book

Agentic Mesh

by Eric Broda, Davis Broda

March 2026

Intermediate to advanced

350 pages

10h 52m

English

O'Reilly Media, Inc.

Read now

Unlock full access

The Introduction Of Large Language ModelsThe Agent EraDefining AgentsAgents TodayEnterprise-Grade AgentsAgentic Mesh: The Agent EcosystemThe Agent ChallengeThe Agent OpportunitySummary
The Agent PastThe Origins of Artificial IntelligenceThe Era of Machine LearningThe Deep Learning RevolutionThe Agent PresentThe Transformer ArchitectureThe Age of Large Language ModelsThe Agentic FutureShort Term: Laying the Foundation for Enterprise-Grade AgentsMedium Term: The Rise of Agentic Mesh: the Agent EcosystemLong Term: The Creation of the Agent BusinessesSummary
Emergence of AI WorkflowsDefining AI WorkflowsCommon Types of AI WorkflowsPrompt ChainingRoutingParallelizationOrchestrationReflectionChallenges with AI WorkflowsThe “Black Box” IssueScaling ChallengesHandling Edge CasesComparing AI Workflows and AgentsAgents Extend AI WorkflowsSummary
Architecture of an AgentTask ManagementAgent IntelligenceProblem SolvingToolsMemoryLearning and AdaptationHow It All Fits TogetherAgentic Mesh: The Agent EcosystemSummary
Agent EcosystemIdentity Verification AgentKnow Your Customer AgentProduct-Specific AgentsSavings AccountsCredit CardsInvestment AccountsNotification AgentPlanning AgentExample ScenariosSuccessful RequestsPending Requests (Additional Information Required)Invalid Requests and ErrorsConclusion
Agent PrinciplesTrustworthy and AccountableReliable and DurableExplainable and TraceableCollaborative and IntelligentAgent ComponentsAgent “Brain”Agent MemoryAgent ToolsAgent Task ManagementCreating the Task PlanIdentifying Collaborators and ToolsParameters SubstitutionExecuting the Task PlanAgent Interactions and ConversationsAgent Messaging ModelAgent Conversation ManagementAgent State ManagementAgent WorkspacesAgent Identities and RolesAgent TypesTask-Oriented AgentsGoal-Oriented AgentsSimulation AgentsObserver AgentsAgent PatternsAgent Communication PatternsAgent Role PatternsAgent Organizational PatternsAgent ConfigurationIdentity, Description, and PurposeTask Execution StrategySecurity ConfigurationPolicy and CertificationAgent and Tool VisibilitySummary
MicroAgents (Microservice Agents)Agent SecurityBasic Microservices SecurityContainer SecurityKubernetes SecurityAgent ReliabilityThe Reliability ProblemThe Reliability Issue Root CausePotential SolutionsTask DecompositionDeterministic ExecutionSpecializationA Future with Reliable AgentsAgent ExplainabilityThe Trust GapExplainability: Real-world LessonsExplaining ExplainabilityTowards Explainable AgentsAgent ScalabilityThe Scalability ProblemDistributed ArchitecturesCommon Collaboration TechniquesConversation/State ManagementEnterprise-Grade Agent CapabilitiesAgents as the Quantum of ReuseTowards Agent ScalabilityAgent DiscoveryBeyond a Search ProblemFinding the Right AgentAgent ObservabilityObservability and TraceabilityAgent OperabilitySummary
Agentic Mesh ComponentsThe RegistryThe MonitorThe Interactions ServerThe MarketplaceWorkbenchesThe ProxyMesh CapabilitiesTrust frameworkOperationsAgent Lifecycle ManagementSummary
LoginHomeMarketplaceWhat Is an Agent Marketplace?Marketplace ServicesFinding the right agentConsumer WorkbenchShared Workspaces for Goal-Oriented AgentsChat Interfaces for Task-Oriented AgentsCreator WorkbenchRegistering Agent MetadataConnecting Agents to the MarketplaceUsing Workbenches to Manage Agent LifecyclePyPi for Agent DevelopersTrust WorkbenchPolicy ConfigurationPolicy Attachment to AgentsAgent CertificationInternal and Third-Party CertificationCertification Lifecycle ManagementOperator WorkbenchAgent ObservabilityDiagnostics and TroubleshootingExecution ControlSummary

AgentsConversationsInteractionsWorkspacesPoliciesUsersImplementation ConsiderationsEndpoints/Conceptual APIAgent ConfigurationConversationsInteractionsWorkspacesPoliciesUsersSummary
Message Queue CommunicationHTTP vs. QueuesMonitoring QueuesUser-to-Agent CommunicationInteraction LifecycleConversationsConversation and Interaction EndpointsAgent-to-Agent CommunicationAgents as Plan StepsSending MessagesUser AlertsAlerting APIsWorkspacesDeciding to RespondActing on Workspace MessagesWorkspace GoalsGoal-Oriented AgentsWorkspace APIsSummary
Mutual TLSAuthentication and AuthorizationAgent IdentitySecret ManagementPrompt InjectionPrompt Injection in a Bank Account OpenerTechniques of Prompt InjectionCombating Prompt InjectionLLM JailbreakingDisaster RecoveryConclusion
Seven-Layer Agent Trust FrameworkLayer 1: Identity and AuthenticationManaging Identity LifecycleDelegating and Scoping AuthorityScaling IdentityMonitoring and Auditing IdentityTrust and IdentitiesLayer 2: Purpose and Policy DeclarationPurpose: Defining What an Agent DoesPolicies: Defining Operational ConstraintsLayer 3: Authorization and Access ControlAccess Control FoundationsA Zero Trust Model for AgentsEnforcement, Least Privilege, and Lifecycle ManagementIdentity Integration and Federated Governance5. Operationalizing Security by DesignLayer 4: Task Planning and ExplainabilityThe Problem: Opaque Reasoning in Today’s AgentsChoosing Tools and CollaboratorsParameterization and Step ExecutionLayer 5: Observability and TraceabilityVisibility into Agent ActivityCapturing Multi-Agent Task ContextsOperational Monitoring and System-Level ObservabilityLayer 6: Certification and ComplianceCertification as Structured AssuranceEvaluation, Oversight, and RecertificationTrust Registries, Metadata, and DiscoverabilityFeedback Loops, Enforcement, and Long-Term TrustLayer 7: Governance and Lifecycle ManagementAgent Governance in PracticeAgent Lifecycle Management ImplicationsSummary
Structure, Process, Technology, Policy, and MetricsStructure (People and Agents)ProcessTechnologyMetricsPolicyOther ConsiderationsStructure of Agent FleetsFleets as the Scaling Unit of the MeshDynamic Membership and Fluid BoundariesCore Services as the GlueAlignment to Missions, Not Just FunctionsKey Roles in Fleet ManagementOrganizational Patterns for FleetsStructure of Agent TeamsAgent OwnerAgent EngineersReliability and Operations Specialists (Agent SREs)Governance and Certification LeadEvaluation and Human-in-the-Loop SupervisorPolicy and Ethics LiaisonRelease ManagerTransition ConsiderationsHuman Impact and Ethical FoundationsCommunication, Trust, and Cultural AdaptationStructured Transition through Reskilling, Support, and GovernanceThe Future of WorkJobs: From Automation to AutonomyUneven Impacts and Workforce PolarizationEmergence of Hybrid Professions and Operating ModelsHuman Purpose, Adaptability, and Continuous LearningSummary
Agent Development CycleBuilding Agents at ScaleFleetsFleet OrganizationBuilding FleetsOperating Agents at ScaleDeploying FleetsMonitoring FleetsUpdating and Retiring FleetsA More Distant FutureAgents Building AgentsLarger AbstractionsSummary
Strategic FoundationsPhase 1: Formulate StrategyPhase 2: Design ArchitecturePhase 3: Identify Candidate PipelinePhase 4: Select MVPTechnology Build / IndustrializationBuild Technology FoundationPhase 1: Establish Core Data and State InfrastructurePhase 2: Deploy Messaging, Streaming, and API GatewaysPhase 3: Integrate Models and Formalize EnvironmentsIndustrialize Technology FoundationPhase 1: Build Observability and Monitoring BaselinesPhase 2: Design for High Availability and Automated DeploymentPhase 3: Optimize for Scale and EfficiencySecure Technology FoundationPhase 1: Establish Identity and Access ControlsPhase 2: Implement Secure CommunicationPhase 3: Extend Zero Trust Across EnvironmentsManage Models and OperationsPhase 1: Establish Model Registry and Sourcing PracticesPhase 2: Build Training, Fine-Tuning, and Versioning PipelinesPhase 3: Operationalize Monitoring, Drift Detection, and GovernanceAgent and Fleet FactoriesBuild Enterprise-Grade Agent FrameworkStep 1: Standardize Agent FoundationsStep 2: Implement Discoverability and RegistrationStep 3: Embed Observability and OperabilityStep 4: Enforce Security and Policy ComplianceBuild Enterprise-Grade Agent Fleet / Ecosystem FrameworkStep 1: Establish the Control PlaneStep 2: Build the Marketplace and RegistryStep 3: Enable Ecosystem-Wide Discovery and ObservabilityStep 4: Operationalize Ecosystem Reliability and SafetyEstablish Agent / Fleet DevSecOpsStep 1: Standardize Development PipelinesStep 2: Integrate Security by DesignStep 3: Automate Testing and Certification PipelinesStep 4: Enable Continuous Deployment and TransparencyCreate Agent FactoryStep 1: Define Templates and ScaffoldingStep 2: Build SDKs and Shared LibrariesStep 3: Provide Connectors and Integration PointsStep 4: Automate Lifecycle Tooling and Assembly WorkflowsCreate Fleet FactoryStep 1: Define Fleet Topologies and PatternsStep 2: Encode Orchestration Rules and Escalation PathsStep 3: Build Testing Environments and Resilience ProtocolsStep 4: Automate Lifecycle Management and CertificationOrganizational and Operating ModelEstablish New Operating ModelPhase 1: Define Roles and Redesign ProcessesPhase 2: Integrate Agents and Evolve Toward Hybrid ModelsManage ChangePhase 1: Align Leadership and Engage Middle ManagementPhase 2: Broaden Socialization and Embed into CultureTrain Staff and Build SkillsPhase 1: Build Literacy and Governance AwarenessPhase 2: Develop Collaborative and Role-Specific SkillsGovernance and CertificationEstablish Agent Governance and CertificationPhase 1: Establish Identity and PurposePhase 2: Implement Policy ControlsPhase 3: Certify and Delegate AccountabilityEstablish Fleet Governance and CertificationPhase 1: Define Fleet-Level Rules and StandardsPhase 2: Model Systemic Risks and Enforce PoliciesPhase 3: Certify Fleets and Delegate OwnershipSummary

Content preview from Agentic Mesh

Chapter 12. Security Considerations

While the potential of the agentic mesh can be quite impressive, this potential can only be realized if the system is secure. If the mesh was vulnerable to anyone with a computer and internet connection, then no enterprise would be willing to make use of it. So in this chapter we will cover the security features needed to create an enterprise grade agentic mesh.

Some of these security features covered here are security concerns that will be present in any microservice application, such as mutual TLS during communications, and hooking into an external book of record for user authorization. Other security measures - such as prompt injection protection - are specific to applications making use of generative ai.

Mutual TLS

In order for any application to be secure while being connected to the modern internet, It is imperative that the communication between parties be protected so that it cannot be read by third parties that might have access to the data in transit. This is ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Publisher Resources

ISBN: 9798341621633Errata Page

Agentic Mesh

by Eric Broda, Davis Broda

Chapter 12. Security Considerations

Mutual TLS

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

You might also like

Building an Event-Driven Data Mesh

Building Agentic AI Systems

Generative AI with LangChain

Data Mesh

Publisher Resources

Chapter 12. Security Considerations

Mutual TLS

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,and much more.

You might also like

Building an Event-Driven Data Mesh

Building Agentic AI Systems

Generative AI with LangChain

Data Mesh

Publisher Resources

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.