ProvaYour AI agents aren't compliant. Yet.
Attestation as a servicefor AI workflows
How it works
Three steps. No code. Cryptographic proof in seconds.
Delegate credentials
Enter your portal credentials into a secure form. They're encrypted with P-256 ECDH and sent directly to the Intel TDX enclave — Prova never sees them.
Agent processes in TEE
Inside hardware-encrypted memory, the AI agent logs into the data source via MPC-TLS, extracts records, formats the output, and validates every field. Credentials are destroyed after use.
Verified output with attestation
You receive structured output plus a cryptographic attestation bundle — TDX quote, MPC-TLS proof, model hash, validator results, and a Bitcoin timestamp. Anyone can verify independently.
Built-in trust primitives
Every attestation comes with hardware-level guarantees — no setup, no add-ons.
Use cases
Built for every regulated workflow
Wherever AI agents touch sensitive data, regulated systems, or high-stakes decisions — Prova provides the cryptographic proof layer. Inspired by Visa's Trusted Agent Protocol and Mastercard's Verifiable Intent standard.
Regulatory Filings
AI agent logs into source portals, extracts required documents, formats submissions to agency standards, and files an attested application bundle — minutes, not months. Every data point is source-grounded.
AI-Initiated Payments
Like Visa's Trusted Agent Protocol and Mastercard's Verifiable Intent — agents initiate purchases with cryptographic proof of consumer authorization, merchant binding, and replay-attack prevention. Every transaction carries a signed audit receipt.
KYC & AML Compliance
Agents autonomously pull identity documents, screen against sanctions lists, enrich alerts with transaction context, and package compliance evidence — all with an immutable, regulator-ready audit trail. 40% fewer regulatory flags vs. manual review.
Insurance Claims Adjudication
Agent retrieves supporting documents from source portals, cross-references policy terms, calculates benefit determination, and produces an attested decision bundle. End-to-end auditability for regulatory requirements.
Legal eDiscovery
Autonomously access document management systems and case databases, cryptographically fingerprint every record for chain-of-custody, and produce attested evidence packages admissible under Federal Rules of Evidence.
Supply Chain Provenance
Agents verify shipment manifests, customs declarations, and IoT sensor data across multi-party logistics networks. Every handoff is attested — preventing data poisoning and ensuring tamper-proof chain-of-custody records.
Vendor Due Diligence
Autonomous agents extract security questionnaires, compliance certifications, and financial data from vendor portals. Every assessment is hardware-attested — preventing data manipulation and ensuring tamper-proof risk scoring across your supply chain.
Autonomous Procurement
AI agents collect invoices from vendor portals, auto-code line items, match against purchase orders, and trigger payment — like Payhawk's verified agents saving 4 years of manual work. Every action carries a cryptographic receipt.
Government Benefits Verification
Citizen-delegated agents access tax portals, benefits systems, and DMV databases with anonymous identity. Attestation proves data was retrieved from authentic government sources — no PII leaves the enclave.
Tax Filing & Audit Defense
Agents pull W-2s, 1099s, and brokerage statements from financial institution portals, compile returns, and generate an attested provenance bundle — cryptographic proof of every data source for IRS audit defense.
Real Estate Closings
Autonomous title search agents query county recorder databases, verify lien status, pull flood certifications, and produce attested closing packages. Hardware-signed audit trails satisfy TRID and RESPA disclosure timelines.
Compliance Evidence Collection
Agents continuously harvest evidence from AWS, Jira, GitHub, and SharePoint — auto-mapping artifacts to SOC 2, ISO 27001, and GDPR controls. 112+ high-risk controls monitored in real time, not once-a-year scrambles.
Built on peer-reviewed research
6 cryptographic primitives. One trust pipeline.
Every protocol in Prova traces back to published research from IC3, FlashbotsX, Phala Network, University of Bern, and BoquilaID.
Props
Authenticated, privacy-preserving pipelines from deep-web data to ML — no infrastructure changes required.
NDAI Agreements
Enforceable non-disclosure for AI agents — cryptographic NDAs that machines can actually obey.
U2SSO
User-issued anonymous credentials with Sybil resistance — one master identity, unlinkable pseudonyms everywhere.
Conditional Recall
Agents that credibly forget — TEE-enforced selective amnesia unlocks efficient markets and safe delegation.
dstack
Production-grade TEE attestation on Intel TDX — confidential VMs with remote verification out of the box.
Thetacrypt
Threshold cryptography service — distributed key management without single points of failure.
Enterprise ready
Trusted architecture for sensitive workflows
Prova is designed for regulated industries that need hardware-level security, cryptographic auditability, and zero-trust infrastructure.
Intel TDX
Hardware attested
Regulatory
Compliant by design
Zero Install
Browser-native
Auditable
Independently verifiable
Credential Security
Credentials are encrypted with P-256 ECDH + AES-256-GCM, decrypted only inside Intel TDX hardware-encrypted RAM, and provably destroyed after use via zeroize-on-drop. Exposure window is under 500ms. The destruction proof is embedded in every attestation bundle.
Deterministic Validation
Every AI output passes through 5 deterministic checks: source grounding, value fidelity, PII containment, schema conformance, and temporal consistency. The Validator Agent catches hallucinations before they leave the enclave. The model hash is pinned in the TDX quote.
Pricing
Attestation as a service, priced for pilots and production
Free starter credits, then Team, Enterprise, or pay-as-you-go — same Intel TDX-backed path and metering in credits so the API stays workflow-agnostic.
Free
Wire up integrations on real infra
$0
starter credits included
Includes
- Self-serve API keys
- 25 starter credits
- ReDoc & fair-use limits
- Community support
Team
From pilot through production volume
$99/mo
500 credits/mo · ~$0.20/attestation
Includes
- Portal + API
- 500 credits / month on entry plan
- Batch processing & analytics
- Standard support
Enterprise
Regulated teams, custom boundaries
$1,999+/mo
custom
Includes
- SSO / SAML
- Custom integrations (e.g. EHR)
- SLA
- On-prem TEE option
Pay-as-you-go
When traffic is occasional
$0.25
per credit · no minimum
Includes
- Pay-as-you-go
- Built for infrequent or bursty usage
- Same hardware-backed path
1 credit = 1 attestation
Credits meter attested API usage along the trust path (often one credit per attested operation; exact mapping may vary by route). Team’s 500 included credits bring the effective rate to about $0.20 per attestation vs $0.25 on pay-as-you-go. Every tier runs inside a hardware-attested enclave with verifiable execution integrity.
Join the ProvaTrust waitlist
Be first to know when new tiers, regions, and integrations ship. One click — we'll only use your email for ProvaTrust updates.
Frequently asked questions
Quick answers about how Prova works for developers and enterprises.
It is attested trust delivered over an API: hardware-backed proof of what ran, where data came from, and how credentials were handled—without you operating your own TEE fleet. Prova meters usage in credits so pricing stays simple across workflows. A credit usually corresponds to one attested operation on the trust path; exact mapping can vary by API route.
Prova is a web-based Trust API. Users visit a website, delegate credentials into a hardware-secured enclave (Intel TDX), and the AI agent processes data server-side. No browser extensions, no desktop apps — works on Chrome, Edge, Firefox, and Safari.
Yes. Credentials are encrypted in transit (P-256 ECDH + AES-256-GCM), decrypted only inside TEE hardware-encrypted memory, and provably destroyed after use (zeroize-on-drop). Raw sensitive data is never persisted — only attestation metadata. Prova's architecture satisfies access controls, audit controls, integrity controls, and transmission security requirements across regulated industries.
Every output passes through a deterministic Validator Agent with 5 checks: source grounding (every claim traces to source data), value fidelity (no modified values), PII containment, schema conformance, and temporal consistency. The AI model hash is pinned in the TDX attestation quote — verifiers confirm the exact model that ran.
Competitors like Notary Labs and ProofTrail provide software-level audit logs — they prove a function was called, not what data was real. Prova provides hardware-attested cryptographic proof: MPC-TLS proves data origin, TEE quotes prove computation integrity, and credential destruction is verifiable. No other system combines all four.
Start with the free tier and bundled starter credits. Pay-as-you-go is $0.25 per credit (no minimum). Team is $99/month including 500 credits (~$0.20 per attestation)—lower per-credit than pay-as-you-go for steady production use. Enterprise from $1,999+/month (custom). Raw cloud attestation quotes are often free or pennies; Prova’s full trust path (TEE + MPC-TLS + signing + validators) is priced to clear modeled marginal compute in the dimes per run at scale.
Yes. Every attestation bundle is a self-contained JSON document with a TDX quote, MPC-TLS proof hash, model hash, and validator results. Anyone can verify it at provatrust.com/verify — no login required. The Bitcoin blockchain anchor via OpenTimestamps provides economically irreversible finality.
Attested AI for production workflows
Prove data origin, execution integrity, and credential handling — without browser extensions or bespoke integrations to every source system.