← Back to brief
Policy SafetyOfficialPreprintarXiv Cryptography and Security

Temporary Authority, Permanent Effects: Commit-Time Authorization for LLM Agents

Jul 14, 2026

A new preprint introduces the concept of commit-time authorization, a security property ensuring that LLM agents only commit durable effects if the authority evidence remains valid at the moment of commitment. The authors demonstrate that, in a controlled test suite, 207 out of 216 invalidating runs resulted in unauthorized commits after the authorizing path had failed, revealing a significant security gap. To address this, they propose CommitGuard, a fail-closed boundary monitor that blocks stale authorization attempts at commit time.

Why it matters: This work exposes a critical security vulnerability in LLM agents related to the misuse of temporary authority and offers a practical mitigation strategy.

Full story at: arXiv Cryptography and Security