Learnijoy
ResearchAI Engineering & DevToolsAI News & Tools

AgenticRei Introduces Deontic Policies for AI System Governance

Anupam Joshi, Tim Finin, Karuna Pande Joshi, Lalana Kagal· June 19, 2026 View original

Summary

AgenticRei is a new framework that provides runtime governance for agentic AI systems, addressing security, privacy, and compliance challenges beyond traditional access control. It uses a deontic policy language to specify permissions, prohibitions, obligations, and conflict resolution, enabling comprehensive control over LLM-driven agents.

The rise of autonomous agentic AI systems, particularly those powered by Large Language Models (LLMs) that can interact with tools and data, introduces complex governance challenges. Traditional security mechanisms like authentication and access control are insufficient for agents that can manipulate data, install software, and coordinate across organizational boundaries. A more comprehensive framework is needed to define what agents are permitted, prohibited, and obliged to do. This research proposes AgenticRei, a framework that addresses these advanced governance requirements. It moves beyond simple permit/prohibit rules by incorporating a deontic policy language, built on the Rei framework and expressed in OWL (Web Ontology Language). This allows for the specification of obligations (e.g., "notify CISO after data access"), dispensations (waiving obligations under certain conditions), and sophisticated policy conflict resolution. AgenticRei's policies are evaluated at runtime by a high-performance logic engine, operating entirely outside the LLM itself. This pipeline governs both tool invocations by the agent and inter-agent communications. The examples provided demonstrate that deontic policies can capture critical security and privacy governance constraints that are currently beyond the capabilities of existing production policy engines.

Why it matters

As AI agents become more autonomous and integrated into enterprise operations, robust governance is essential for security, compliance, and ethical operation. Professionals can use this framework to implement granular, dynamic controls over AI agent behavior, ensuring they adhere to organizational policies and regulatory requirements.

How to implement this in your domain

  1. 1Explore and adopt deontic policy languages for governing the behavior of LLM-driven agentic AI systems.
  2. 2Implement runtime policy engines, like AgenticRei, to enforce permissions, prohibitions, and obligations for AI agents.
  3. 3Develop comprehensive governance frameworks that include obligation lifecycle management and meta-policy conflict resolution for AI.
  4. 4Apply ontological reasoning to define and manage complex policy rules across various domains (e.g., healthcare, cybersecurity).
  5. 5Integrate agent governance solutions with existing enterprise security and compliance infrastructures.

Who benefits

BFSIHealthcareCybersecurityLegalGovernment

Key takeaways

  • Agentic AI systems require advanced governance beyond traditional access control.
  • AgenticRei introduces deontic policies to define permissions, prohibitions, and obligations.
  • The framework includes obligation lifecycle management and policy conflict resolution.
  • Policies are evaluated at runtime by an external logic engine, enhancing security and compliance.

Original post by Anupam Joshi, Tim Finin, Karuna Pande Joshi, Lalana Kagal

"arXiv:2606.19464v1 Announce Type: new Abstract: Autonomous agentic AI systems driven by Large Language Models (LLMs) introduce a new class of security, privacy, and compliance challenges: an agent that can invoke tools, manipulate data, install software, and coordinate with peer…"

View on X

Originally posted by Anupam Joshi, Tim Finin, Karuna Pande Joshi, Lalana Kagal on X · view source

Want to go deeper?

Turn these trends into skills with Learnijoy's hands-on AI & tech courses.

Explore courses

More in AI Engineering & DevTools

AI Engineering & DevTools

AI-Powered Development Workflow Integrates Multiple Models

A new development workflow leverages various AI models like Grok 4.3, GPT-5.5, and Opus 4.8 for distinct stages including research, planning, coding, testing, and debugging. This structured approach aims to optimize the software development lifecycle.

@minchoiJun 28, 2026
Proposing AI Usage Transparency for Credible Commentary
AI News & ToolsAI Engineering & DevTools

Proposing AI Usage Transparency for Credible Commentary

The author suggests a requirement for individuals and organizations to publish their percentage of frontier AI usage at work and personal usage. This transparency would establish credibility before commenting on AI's utility.

@nathanbenaichJun 28, 2026
AI Engineering & DevToolsAI News & Tools

MCP and A2A Protocols Standardize Agentic Internet Development

The Model Context Protocol (MCP) and Agent-to-Agent (A2A) Protocol are standardizing how AI agents discover tools, call services, and coordinate across systems. Understanding these protocols is crucial for developers building agent-compatible infrastructure.

Theo VasilisJun 28, 2026