The zkTLS trust boundary, explorable: switch between Plain TLS, MPC-TLS, Proxy-TLS and TEE-TLS to see where the session key lives and whom you must trust, then hit "forge the value" — plain TLS accepts the lie, the other three catch it at different costs.
An AI agent that acts on your bank balance has to prove it saw that balance — without a trusted API. zkTLS turns any HTTPS session into a portable proof. We dissect MPC-TLS vs proxy vs TEE, the real TLSNotary benchmarks, and read Reclaim's on-chain verifier on Base down to its single attestor.