Skip to content
FedTrustFederated TrustDocs

Enter at least two characters.

Type to search all documentation pages and sections. Use ↑ ↓ to move, Enter to open, and Esc to close.

Platform statuses are part of the claim

People and identity

One person. Explicit authority in every context.

Federated Trust separates who a person is from what any one organization, application, or agent may do. Joining a business context does not erase personal boundaries, and signing in does not grant blanket access.

People03 chapters
01

Identity establishes the actor, not unlimited permission

Authentication answers whether the presented credential belongs to an account. Authorization still evaluates the organization, relationship, resource, action, and current policy.

Context is visible

Interfaces should identify the organization and application context in which a person is acting before a consequential action is approved.

Step-up follows risk

Sensitive actions can require stronger or more recent authentication according to the relying service’s risk decision.

Access is revocable

Membership, relationship, role, and delegated authority can change independently of the person’s identity record.

Layered RBAC, ReBAC, and ABAC decisions

Typed policy and relationship evaluation exists in code and tests. Independent Federated Trust deployment, operational evidence, and relying-party integration remain incomplete.

NIST SP 800-63-4

Governing reference for risk-based identity proofing, authentication, federation, privacy, and lifecycle decisions. Assurance outcomes are service-specific.

02

A sign-in password is not a vault secret

Authentication passwords are verified, not displayed back to the account holder or an organization. A pepper can strengthen a password verifier against database-only theft, but it does not make the original password recoverable.

Authentication recovery

Account recovery resets or replaces an authenticator after appropriate checks; it does not decrypt the old password.

Recoverable business credentials

A password or secret that a business must retain belongs in an encrypted organization vault with an explicit custody policy.

Personal material stays separate

Business recovery authority should never silently extend to a person’s private vault or unrelated credentials.

Organization custody and quorum recovery

Explicit organization-custodian and multi-party recovery workflows are planned. They never turn an authentication password into recoverable data.

NIST SP 800-63-4

Governing reference for risk-based identity proofing, authentication, federation, privacy, and lifecycle decisions. Assurance outcomes are service-specific.

03

Applications and agents act through separate grants

No inherited omnipotence

An application or AI agent does not automatically receive every permission held by the person who started it.

Purpose and time matter

Delegated authority should identify the task, audience, allowed action, resource boundary, and expiration where the integration supports it.

The resource still decides

The service holding the resource applies its own policy and can deny an otherwise valid request.