{"slug": "approval-is-not-enough-building-a-sub-microsecond-runtime-governance-gate-in", "title": "Approval Is Not Enough: Building a Sub‑Microsecond Runtime Governance Gate in Rust", "summary": "A developer built Nanogate, a software-only gate in Rust that re-tests admissibility before every AI agent action in approximately 530 nanoseconds. The tool addresses the failure of point-in-time approval systems by implementing continuous admissibility, checking identity, policy version, and evidence freshness at runtime. Nanogate achieved zero false admits and zero false denies in adversarial and stability tests.", "body_md": "Most AI governance systems check approval once. Then they assume the agent is still authorised to act.\n\nThat assumption fails silently.\n\nPolicy changes. Delegation revokes. Evidence expires. Yet the agent continues executing under a stale authority context.\n\nI built Nanogate – a software‑only gate that re‑tests admissibility before every action, in ~530 nanoseconds.\n\nIt answers the question that most governance tools ignore:\n\n“Does this agent still deserve to execute right now?”\n\nThe Problem with Point‑in‑Time Approval\n\nA typical AI governance flow looks like this:\n\nApproval – a human or policy engine says “yes” at time T₀.\n\nExecution – the agent acts at time T₁ (seconds, minutes, or days later).\n\nBetween T₀ and T₁, many things can change:\n\nThe policy version is updated.\n\nThe delegation chain is modified.\n\nThe agent’s identity or session mutates.\n\nSupporting evidence expires.\n\nA malicious actor replays an old approval.\n\nTraditional systems log these changes but do not stop the agent. The result: an action that was approved but is no longer admissible at execution time.\n\nApproval is not enough.\n\nContinuous Admissibility\n\nI propose a different principle: every action must re‑prove its admissibility immediately before execution.\n\nThe agent must present:\n\nIts stable identity (agent_id, session_id, memory state)\n\nThe active reference frame (policy version, delegation chain, external state hash)\n\nA monotonic timestamp and a nonce (to prevent replay)\n\nThe gate then:\n\nHashes the identity and reference frame using xxHash64 (fast, non‑cryptographic)\n\nCompares the hashes with the last verified state\n\nIf unchanged and timestamp increased → ADMIT\n\nElse → DENY with a clear reason (identity drift, policy drift, etc.)\n\nEmits a BLAKE3 proof hash of all inputs (signed, replayable, court‑admissible)\n\nThis is Continuous Admissibility – a category I am defining and implementing.\n\nNanogate: A Reference Implementation\n\nNanogate is a Rust library and CLI that implements the gate. It is:\n\nFast – median 530 ns per evaluation (Criterion benchmark)\n\nDeterministic – the same input always produces the same output\n\nAdversarially validated – 0 false admits after 100k random mutations\n\nReliable – 0 false denies after 100k stable continuity traces\n\nLightweight – no hardware attestation, no external dependencies beyond Rust std\n\nPerformance\n\nbash\n\n$ cargo bench\n\nnanogate evaluate time: [528.91 ns 530.01 ns 531.18 ns]\n\nThat’s ~1.9 million evaluations per second per CPU core.\n\nFaster than the time light travels in 160 metres.\n\nCorrectness Validation\n\nTest Type Cases Result\n\nUnit tests 4 ✅ pass\n\nProperty tests (stable context, drift, timestamp) 4 ✅ pass\n\nAdversarial mutation (false admits) 100,000 ✅ 0 false admits\n\nStable continuity (false denies) 100,000 ✅ 0 false denies\n\nRun the full suite yourself:\n\nbash\n\ngit clone [https://github.com/a1k7/nanogate](https://github.com/a1k7/nanogate)\n\ncd nanogate\n\ncargo test --release\n\nWhy Rust?\n\nNo runtime overhead – the hot path avoids allocations, JSON parsing, and interpreted code.\n\nxxHash64 is ~10x faster than SHA‑256 for non‑cryptographic hashing.\n\nBLAKE3 is hardware‑accelerated on modern CPUs (AVX‑512, SSE) and still very fast.\n\npyo3 bindings exist if you need to call Nanogate from Python (optional).\n\nNext Steps: The Continuous Admissibility Protocol (CAP)\n\nNanogate is not the end goal. It is the reference implementation of a larger idea.\n\nI am drafting CAP – the Continuous Admissibility Protocol – a lightweight open standard for runtime admissibility proofs.\n\nEvery CAP‑compliant agent would emit a proof containing:\n\nagent_id\n\nobserver_hash (identity + session + memory)\n\nconstitution_hash\n\npolicy_hash\n\ncontinuity_hash (chained from the previous proof)\n\nadmissible (boolean)\n\nNo vendor lock‑in. No black boxes.\n\nThe Runtime Governance Index will benchmark agent frameworks (LangGraph, CrewAI, AutoGen, etc.) for CAP compliance. Public leaderboard. Transparent criteria.\n\nCommercial Licensing\n\nNanogate is open source under MIT / Apache‑2.0 for non‑commercial and internal use.\n\nFor embedding Nanogate inside proprietary agent runtimes, a commercial license is required:\n\nPerpetual use in one product\n\nEmail support for one year\n\n$5,000 one‑time fee + $1,000/year support renewal\n\nContact: [akhilesh@decisionassure.io](mailto:akhilesh@decisionassure.io)\n\nTry It Yourself\n\nbash\n\ngit clone [https://github.com/a1k7/nanogate](https://github.com/a1k7/nanogate)\n\ncd nanogate\n\ncargo build --release\n\ncargo run --release\n\nFinal Thought\n\nThe AI governance community has built many tools for approval.\n\nWhat we lack is a tool for continuous admissibility – proof that an agent still deserves to act at the exact moment of execution.\n\nNanogate is my contribution to that gap.\n\nApproval is not enough. Continuity first.\n\nIf you are building agent frameworks, runtime governance systems, or compliance tooling – I invite you to read the CAP spec (coming soon) and run the Nanogate benchmark. Open source is free. Commercial licensing is available. Let’s make runtime governability the new standard.\n\n#rust #aigovernance #runtime #continuousadmissibility.\n\nContinuity first.", "url": "https://wpnews.pro/news/approval-is-not-enough-building-a-sub-microsecond-runtime-governance-gate-in", "canonical_source": "https://dev.to/akhilesh_warik_8032f0fd9d/approval-is-not-enough-building-a-sub-microsecond-runtime-governance-gate-in-rust-pf4", "published_at": "2026-06-14 08:38:20+00:00", "updated_at": "2026-06-14 08:58:42.952814+00:00", "lang": "en", "topics": ["ai-safety", "ai-agents", "developer-tools", "ai-infrastructure"], "entities": ["Nanogate", "Rust", "xxHash64", "BLAKE3", "Continuous Admissibility Protocol", "LangGraph", "CrewAI", "AutoGen"], "alternates": {"html": "https://wpnews.pro/news/approval-is-not-enough-building-a-sub-microsecond-runtime-governance-gate-in", "markdown": "https://wpnews.pro/news/approval-is-not-enough-building-a-sub-microsecond-runtime-governance-gate-in.md", "text": "https://wpnews.pro/news/approval-is-not-enough-building-a-sub-microsecond-runtime-governance-gate-in.txt", "jsonld": "https://wpnews.pro/news/approval-is-not-enough-building-a-sub-microsecond-runtime-governance-gate-in.jsonld"}}