Regulated Reviewer Flow
Documented for Akmon 2.2.0.
Who this is for
Reviewers, tech leads, compliance engineers, and external auditors validating AI-assisted sessions. This page is the checklist from a received bundle to a verification-ready, signature-backed handoff.
It covers both kinds of session Akmon handles: sessions imported from another agent's OpenTelemetry trace (structural capture) and sessions produced by Akmon's own reference agent (full capture). The verification chain is the same; only the capture level and the availability of replay differ.
What you will have at the end
- A repeatable checklist that ends in an independently verifiable signature.
- A clear decision on whether a bundle is review-ready and safe to distribute.
Prerequisites
- A
.akmonbundle, or a completed Akmon run with a session ID. - The signer's public key (64 hex characters) for any signature you must check, established through your own out-of-band trust process.
- OpenSSL 3.x if you intend to reproduce the proof with plain
openssl.
Steps
1. Verify bundle integrity, signature, and operator identity
For a received bundle, this is the primary check. It validates the hash-linked event chain, the manifest head, the offline Ed25519 signature over that head, and any operator attestation.
akmon bundle verify session.akmon \
--verify-key signer.pub.hex \
--require-signature \
--operator-key operator.pub.hex
"Verified" attaches to the key, not to the self-asserted operator name. A bundle that carries an attestation but is verified without a trusted key reports unverified_no_key, which is informational, not a failure.
An auditor who does not run the full Akmon CLI can use the standalone binary for the same integrity and signature checks:
agef-verify session.akmon --verify-key signer.pub.hex --require-signature
2. Enforce capture level when the use case demands a full recording
akmon bundle verify session.akmon --verify-key signer.pub.hex --require-capture full
This passes only for full-capture sessions from Akmon's own agent. It correctly fails on OTEL imports, which are structural. Decide up front which categories of change require full and gate accordingly.
3. Reproduce the proof offline with openssl (when zero-trust verification is required)
If a counterparty does not trust your tools, hand them the proof artifacts and the exact command.
akmon bundle prove-openssl session.akmon --verify-key signer.pub.hex --out-dir proof
openssl pkeyutl -verify -pubin -inkey proof/pubkey.pem -rawin -in proof/statement.bin -sigfile proof/signature.bin
A valid signature prints Signature Verified Successfully. This needs only OpenSSL 3.x, no Akmon install.
4. For full-capture own-agent sessions, also check the on-disk chain and evidence
When the artifacts live in a local repository rather than arriving as a bundle:
SESSION_ID="<session-uuid>"
akmon audit verify ".akmon/audit/${SESSION_ID}.jsonl"
akmon evidence verify ".akmon/evidence/${SESSION_ID}.json"
akmon verify "${SESSION_ID}"
5. Replay for behavioral divergence (full capture only)
akmon replay "${SESSION_ID}" --format json | tee replay.json
Replay applies to full-capture sessions from Akmon's own agent. OTEL imports are refused for replay because a structural capture does not contain enough to reproduce execution.
6. Export, sign, and (if needed) redact for archive or external review
akmon bundle export "${SESSION_ID}" --output "${SESSION_ID}.akmon"
akmon bundle sign "${SESSION_ID}.akmon" --key signer.pk8
If sensitive content must be removed, create a derivative redacted bundle and re-verify it before distribution:
akmon redact "${SESSION_ID}" \
--output "${SESSION_ID}-sanitized.akmon" \
--object <object-hash> \
--reason "compliance redaction"
Verification
A handoff is review-ready when:
akmon bundle verify ... --require-signatureexits0, and the signature checks against a key you trust out of band,- the capture level matches what the use case requires (
--require-capture fullwhere mandated), - for zero-trust handoff,
openssl pkeyutl -verify ...printsSignature Verified Successfully, - for full-capture sessions, replay is pass or divergences are explicitly accepted,
- any redacted bundle still passes
akmon bundle verifybefore it leaves your control.
Troubleshooting
- If
bundle verifyfails, stop the review and inspect the violation category before proceeding. - If
--require-capture fullfails on an imported session, that is expected. Treat the session as structural evidence, not as a replayable recording. - If
opensslcannot verify the signature, confirm OpenSSL 3.x rather than LibreSSL. - If
replaydiverges, treat it as a change-detection signal and triage expected versus unexpected drift. - If bundle verification fails, do not distribute the bundle externally.