The Reconciliation Problem No One Is Talking About
Every integration failure I’ve seen in 28 years comes down to the same thing: two systems that agreed on syntax but not semantics.
EDI said the order was confirmed. The warehouse said it never arrived. Both systems were technically correct. The purchase order was entered in System A as “confirmed” at 2:47 PM. System B required a secondary acknowledgment that never came. Confirmation meant different things. No one discovered this until a container ship was in the wrong ocean.
Now multiply that by a thousand autonomous agents making decisions at machine speed.
The coming reconciliation nightmare
Agent systems today are where ERP integrations were in 1998. Everyone’s excited about capabilities. No one is thinking about the 2 AM call when the numbers don’t match.
Integration isn’t the real challenge. It’s when Integration A logs a posted transaction, Integration B logs no post, and both have proof. The real challenge is explaining to auditors why your automated system made untraceable commitments.
Agents will make this worse, not better. An LLM doesn’t produce the same output twice. You can’t diff two runs and expect identical results. When Agent A delegates to Agent B and B returns a result, there’s no way to verify that B actually performed the work it claimed to have performed. You’re trusting the agent’s self-report. In a world where agents will negotiate contracts, execute trades, and commit resources, “trust the self-report” is not a compliance strategy.
What smart contracts got right (and wrong)
Blockchain solved this by enabling distrusting parties to transact with cryptographic proofs and deterministic execution. No need to trust; just verify.
But smart contracts require determinism. Same inputs, same outputs, every time. AI agents are stochastic by design. The whole point is that they handle ambiguity, interpret context, and make judgment calls. You can’t put an LLM in a smart contract.
What we need is verifiable conformance, not determinism. The agent doesn’t need to produce identical output. It just needs to prove its output meets the agreed constraints.
This is solvable. Zero-knowledge proofs let you demonstrate that a computation satisfies constraints without revealing the computation itself. State machines let you specify allowed behaviors without dictating implementation. The cryptography exists. The formal methods exist. What doesn’t exist is a standard way to apply them to agent interactions.
Why this has to get solved before the market matures
Standards emerge in one of two ways. They get defined early, and the ecosystem builds around them, or they get defined late, becoming a negotiated truce between entrenched proprietary approaches.
Early standards: HTTP, TCP/IP, SMTP. Open, interoperable, universally adopted.
Late standards: EDI, HL7, banking message formats. Fragmented, full of proprietary extensions, requiring expensive translation layers that I’ve spent way too much of my career building.
Agent-to-agent protocols are at the inflection point right now. In 18 months, every major enterprise will have agents interacting with external systems. The coordination patterns will either be open and composable, or they’ll be walled gardens requiring point-to-point integration with every counterparty.
I’ve lived through the closed path multiple times. It’s not inevitable, but the window for something better is closing fast.
What a solution looks like
I’m not proposing we slow down agent deployment. I’m proposing we add a verification layer that runs alongside it.
Before execution, agents declare contracts specifying what they can access, what outputs they must produce, and what constraints they must satisfy. Both parties commit to these contracts cryptographically.
During execution, agents maintain signed traces of observable actions. Not internal reasoning, not proprietary logic. Just inputs received and outputs produced.
After execution, either party can provide proof that their trace complies with the contract terms. Zero-knowledge, so nothing proprietary is revealed. Verifiable, so disputes have a resolution mechanism.
This isn’t a replacement for agent frameworks. It’s a layer that sits beneath them. LangChain, AutoGen, whatever you’re using today, continues to work. The verification layer intercepts the observable actions and provides the cryptographic guarantees.
The ask
I’ve started drafting a specification for this. I’m calling it the Swarm Open Specification because the problem is swarm coordination, and the solution has to be open.
I’m looking for collaborators to help turn this into a real standard. I need people who know formal methods, people who know cryptography, people building agent frameworks, and, honestly, practitioners who’ve been burned by untraceable automation and want to help make sure this doesn’t become another EDI.
If you’ve faced these problems or see them coming, let’s talk. Comment or DM.