Author
Natacha Suter
Published
22. June 2026
Given the growing autonomy of AI systems, trust cannot be based solely on gut feelings. Companies need to know which AI systems are active, what permissions they have, and whether their results remain traceable. Traditional security and governance models reach their limits here. They were developed primarily for people, devices, applications, and known software processes.
AI systems, however, behave more dynamically. They can process data, trigger actions, integrate external tools, and operate across system boundaries. Companies therefore need a new trust architecture: AI Trust. This refers to an approach that makes the identity, permissions, integrity, and provenance of AI systems and AI-generated content technically verifiable.
From Digital Trust to AI Trust
For years, Digital Trust has been based on proven principles such as public key infrastructure, certificates, DNS, and encryption. These mechanisms ensure that digital communication is protected, identities are verified, and systems can be authenticated.
With AI, this trust framework is expanding. In the future, companies will need to know not only who is accessing a system, but also:
-
Which AI agents are active
-
What data they are processing
-
What permissions they have
-
Whether content is genuine, altered, or AI-generated
AI Trust applies proven trust mechanisms to AI. The goal is not only to regulate AI agents, models, and content, but also to make them technically controllable.
Shadow AI: When AI Slips Through the Cracks of Governance
Many companies are already using AI productively—partly officially, partly informally. So-called “shadow AI”—the use of AI tools or agents outside of approved processes—is particularly critical.
This creates blind spots. Sensitive data can be processed without oversight. Agents may be granted overly broad permissions. And security teams don’t always know which AI systems are actually in use.
For CISOs, shadow AI thus becomes a test of transparency. Five questions are crucial:
-
Which AI agents are being used in the company?
-
What data flows to these systems?
-
Which agents have access to internal systems?
-
Can compromised agents be stopped immediately?
-
Can an incident be documented in a traceable manner?
The answer to these questions cannot lie solely in policies. AI governance must be technically enforceable.
Three areas where trust must be reimagined
AI Trust primarily concerns three levels: agents, models, and content.
-
Trust in AI agents – AI Agent Passport
AI agents are not human users. Passwords or traditional login processes fall short here. Agents require unique, short-lived, and verifiable identities. This allows for control over which actions they are permitted to perform, which data they can access, and when access must be terminated.
One approach to this is the AI Agent Passport. It cryptographically links an agent’s identity to its permissions. This makes it transparent what an agent is allowed to do, in which environment it is active, and who is responsible for it. -
Trust in AI Models – Confidential Computing
AI models are increasingly becoming critical corporate resources. They support diagnostics, detect fraud, automate compliance processes, and influence business-critical decisions.
Therefore, companies must ensure that models are not manipulated, altered without authorization, or executed in insecure environments. This requires, among other things, cryptographic signing, integrity checks, and traceable model provenance. Confidential computing is particularly relevant. This involves running models in protected execution environments, ensuring that data and model information remain protected even during processing. -
Trust in AI-Generated Content – C2PA
Today, AI can generate or modify high-quality text, images, videos, and structured data. For companies, this raises a critical question: Where does the content come from? Has it been altered? And can its authenticity be independently verified? Metadata or platform information alone is not sufficient for this purpose. It can be removed or altered. Standards such as C2PA provide a foundation for attaching signed proofs of origin to digital content. This makes it possible to verify who created a piece of content and whether it has been altered since then.
Identity, Cryptography, and DNS as Anchors of Trust
A robust AI trust architecture requires technical control points. These include DNS-based policies, cryptographic identities, short-lived credentials, attestation, and proofs of integrity.
Here’s an example: Before an AI agent establishes an external connection, it can be verified whether the target domain is permitted. If it is not authorized, the connection is blocked before data is transmitted or unauthorized actions are triggered.
Such mechanisms turn abstract governance into concrete control. Companies can specify which agents are allowed to do what—and enforce these rules technically.
From Transparency to Control: 5 Steps to AI Trust
The first step is to take stock. Companies should identify which AI tools, agents, and models are already in use and what data flows are associated with them.
Based on this, they should define:
-
Which AI systems are permitted
-
What data may be processed
-
What identities and permissions are required
-
How models are protected and verified
-
How AI-generated content can be labeled and verified
This is how AI Trust becomes a practical security and governance issue—not just a theoretical concept.
DigiCert as a Leader in Intelligent Trust
Modern approaches to digital trust start right here. DigiCert positions itself as a global leader in Intelligent Trust and extends proven principles such as PKI, DNS, certificate lifecycle management, attestation, and cryptographic identity to meet the requirements of modern AI environments.
The DigiCert ONE platform unifies core trust functions within an integrated architecture and helps organizations make digital trust anchors visible, controllable, and automatable. These include, among others, PKI, DNS, certificate management, software trust, device trust, and content trust.
For AI Trust, this provides a technical foundation that enables organizations not only to use AI systems but also to operate them in a controlled, traceable, and responsible manner.
InfoGuard & DigiCert – Trust for the Next Era of AI
With DigiCert, InfoGuard extends proven digital trust principles to meet the requirements of modern AI environments. Automated certificate management alone demonstrates how important transparency, automation, and crypto-agility are for stable and secure digital infrastructures. In the context of AI, these same principles take on even greater significance: identities must be verifiable, permissions must be controllable, and integrity must be continuously demonstrable.
This lays the foundation not only for using AI productively but also for operating it securely, transparently, and under control. Learn in the white paper how DigiCert’s “Trust Architecture for AI” helps companies make trust in AI systems technically verifiable.
InfoGuard helps companies approach AI trust as a security and architectural issue from the very beginning—from governance considerations and technical integration to securing identities, data, cloud, and AI environments. Our experts look forward to a no-obligation discussion!
Image caption: AI-generated image
