Date: Aug 28, 2025

Audience: Product, Security, Platform, and Partner Engineering teams at clouds, model labs, SIs, and enterprise vendors.

Scope: A practical, interoperable path to implement Appointed Intelligence™ using today’s identity and authorization rails. The control profile is open; the badge (Appointed Intelligence Certified™) requires certification.

0) At‑a‑Glance (what you build)

• Appointment of an agent to act on behalf of a principal, with scope + TTL.
• AAAT (Appointed Authority & Action Token) — JWT that carries appointment metadata.
• OBO token — short‑lived access token minted via OAuth2 Token Exchange (RFC 8693) or platform equivalent, with principal as subject and agent as actor.
• Appointed Receipts — signed, immutable evidence for sensitive actions.
• Revocation — fast kill/rollback for appointments and keys; SIEM‑visible.

Normative keywords

MUST/SHOULD/MAY are used as in RFC 2119.

1) Reference model & actors

• Principal (PRN) — identity on whose behalf work is done (user/org).
• Agent (AGN) — software or robot executing actions.
• Appointing Authority (AA) — issues and attests appointments.
• Policy Engine (PE) — evaluates guardrails; produces policy hash.