Load trust bundles locally, verify action envelopes offline, and enforce policy before executing operations.
At service boundaries, verify artifacts locally before forwarding requests to external providers.
Require challenge nonce for defined action types and reject missing/invalid challenge bindings.