https://notes.karlmcguinness.com/tags/intent-based-access-control/Recent content in Intent-Based Access Control on Control Plane by Karl McGuinnessHugoen-uspublic@karlmcguinness.com (Karl McGuinness)public@karlmcguinness.com (Karl McGuinness)Mon, 01 Jun 2026 09:00:00 -0700https://notes.karlmcguinness.com/notes/mission-bound-oauth-runtime-enforcement-profile/Mon, 01 Jun 2026 09:00:00 -0700public@karlmcguinness.com (Karl McGuinness)https://notes.karlmcguinness.com/notes/mission-bound-oauth-runtime-enforcement-profile/The MVP binds OAuth tokens to a durable Mission record. This profile adds the runtime layer: AS-side intent-to-policy compilation, mandatory escalation via AuthZEN, tool-and-action binding, mandatory actor chains, per-decision audit receipts, and a governed purpose registry. Modular by design: a Core enforcement contract plus Optional Modules that deployments adopt as their governance posture requires.