Agentic AI removes that step: agents call APIs, write files, run code, and send messages on their own. That requires runtime governance, decided per action, not just a pre-deployment review.

The core components of AI agent governance

Policy Decision Point (PDP): what actions are allowed?

A single authority evaluates every proposed action against policy before it runs, defaulting to deny.

Boundary enforcement: can the agent stay within scope?

Each agent is confined to an explicit visibility and write scope; anything outside it is refused.

Audit trail: what did the agent actually do?

An append-only, tamper-evident log records every allowed and denied action.

Fail-closed behavior: what happens when governance is unavailable?

If the governance layer cannot run, the agents stop. The system fails safe.

How Project Starfish implements AI governance

Project Starfish is a deny-by-default implementation of exactly these components: an isolated PDP, a hash-chained audit trail, a boundary engine and Token Governor, and a fail-closed boot. It is the runtime control layer for agentic AI security.

AI governance frameworks: open source vs. commercial

Commercial AI governance platforms typically run as a hosted service and keep your audit data on their infrastructure. Open-source AI governance, like Project Starfish, is self-hosted, Apache-2.0, and has no vendor dependency. For security-critical use cases, self-hosted control is often a requirement rather than a preference.

Explore the framework - Apache-2.0, local-first

← Project Starfish home