EU AI Act Compliance: Why Observability Isn’t Enough for High-Risk AI

The News

Diagrid has published a detailed technical position piece outlining how its Catalyst platform addresses EU AI Act compliance requirements for high-risk AI systems. The piece, authored by CEO and Co-Founder Mark Fussell, argues that existing observability and tracing tools leave two critical gaps unaddressed: the inability to produce tamper-evident records of agent actions and the absence of runtime authorization controls over what agents are permitted to do. Diagrid positions Catalyst, built on the CNCF-graduated Dapr runtime, as an agentic durable execution platform that fills those gaps through cryptographic identity, policy-based access control, and verifiable workflow history. The timing is pegged to the EU Digital Omnibus decision, which extended the high-risk AI compliance deadline from August 2026 to December 2, 2027.

Analyst Take

The EU AI Act has been discussed in enterprise technology circles for years, but the compliance conversation has remained largely abstract. The Digital Omnibus extension gives organizations 18 additional months, and the temptation will be to treat that as breathing room. Diagrid’s argument is that the extension changes the deadline, not the difficulty. That’s a fair read. The infrastructure work required to meet Articles 12, 13, 14, and 15 isn’t something you assemble in a sprint. It’s an architectural commitment.

The Observability Gap Is Real, and It’s Underappreciated

The most analytically sharp part of Diagrid’s positioning is the distinction between observation and proof. The current market for AI observability is crowded: LangSmith, Langfuse, Arize, Fiddler, Braintrust, Galileo, and others all capture traces, score outputs, and flag drift. These are genuinely useful tools. But Diagrid identifies a structural ceiling that none of them cross. A log your own system wrote about itself is not tamper-evident evidence. For a regulator examining whether a credit-scoring model made a consequential decision in the way the operator claims, “we retained the trace” is a much weaker posture than “the record is cryptographically signed and any alteration is detectable.” That distinction matters enormously for the high-risk categories the Act targets: loan origination, automated underwriting, life and health insurance pricing.

The second gap, runtime authorization, is even less addressed by the current tooling landscape. Observability platforms watch what agents do after the fact. They have nothing to say about whether an agent was permitted to call a given tool, read a specific data source, or invoke an MCP server in the first place. For enterprises building multi-agent systems with broad tool access, the absence of a policy enforcement layer isn’t just a compliance problem. It’s an operational risk.

What This Means for ITDMs

For IT decision-makers in financial services, healthcare, or any sector deploying consequential AI, the compliance framing here maps onto a question that goes beyond regulation: how do you govern an AI agent the same way you’d govern a privileged human user? Identity, access control, and auditable action records are the established answers in human IAM. Diagrid is applying that same logic to agents. The relevant ECI Research data point is sobering context: according to ECI Research’s 2026 Application Development: Day 0 survey, 47.4% of respondents selected software supply chain security as a top investment priority for the next 12 months. Agent identity and authorization sit squarely in that investment category, and the EU AI Act creates a hard regulatory reason to formalize what many organizations are still treating informally.

The compliance deadline creates a procurement window. Organizations evaluating agentic platforms over the next 12 months will increasingly need to ask whether their chosen runtime provides verifiable execution and runtime policy enforcement, not just whether it integrates with their preferred LLM provider. That question will start appearing in RFPs.

What This Means for Developers

For engineering teams, the architectural argument in Diagrid’s piece is worth taking seriously on its own merits, independent of regulatory pressure. Durable execution, the ability for a long-running agent workflow to checkpoint state, survive failures, and resume with exactly-once semantics, solves a real reliability problem that most teams are currently handling with ad hoc retry logic and fragile state management. The EU AI Act’s robustness requirement in Article 15 is essentially asking for production-grade distributed systems engineering applied to AI agents. That’s not a new problem; it’s the same problem that motivated workflow orchestration systems in the first place.

The SPIFFE-based workload identity and mTLS between components that Diagrid describes is also standard infrastructure-security practice, extended to a layer (AI agents) where it’s rarely applied today. ECI Research’s 2026 Application Development: DevSecOps & AppSec survey found that 29.1% of respondents identified AI-generated package risk as their biggest open-source security concern in 2026. Agent identity and authorization are the runtime complement to that supply-chain concern: knowing what packages your agents consume is the static problem; knowing what tools and data sources they can reach at runtime is the dynamic one.

The emerging IETF SCITT standard and the Agent Action Capsule profiles Diagrid references are worth watching. They’re early drafts, and Diagrid is careful to say the EU AI Act doesn’t require them. But the direction of travel in the standards community is consistent with the compliance logic: self-attested logs are insufficient evidence for high-stakes decisions, and cryptographically verifiable records are where the industry is heading.

Looking Ahead

Diagrid’s positioning here is early but well-targeted. The agentic AI market is moving fast, and the compliance infrastructure layer is almost entirely unoccupied. The hyperscalers offer documentation tooling, safety controls, and compliance templates, but they operate on a shared-responsibility model that leaves the runtime authorization and verifiable execution layer to the deployer. That gap is Diagrid’s market, and the EU AI Act’s high-risk classification of credit scoring, insurance pricing, and biometric identification creates a concentrated set of buyer organizations with both the regulatory need and the budget to address it. The December 2027 deadline means serious procurement conversations will begin in earnest in 2026 and early 2027.

The broader competitive question is whether the major observability vendors or the agent framework providers move into the verifiable execution and runtime authorization space. If they do, Diagrid’s moat narrows to its Dapr-native architecture and air-gapped deployment capability. If they don’t, and the evidence so far suggests they won’t quickly, Diagrid has a meaningful window to establish itself as the compliance infrastructure layer for high-risk agentic AI in regulated industries. The IETF SCITT standardization process will be a useful signal: if Agent Action Capsule profiles gain traction, the vendor that ships conformant tooling first will have a material advantage in the compliance conversation.

Authors

  • Paul Nashawaty

    Paul Nashawaty, Practice Leader and Lead Principal Analyst, specializes in application modernization across build, release and operations. With a wealth of expertise in digital transformation initiatives spanning front-end and back-end systems, he also possesses comprehensive knowledge of the underlying infrastructure ecosystem crucial for supporting modernization endeavors. With over 25 years of experience, Paul has a proven track record in implementing effective go-to-market strategies, including the identification of new market channels, the growth and cultivation of partner ecosystems, and the successful execution of strategic plans resulting in positive business outcomes for his clients.

    View all posts
  • With over 15 years of hands-on experience in operations roles across legal, financial, and technology sectors, Sam Weston brings deep expertise in the systems that power modern enterprises such as ERP, CRM, HCM, CX, and beyond. Her career has spanned the full spectrum of enterprise applications, from optimizing business processes and managing platforms to leading digital transformation initiatives.

    Sam has transitioned her expertise into the analyst arena, focusing on enterprise applications and the evolving role they play in business productivity and transformation. She provides independent insights that bridge technology capabilities with business outcomes, helping organizations and vendors alike navigate a changing enterprise software landscape.

    View all posts