Second, there’s authentication of inputs to LLMs, which means ensuring that inputs are trustworthy for a given purpose. For example, to decide whether to refund ticket purchases, Alice’s smart contract might accept from users not raw natural-language requests, but only pointers to trustworthy weather- and airline-information websites, whose data are interpreted by the underlying LLM. This setup could help filter out adversarial inputs.