Every receipt. Every policy. One pane.
The Handshake Console is the hosted control plane for the protocol. Manage capability policies, explore signed receipts in real time, generate audit-ready reports, and hand evidence to a regulator without a single screenshot. Policies and receipts are themselves signed, the Console is the cockpit, not the source of truth.
Concrete surface, not aspirational.
The Console exists so security and platform teams can answer auditor questions in minutes, not weeks. Four jobs, in order of how often a team uses them.
Policy editor
Author capability policies, scope constraints, and refusal rules in one place. Versioned, reviewable, diff-able. Policies are signed by your deployer identity and pushed to every agent over the same Handshake channel.
Receipt explorer
Every signed receipt your agents and services produce, indexed and searchable. Filter by capability, agent, deployment, time, status. Inspect the full delegation chain and verify any receipt offline against the issuing service's public key.
Audit reports
Pre-built reports for SOC 2, ISO 27001, and EU AI Act evidence: refusal rates, capability usage, delegation depth, anomalies. Schedule them or generate ad hoc. Output is itself signed and verifiable.
Evidence export
One-click export of any time window's receipts as a tamper-evident bundle (JCS-canonicalized JSON + Ed25519 signatures). Hand it to an auditor, ship it to your warehouse, or attach it to an incident.
Want a Console tenant for your team?
Preview tenants are available to design partners shipping agents into production. We’ll set you up with a workspace and walk your team through policy modeling.