Human-in-the-Loop

TL;DR: An approval workflow requiring explicit human authorization before an AI agent takes high-risk actions.

What it is

Human-in-the-loop (HITL) is a control mechanism where ambiguous or high-severity agent actions are paused and escalated to human review before execution. The agent cannot continue until a human approves, denies, or modifies the action.

HITL sits between pure automation (agent makes all decisions) and pure manual (human makes all decisions). It preserves agent autonomy for routine tasks while enforcing human oversight for consequential decisions.

Why it matters

Agents are non-deterministic. An agent might attempt an action that isn't clearly allowed or clearly denied by policy rules. It might be attempting something legitimate in an unusual way, or it might be attempting something harmful. A human reviewer can make that judgment faster than encoding it into increasingly complex policy rules.

HITL also provides accountability. If an agent deletes important data, the audit trail shows whether the action was human-approved or auto-allowed. Regulators and auditors care about that distinction.

How it works

When the proxy evaluates a tool call against policy and determines that the action requires escalation (either because it matches a medium-severity pattern or because the policy is configured to escalate that type of action), the proxy pauses the tool call and notifies the human-in-the-loop system.

A notification is sent to the SOC team with context: agent ID, action attempted, reason for escalation, timestamp, severity. The human reviewer examines the context and makes a decision: approve, deny, or modify the action. The decision is logged in the audit trail and returned to the agent as a structured response.

How Intercis implements it

Intercis provides severity-based escalation. Policy matches rated medium or high severity are escalated to your SOC for approval. Critical severity matches auto-terminate the session. Your SOC team accesses a dashboard showing pending escalations with full context. They can approve, deny, or temporarily modify the agent's scope and re-approve.

Every escalation decision is logged and timestamped. OWASP T10 (Overwhelming Human-in-the-Loop) is mitigated through intelligent severity scoring — not every pattern generates an escalation, so humans aren't buried in notifications.

Related terms

See how Intercis implements human-in-the-loop approval workflows for agent escalations.

Request a demo
Back to glossary