The EU and the White House published documents about AI accountability in the same week. Different problems. Different angles. The same gap underneath both. [N]

"AI Agents Under EU Law" — April 7, 2026. 50 pages mapping what the EU AI Act, GDPR, and product liability law require when autonomous agents act on behalf of humans.

https://arxiv.org/pdf/2604.04604

Then April 23: White House OSTP memo on "Adversarial Distillation of American AI Models." Foreign entities running industrial-scale campaigns using tens of thousands of proxy accounts to extract capabilities from US frontier AI models. The administration says it will hold the actors accountable.

https://www.whitehouse.gov/wp-content/uploads/2026/04/NSTM-4.pdf

Both documents have the same thing buried in them. Enforcement requires proof. Right now, proof doesn't exist.

The EU paper maps every agent deployment to specific legal obligations. Your coding agent that commits to repos and deploys to staging? CRA territory. Open-ended code execution "explicitly flagged as risk."

Fewer than 20% of AI agent developers disclose formal safety policies. Fewer than 10% report external safety evaluations (MIT researchers https://arxiv.org/html/2502.01635v1 ) . Every enforcement solution sits behind a line labeled: "Enforcement Boundary: Outside the Model Inference Process." Nobody is building what's on the other side of that line.

ssume the law is written perfectly. An agent swarm runs overnight. Something goes wrong. A regulator shows up. "Show me what your agents did." You hand them a log file from your own infrastructure. Mutable after the fact. Vendor-controlled. That's not proof. That's testimony.

Section 8.2 names it: "action-chain auditability." For multi-step chains, the paper calls this "an unsolved engineering problem that requires investment in runtime observability infrastructure that most current agent architectures lack."

Now read the White House memo with that framing. The administration wants to hold foreign actors accountable for industrial-scale model extraction. But if you can't prove which API calls were part of a coordinated campaign versus legitimate use, you have suspicion. Not proof. You can't demonstrate attribution to a legal standard.

The EU says: prove what your agents did. The White House says: prove who stole your model. Both require a tamper-proof, independently verifiable record of what happened — that a third party can verify without trusting your infrastructure.

From the EU paper's Key Observations: "Agentic systems are partially but not fully addressed... Providers should not treat the current standards as fully sufficient." Five distinct agentic threat categories. Standards address two.

Two governments. Two different problems. One missing infrastructure layer. The legal frameworks are arriving faster than the technical ones.

Is anyone building seriously in this space? Not observability dashboards. Not evaluation pipelines. The thing that produces proof the kind you hand to a regulator and say "verify this yourself, without trusting our infrastructure." Genuinely curious what's out there.