Secure Agent Workspace Reference Design

NVIDIA Enterprise Reference Architecture

• Always-on, Autonomous Agents, Now Safe for the AI Factory
  • Protecting Against
  • Outcomes
  • Maturity Model — Phase I and Phase II
• What Is Secure Agent Workspace?
• What Secure Agent Workspace Is Not
  • The Limits of Tenancy on Kubernetes Today
• Where Secure Agent Workspace Fits
  • Three Timescales of Sandbox Lifecycle
• Reference Architecture
  • Typical Agent Execution Loop
  • Secure Agent Workspace — Where Everything Fits
  • Secure Agent Workspace — Seven Logical Planes
    • Architectural Invariants the Design Preserves
  • Network Architecture
  • Trusted Access Broker — What It Is and What It Must Satisfy
  • Inference — A Hard Dependency, Not a Workspace Feature
• Agent Blueprint Patterns
  • Posture Rules
• Enterprise Tool Access Model
• Security And Governance Model
  • Control Surface — Contracts, Implementation and Integration Boundaries
  • Baseline Managed-Workspace Controls
  • Production Autonomous-Runtime Controls
  • Threat Model — What If the In-VM OS Is Compromised?
• Operating Properties
• Deployment Tiers
• Red Hat OpenShift Virtualization Reference Implementation
  • Reference Shape
  • GitOps Policy Model
  • Phase I: Deployable Managed VM Controls
  • Phase II: Runtime-Enforced Agent Policy
  • Storage Notes
  • Operating Invariants
  • Why This Matters

Notices

• Notices
  • Notice
  • Trademarks
  • Copyright