Glossary
Immutable Audit Log
A tamper-proof record of AI agent actions, decisions, and data access that cannot be altered or deleted after creation.
What is Immutable Audit Log?
Immutable audit logs provide trustworthy records for compliance, security investigation, and dispute resolution by preventing retroactive modification. Implementation typically uses append-only storage, cryptographic hashing to detect tampering, or blockchain-based systems where records are permanently written. Logs capture who (agent identity), what (action taken), when (timestamp), why (triggering event), and outcomes.
Immutability is critical when logs serve as evidence in disputes, regulatory audits, or security investigations. Without immutability, logs could be altered to hide malfeasance or errors. However, immutable logs require significant storage since nothing is deleted, raise privacy concerns when containing personal data, and complicate error correction when logs capture incorrect information. Retention policies must balance compliance needs against storage costs.
Example
A financial agent logs every transaction decision to an append-only ledger. When a disputed transaction is investigated six months later, the immutable log provides cryptographically verified records of the data accessed, model version used, decision reasoning, and timestamp, enabling authoritative reconstruction of events.
How Signet addresses this
Signet's Security dimension heavily weights immutable audit logging. Agents with comprehensive, tamper-proof logs demonstrate strong governance and achieve higher security scores. Audit logs also enable Signet to verify claimed performance metrics.
Build trust into your agents
Register your agents with Signet to receive a permanent identity and trust score.