C:\>DIR Global ‘Agentic Regulator’ Hackathon
Decentralised Market Infrastructure, Smart Contracts & AI Agents
AI agents now can transact directly with self-executing smart contracts - routing orders, managing collateral and rebalancing liquidity across DeFi and tokenised markets.
What agentic solutions can help public authorities to understand and monitor agentic on-chain activities and mitigate potential systemic vulnerabilities?
Context for the Problem Space
AI agents now transact directly with smart contracts at scale, autonomously routing orders, managing collateral, and rebalancing liquidity constantly.
Risks include but are not limited to:
Cascading liquidations triggered by agents acting simultaneously
Agent-layer vulnerabilities, including prompt injections and compromised wallets
Accountability gaps as autonomous agents lack legal identity under current regulations
Agentic biases: What form of digital money will agents prefer? Will they take into account the relative risks and constraints of traditional rails, stablecoins, Tokenised Deposits or CBDC?
Potential Solution Areas
Securing Agent-Layer Attack Surfaces
How can regulators protect digital assets against prompt injection and mandate exploitation at the largely invisible agent layer?
Bridging Accountability and Perimeter Gaps
How can enforcement agencies assign legal liability across jurisdictions when autonomous agents - lacking legal personhood - cause harm?
Establishing Know Your Agent (KYA) Standards
How can authorities implement verifiable identity frameworks to ensure autonomous agents operate strictly within authorized bounds before transacting?
Restoring Oversight Visibility
How can supervisors transition from periodic reporting to continuous, real-time monitoring of machine-speed transactions across decentralized networks?
Illustrative Hackathon Prototypes
Agentic Payments Observatory
Build a dashboard for agent-to-service or agent-to-agent payments, linking smart contracts and transactions to agent identity, permissions, receipts, anomaly detection, and policy breaches.
Perimeter and Rulebook Copilot
A research agent that monitors DeFi incident data and governance to identify exactly where autonomous agents evade entity-based regulatory frameworks like MiCA.
KYA Maturity Assessor
An evaluation tool that scores protocols against "Know Your Agent" standards (verifiable identity, mandate limits, injection resilience) to generate standardized regulatory ratings.
Programmable Guardrails
Build a smart-account or contract layer that limits what a financial agent can do through permissions, spending caps, whitelists, approvals, session keys, and human escalation
Reputation Registry
Build an ERC-8004 registry for managing agent reputation.
Reference & Resources
Agent identity, discovery, and trust: ERC-8004 and ERC-8122 are directly relevant to AI-agent identity, discovery, and trust. ERC-8004 provides an all-in-one registry model for a single-chain environment, while ERC-8122 is a lighter alternative for custom deployments.
Agentic commerce framework: ERC-8183 is a job escrow framework with evaluator attestation for agent commerce. The standard includes fund transfer and bidding examples to illustrate its utility.
Agent-controlled accounts and permissions: ERC-4337 account abstraction is the main reference point for smart accounts that can give autonomous agents bounded authority, spending limits, approvals, and human escalation.
Verifiable authorization: EIP-712 typed structured-data signing is a useful pattern for making agent approvals, mandates, and policy constraints machine-readable and auditable.
Regulated asset workflows: ERC-3643 may be relevant where autonomous agents interact with regulated asset transfers that require identity or compliance checks
BIS (2019), Embedded supervision: how to build regulation into blockchain finance - the foundational concept this track extends to the agent layer
FSB (2024), The Financial Stability Implications of Tokenisation - programmability, composability and unintended systemic interconnections
Defining AI Agents: An Ontological and Topological Framework for Organizational Systems
arXiv (2025), AI Agents and Crypto: New Vectors of Harm - taxonomy of risks from granting AI agents direct crypto access
arXiv (2024), Oracle deviation and manipulation analysis in DeFi lending - methods directly reusable in a Regulatory Node prototype
arXiv (2024), Remeasuring the Arbitrage and Sandwich Attacks of Maximal Extractable Value in Ethereum - MEV extraction and sandwich-attack measurement methodology
Antrophic (2026), https://claude.com/blog/building-ai-agents-for-the-enterprise
arXiv (2026), Auditing Asset-Specific Preferences in Financial Large Language Models: Evidence from Bitcoin Representations and Portfolio Allocation - interpretability audit of asset-specific biases in frontier LLMs, which bridges mechanistic oversight (Track 1) with KY-A assurance (Track 5)
OpenAI (2026), EVMbench - benchmark evidence that frontier models can detect and exploit smart contract vulnerabilities
MITRE, ATLAS framework - adversarial technique taxonomy for standardised incident packaging
Ethereum, ERC-4337 (account abstraction) and ERC-7715 (scoped, revocable wallet permissions) - the substrate for granting an AI agent bounded, value- and time-limited authority over contracts, where “over-broad approvals” are contained. https://eips.ethereum.org/EIPS/eip-4337 ; https://eips.ethereum.org/EIPS/eip-7715
FSB (2025), Monitoring Adoption of AI and Related Vulnerabilities in the Financial Sector - indicator framework for tracking agentic-AI adoption and concentration. https://www.fsb.org/uploads/P101025.pdf
IOSCO (2026), Supervisory Toolkit for AI Use in Capital Markets (FR/02/2026) - supervisory tools that explicitly cover agentic AI; read with IOSCO’s DeFi Policy Recommendations (PD754) on the “control or sufficient influence” perimeter. https://www.iosco.org/library/pubdocs/pdf/IOSCOPD823.pdf ; https://www.iosco.org/library/pubdocs/pdf/IOSCOPD754.pdf
FATF (2025), Targeted Update on VAs/VASPs - evidence the DeFi perimeter rarely binds (only four jurisdictions have ever licensed a DeFi entity as a VASP). https://www.fatf-gafi.org/en/publications/Fatfrecommendations/targeted-update-virtual-assets-vasps-2025.html
Chainalysis (2025) crypto-theft data and Immunefi DeFi-loss reports - value-weighted exploit figures behind the machine-speed-exploitation risk. https://www.chainalysis.com/blog/crypto-hacking-stolen-funds-2026/ ; https://immunefi.com/research/
Contact
For additional questions, please contact: contact@cdir.global