Our computing ecosystem is being transformed by two emerging paradigms: the increased deployment of agentic AI systems and advancements in quantum computing. With respect to agentic AI systems, one of the most critical problems is creating secure governing architectures that ensure agents follow their owners' communication and interaction policies and can be held accountable for the messages they exchange with other agents. With respect to quantum computing, existing systems must be retrofitted and new cryptographic mechanisms must be designed to ensure long-term security and quantum resistance. In fact, NIST recommends that standard public-key cryptographic algorithms, including RSA, Diffie-Hellman (DH), and elliptic-curve constructions (ECC), be deprecated starting in 2030 and disallowed after 2035. In this paper, we present MAGIQ, a framework for policy definition and enforcement in multi-agent AI systems using novel, highly efficient, quantum-resistant cryptographic protocols with proven security guarantees. MAGIQ (i) allows users to define rich communication and access-control policy budgets for agent-to-agent sessions and tasks, including global budgets for one-to-many agent sessions; (ii) enforces such policies using post-quantum cryptographic primitives; (iii) supports session-based enforcement of policies for agent-to-agent and one-to-many agent sessions; and (iv) provides accountability of agents to their users through message attribution. We formally model and prove the correctness and security of the system using the Universal Composability (UC) framework. We evaluate the computation and communication overhead of our framework and compare it with the state-of-the-art agentic AI framework SAGA. MAGIQ is a first step toward post-quantum-secure solutions for agentic AI systems.

翻译：我们的计算生态系统正受到两种新兴范式的变革：智能体AI系统的广泛部署与量子计算技术的进步。针对智能体AI系统，最关键问题之一是构建安全的治理架构，确保智能体遵循其所有者的通信与交互策略，并对其与其他智能体交换的信息负责。针对量子计算，现有系统必须进行改造，并设计新型密码机制以保障长期安全性和抗量子性。事实上，NIST建议从2030年起逐步弃用包括RSA、Diffie-Hellman（DH）和椭圆曲线构造（ECC）在内的标准公钥密码算法，并在2035年后完全禁止使用。本文提出MAGIQ框架，该框架采用具有可证明安全性的新型高效抗量子密码协议，实现多智能体AI系统的策略定义与执行。MAGIQ具备以下特性：（i）允许用户为智能体间会话和任务定义丰富的通信与访问控制策略预算，包括一对多智能体会话的全局预算；（ii）利用后量子密码原语执行此类策略；（iii）支持基于会话的智能体间及一对多智能体会话策略执行；（iv）通过消息溯源实现智能体对其所有者的问责机制。我们使用通用可组合（UC）框架对系统进行形式化建模，并证明其正确性与安全性。通过计算与通信开销的评估，我们将其与现有最先进的智能体AI框架SAGA进行对比。MAGIQ为智能体AI系统迈向后量子安全解决方案迈出了第一步。