diff --git a/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.pb.go b/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.pb.go
index a890d55..5d078b3 100644
--- a/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.pb.go
+++ b/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.pb.go
@@ -9,6 +9,7 @@ package v1
 import (
 	protoreflect "google.golang.org/protobuf/reflect/protoreflect"
 	protoimpl "google.golang.org/protobuf/runtime/protoimpl"
+	anypb "google.golang.org/protobuf/types/known/anypb"
 	reflect "reflect"
 	sync "sync"
 	unsafe "unsafe"
@@ -112,17 +113,116 @@ func (x *AttestResponse) GetSelectorValues() []string {
 	return nil
 }
 
+type AttestReferenceRequest struct {
+	state protoimpl.MessageState `protogen:"open.v1"`
+	// Required. Reference to the workload to be attested. The packed message
+	// is one of the WorkloadReference reference types defined by the SPIFFE
+	// Broker API specification (e.g. WorkloadPIDReference,
+	// KubernetesObjectReference) or a vendor-specific extension type.
+	Reference     *anypb.Any `protobuf:"bytes,1,opt,name=reference,proto3" json:"reference,omitempty"`
+	unknownFields protoimpl.UnknownFields
+	sizeCache     protoimpl.SizeCache
+}
+
+func (x *AttestReferenceRequest) Reset() {
+	*x = AttestReferenceRequest{}
+	mi := &file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_msgTypes[2]
+	ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
+	ms.StoreMessageInfo(mi)
+}
+
+func (x *AttestReferenceRequest) String() string {
+	return protoimpl.X.MessageStringOf(x)
+}
+
+func (*AttestReferenceRequest) ProtoMessage() {}
+
+func (x *AttestReferenceRequest) ProtoReflect() protoreflect.Message {
+	mi := &file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_msgTypes[2]
+	if x != nil {
+		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
+		if ms.LoadMessageInfo() == nil {
+			ms.StoreMessageInfo(mi)
+		}
+		return ms
+	}
+	return mi.MessageOf(x)
+}
+
+// Deprecated: Use AttestReferenceRequest.ProtoReflect.Descriptor instead.
+func (*AttestReferenceRequest) Descriptor() ([]byte, []int) {
+	return file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDescGZIP(), []int{2}
+}
+
+func (x *AttestReferenceRequest) GetReference() *anypb.Any {
+	if x != nil {
+		return x.Reference
+	}
+	return nil
+}
+
+type AttestReferenceResponse struct {
+	state protoimpl.MessageState `protogen:"open.v1"`
+	// Optional. Selector values related to the attested workload. The type
+	// of the selector is inferred from the plugin name.
+	SelectorValues []string `protobuf:"bytes,1,rep,name=selector_values,json=selectorValues,proto3" json:"selector_values,omitempty"`
+	unknownFields  protoimpl.UnknownFields
+	sizeCache      protoimpl.SizeCache
+}
+
+func (x *AttestReferenceResponse) Reset() {
+	*x = AttestReferenceResponse{}
+	mi := &file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_msgTypes[3]
+	ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
+	ms.StoreMessageInfo(mi)
+}
+
+func (x *AttestReferenceResponse) String() string {
+	return protoimpl.X.MessageStringOf(x)
+}
+
+func (*AttestReferenceResponse) ProtoMessage() {}
+
+func (x *AttestReferenceResponse) ProtoReflect() protoreflect.Message {
+	mi := &file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_msgTypes[3]
+	if x != nil {
+		ms := protoimpl.X.MessageStateOf(protoimpl.Pointer(x))
+		if ms.LoadMessageInfo() == nil {
+			ms.StoreMessageInfo(mi)
+		}
+		return ms
+	}
+	return mi.MessageOf(x)
+}
+
+// Deprecated: Use AttestReferenceResponse.ProtoReflect.Descriptor instead.
+func (*AttestReferenceResponse) Descriptor() ([]byte, []int) {
+	return file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDescGZIP(), []int{3}
+}
+
+func (x *AttestReferenceResponse) GetSelectorValues() []string {
+	if x != nil {
+		return x.SelectorValues
+	}
+	return nil
+}
+
 var File_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto protoreflect.FileDescriptor
 
 const file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDesc = "" +
 	"\n" +
-	"=spire/plugin/agent/workloadattestor/v1/workloadattestor.proto\x12&spire.plugin.agent.workloadattestor.v1\"!\n" +
+	"=spire/plugin/agent/workloadattestor/v1/workloadattestor.proto\x12&spire.plugin.agent.workloadattestor.v1\x1a\x19google/protobuf/any.proto\"!\n" +
 	"\rAttestRequest\x12\x10\n" +
 	"\x03pid\x18\x01 \x01(\x05R\x03pid\"9\n" +
 	"\x0eAttestResponse\x12'\n" +
-	"\x0fselector_values\x18\x01 \x03(\tR\x0eselectorValues2\x8b\x01\n" +
+	"\x0fselector_values\x18\x01 \x03(\tR\x0eselectorValues\"L\n" +
+	"\x16AttestReferenceRequest\x122\n" +
+	"\treference\x18\x01 \x01(\v2\x14.google.protobuf.AnyR\treference\"B\n" +
+	"\x17AttestReferenceResponse\x12'\n" +
+	"\x0fselector_values\x18\x01 \x03(\tR\x0eselectorValues2\xa0\x02\n" +
 	"\x10WorkloadAttestor\x12w\n" +
-	"\x06Attest\x125.spire.plugin.agent.workloadattestor.v1.AttestRequest\x1a6.spire.plugin.agent.workloadattestor.v1.AttestResponseBQZOgithub.com/spiffe/spire-plugin-sdk/proto/spire/plugin/agent/workloadattestor/v1b\x06proto3"
+	"\x06Attest\x125.spire.plugin.agent.workloadattestor.v1.AttestRequest\x1a6.spire.plugin.agent.workloadattestor.v1.AttestResponse\x12\x92\x01\n" +
+	"\x0fAttestReference\x12>.spire.plugin.agent.workloadattestor.v1.AttestReferenceRequest\x1a?.spire.plugin.agent.workloadattestor.v1.AttestReferenceResponseBQZOgithub.com/spiffe/spire-plugin-sdk/proto/spire/plugin/agent/workloadattestor/v1b\x06proto3"
 
 var (
 	file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDescOnce sync.Once
@@ -136,19 +236,25 @@ func file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDescG
 	return file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDescData
 }
 
-var file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_msgTypes = make([]protoimpl.MessageInfo, 2)
+var file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_msgTypes = make([]protoimpl.MessageInfo, 4)
 var file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_goTypes = []any{
-	(*AttestRequest)(nil),  // 0: spire.plugin.agent.workloadattestor.v1.AttestRequest
-	(*AttestResponse)(nil), // 1: spire.plugin.agent.workloadattestor.v1.AttestResponse
+	(*AttestRequest)(nil),           // 0: spire.plugin.agent.workloadattestor.v1.AttestRequest
+	(*AttestResponse)(nil),          // 1: spire.plugin.agent.workloadattestor.v1.AttestResponse
+	(*AttestReferenceRequest)(nil),  // 2: spire.plugin.agent.workloadattestor.v1.AttestReferenceRequest
+	(*AttestReferenceResponse)(nil), // 3: spire.plugin.agent.workloadattestor.v1.AttestReferenceResponse
+	(*anypb.Any)(nil),               // 4: google.protobuf.Any
 }
 var file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_depIdxs = []int32{
-	0, // 0: spire.plugin.agent.workloadattestor.v1.WorkloadAttestor.Attest:input_type -> spire.plugin.agent.workloadattestor.v1.AttestRequest
-	1, // 1: spire.plugin.agent.workloadattestor.v1.WorkloadAttestor.Attest:output_type -> spire.plugin.agent.workloadattestor.v1.AttestResponse
-	1, // [1:2] is the sub-list for method output_type
-	0, // [0:1] is the sub-list for method input_type
-	0, // [0:0] is the sub-list for extension type_name
-	0, // [0:0] is the sub-list for extension extendee
-	0, // [0:0] is the sub-list for field type_name
+	4, // 0: spire.plugin.agent.workloadattestor.v1.AttestReferenceRequest.reference:type_name -> google.protobuf.Any
+	0, // 1: spire.plugin.agent.workloadattestor.v1.WorkloadAttestor.Attest:input_type -> spire.plugin.agent.workloadattestor.v1.AttestRequest
+	2, // 2: spire.plugin.agent.workloadattestor.v1.WorkloadAttestor.AttestReference:input_type -> spire.plugin.agent.workloadattestor.v1.AttestReferenceRequest
+	1, // 3: spire.plugin.agent.workloadattestor.v1.WorkloadAttestor.Attest:output_type -> spire.plugin.agent.workloadattestor.v1.AttestResponse
+	3, // 4: spire.plugin.agent.workloadattestor.v1.WorkloadAttestor.AttestReference:output_type -> spire.plugin.agent.workloadattestor.v1.AttestReferenceResponse
+	3, // [3:5] is the sub-list for method output_type
+	1, // [1:3] is the sub-list for method input_type
+	1, // [1:1] is the sub-list for extension type_name
+	1, // [1:1] is the sub-list for extension extendee
+	0, // [0:1] is the sub-list for field type_name
 }
 
 func init() { file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_init() }
@@ -162,7 +268,7 @@ func file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_init() {
 			GoPackagePath: reflect.TypeOf(x{}).PkgPath(),
 			RawDescriptor: unsafe.Slice(unsafe.StringData(file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDesc), len(file_spire_plugin_agent_workloadattestor_v1_workloadattestor_proto_rawDesc)),
 			NumEnums:      0,
-			NumMessages:   2,
+			NumMessages:   4,
 			NumExtensions: 0,
 			NumServices:   1,
 		},
diff --git a/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.proto b/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.proto
index ed0e158..a9b5aba 100644
--- a/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.proto
+++ b/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor.proto
@@ -2,6 +2,8 @@ syntax = "proto3";
 package spire.plugin.agent.workloadattestor.v1;
 option go_package = "github.com/spiffe/spire-plugin-sdk/proto/spire/plugin/agent/workloadattestor/v1";
 
+import "google/protobuf/any.proto";
+
 service WorkloadAttestor {
     // Attests the specified workload process. If the process is not one the
     // attestor is in a position to attest (e.g. k8s attestor attesting a
@@ -10,6 +12,17 @@ service WorkloadAttestor {
     // fails to gather all selectors related to that workload, the call will
     // fail. Otherwise the attestor will return one or more workload selectors.
     rpc Attest(AttestRequest) returns (AttestResponse);
+
+    // Attests a workload identified by an opaque reference (e.g. a process
+    // ID, a Kubernetes object reference, etc.). The reference's type URL is
+    // taken from the SPIFFE Broker API specification's WorkloadReference and
+    // delivered verbatim. Plugins that do not understand the supplied
+    // reference type SHOULD return Unimplemented; the host will fall back to
+    // Attest(pid) when the reference is a WorkloadPIDReference. Likewise,
+    // plugins that have not yet implemented this RPC will return Unimplemented
+    // automatically (via UnimplementedWorkloadAttestorServer or unknown-method
+    // dispatch in older binaries), allowing the host to fall back to Attest.
+    rpc AttestReference(AttestReferenceRequest) returns (AttestReferenceResponse);
 }
 
 message AttestRequest {
@@ -22,3 +35,17 @@ message AttestResponse {
     // of the selector is inferred from the plugin name.
     repeated string selector_values = 1;
 }
+
+message AttestReferenceRequest {
+    // Required. Reference to the workload to be attested. The packed message
+    // is one of the WorkloadReference reference types defined by the SPIFFE
+    // Broker API specification (e.g. WorkloadPIDReference,
+    // KubernetesObjectReference) or a vendor-specific extension type.
+    google.protobuf.Any reference = 1;
+}
+
+message AttestReferenceResponse {
+    // Optional. Selector values related to the attested workload. The type
+    // of the selector is inferred from the plugin name.
+    repeated string selector_values = 1;
+}
diff --git a/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor_grpc.pb.go b/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor_grpc.pb.go
index fa194ad..9795b31 100644
--- a/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor_grpc.pb.go
+++ b/proto/spire/plugin/agent/workloadattestor/v1/workloadattestor_grpc.pb.go
@@ -19,7 +19,8 @@ import (
 const _ = grpc.SupportPackageIsVersion9
 
 const (
-	WorkloadAttestor_Attest_FullMethodName = "/spire.plugin.agent.workloadattestor.v1.WorkloadAttestor/Attest"
+	WorkloadAttestor_Attest_FullMethodName          = "/spire.plugin.agent.workloadattestor.v1.WorkloadAttestor/Attest"
+	WorkloadAttestor_AttestReference_FullMethodName = "/spire.plugin.agent.workloadattestor.v1.WorkloadAttestor/AttestReference"
 )
 
 // WorkloadAttestorClient is the client API for WorkloadAttestor service.
@@ -33,6 +34,16 @@ type WorkloadAttestorClient interface {
 	// fails to gather all selectors related to that workload, the call will
 	// fail. Otherwise the attestor will return one or more workload selectors.
 	Attest(ctx context.Context, in *AttestRequest, opts ...grpc.CallOption) (*AttestResponse, error)
+	// Attests a workload identified by an opaque reference (e.g. a process
+	// ID, a Kubernetes object reference, etc.). The reference's type URL is
+	// taken from the SPIFFE Broker API specification's WorkloadReference and
+	// delivered verbatim. Plugins that do not understand the supplied
+	// reference type SHOULD return Unimplemented; the host will fall back to
+	// Attest(pid) when the reference is a WorkloadPIDReference. Likewise,
+	// plugins that have not yet implemented this RPC will return Unimplemented
+	// automatically (via UnimplementedWorkloadAttestorServer or unknown-method
+	// dispatch in older binaries), allowing the host to fall back to Attest.
+	AttestReference(ctx context.Context, in *AttestReferenceRequest, opts ...grpc.CallOption) (*AttestReferenceResponse, error)
 }
 
 type workloadAttestorClient struct {
@@ -53,6 +64,16 @@ func (c *workloadAttestorClient) Attest(ctx context.Context, in *AttestRequest,
 	return out, nil
 }
 
+func (c *workloadAttestorClient) AttestReference(ctx context.Context, in *AttestReferenceRequest, opts ...grpc.CallOption) (*AttestReferenceResponse, error) {
+	cOpts := append([]grpc.CallOption{grpc.StaticMethod()}, opts...)
+	out := new(AttestReferenceResponse)
+	err := c.cc.Invoke(ctx, WorkloadAttestor_AttestReference_FullMethodName, in, out, cOpts...)
+	if err != nil {
+		return nil, err
+	}
+	return out, nil
+}
+
 // WorkloadAttestorServer is the server API for WorkloadAttestor service.
 // All implementations must embed UnimplementedWorkloadAttestorServer
 // for forward compatibility.
@@ -64,6 +85,16 @@ type WorkloadAttestorServer interface {
 	// fails to gather all selectors related to that workload, the call will
 	// fail. Otherwise the attestor will return one or more workload selectors.
 	Attest(context.Context, *AttestRequest) (*AttestResponse, error)
+	// Attests a workload identified by an opaque reference (e.g. a process
+	// ID, a Kubernetes object reference, etc.). The reference's type URL is
+	// taken from the SPIFFE Broker API specification's WorkloadReference and
+	// delivered verbatim. Plugins that do not understand the supplied
+	// reference type SHOULD return Unimplemented; the host will fall back to
+	// Attest(pid) when the reference is a WorkloadPIDReference. Likewise,
+	// plugins that have not yet implemented this RPC will return Unimplemented
+	// automatically (via UnimplementedWorkloadAttestorServer or unknown-method
+	// dispatch in older binaries), allowing the host to fall back to Attest.
+	AttestReference(context.Context, *AttestReferenceRequest) (*AttestReferenceResponse, error)
 	mustEmbedUnimplementedWorkloadAttestorServer()
 }
 
@@ -77,6 +108,9 @@ type UnimplementedWorkloadAttestorServer struct{}
 func (UnimplementedWorkloadAttestorServer) Attest(context.Context, *AttestRequest) (*AttestResponse, error) {
 	return nil, status.Errorf(codes.Unimplemented, "method Attest not implemented")
 }
+func (UnimplementedWorkloadAttestorServer) AttestReference(context.Context, *AttestReferenceRequest) (*AttestReferenceResponse, error) {
+	return nil, status.Errorf(codes.Unimplemented, "method AttestReference not implemented")
+}
 func (UnimplementedWorkloadAttestorServer) mustEmbedUnimplementedWorkloadAttestorServer() {}
 func (UnimplementedWorkloadAttestorServer) testEmbeddedByValue()                          {}
 
@@ -116,6 +150,24 @@ func _WorkloadAttestor_Attest_Handler(srv interface{}, ctx context.Context, dec
 	return interceptor(ctx, in, info, handler)
 }
 
+func _WorkloadAttestor_AttestReference_Handler(srv interface{}, ctx context.Context, dec func(interface{}) error, interceptor grpc.UnaryServerInterceptor) (interface{}, error) {
+	in := new(AttestReferenceRequest)
+	if err := dec(in); err != nil {
+		return nil, err
+	}
+	if interceptor == nil {
+		return srv.(WorkloadAttestorServer).AttestReference(ctx, in)
+	}
+	info := &grpc.UnaryServerInfo{
+		Server:     srv,
+		FullMethod: WorkloadAttestor_AttestReference_FullMethodName,
+	}
+	handler := func(ctx context.Context, req interface{}) (interface{}, error) {
+		return srv.(WorkloadAttestorServer).AttestReference(ctx, req.(*AttestReferenceRequest))
+	}
+	return interceptor(ctx, in, info, handler)
+}
+
 // WorkloadAttestor_ServiceDesc is the grpc.ServiceDesc for WorkloadAttestor service.
 // It's only intended for direct use with grpc.RegisterService,
 // and not to be introspected or modified (even as a copy)
@@ -127,6 +179,10 @@ var WorkloadAttestor_ServiceDesc = grpc.ServiceDesc{
 			MethodName: "Attest",
 			Handler:    _WorkloadAttestor_Attest_Handler,
 		},
+		{
+			MethodName: "AttestReference",
+			Handler:    _WorkloadAttestor_AttestReference_Handler,
+		},
 	},
 	Streams:  []grpc.StreamDesc{},
 	Metadata: "spire/plugin/agent/workloadattestor/v1/workloadattestor.proto",