Current AI agents lack a secure, trustworthy, and interoperable infrastructure in heterogeneous protocol environments, hindering large-scale deployment and cross-domain collaboration. To address this, we propose NANDA—a decentralized architecture for enterprise-grade AI agent ecosystems—featuring the novel Zero Trust Agentic Access (ZTAA) security model and cryptographically verifiable AgentFacts capability declarations, underpinned by the Agent Visibility and Control (AVC) governance framework. NANDA employs cross-protocol gateways to unify communication across MCP, A2A, NLWeb, and HTTPS, enabling global agent discovery, identity attestation, capability verification, and compliant, coordinated execution. Experimental evaluation demonstrates significant improvements in inter-agent interoperability security and auditability. NANDA fills critical gaps in AI agent infrastructure—specifically, zero-trust governance and cross-protocol interoperability—establishing a foundation for scalable, trustworthy, and auditable AI agent ecosystems.

The proliferation of autonomous AI agents represents a paradigmatic shift from traditional web architectures toward collaborative intelligent systems requiring sophisticated mechanisms for discovery, authentication, capability verification, and secure collaboration across heterogeneous protocol environments. This paper presents a comprehensive framework addressing the fundamental infrastructure requirements for secure, trustworthy, and interoperable AI agent ecosystems. We introduce the NANDA (Networked AI Agents in a Decentralized Architecture) framework, providing global agent discovery, cryptographically verifiable capability attestation through AgentFacts, and cross-protocol interoperability across Anthropic's Modal Context Protocol (MCP), Google's Agent-to-Agent (A2A), Microsoft's NLWeb, and standard HTTPS communications. NANDA implements Zero Trust Agentic Access (ZTAA) principles, extending traditional Zero Trust Network Access (ZTNA) to address autonomous agent security challenges including capability spoofing, impersonation attacks, and sensitive data leakage. The framework defines Agent Visibility and Control (AVC) mechanisms enabling enterprise governance while maintaining operational autonomy and regulatory compliance. Our approach transforms isolated AI agents into an interconnected ecosystem of verifiable, trustworthy intelligent services, establishing foundational infrastructure for large-scale autonomous agent deployment across enterprise and consumer environments. This work addresses the critical gap between current AI agent capabilities and infrastructure requirements for secure, scalable, multi-agent collaboration, positioning the foundation for next-generation autonomous intelligent systems.