PERIMETER-ZERO - Identity and Access Service

PERIMETER-ZERO is AIC’s Identity and Access Service, designed to deliver defence-grade digital trust through service-scoped tokens, cryptographic key minting, policy-bound identities and auditable governance.

Category

Commercial

Client

Platform Initiative

Services

Service Design, Policy, Logging, Identity Architecture, API Keys, Cryptographic Trust, Access Control, Token Services, Audit Governance

Location

UK

Year

2025

TRL

7

Challenge

As organisations build more APIs, platforms, microservices and customer-facing digital products, identity becomes more than a login mechanism. It becomes the control plane for trust.

Users, organisations, services, workloads, API keys, permissions and audit policies all need to be governed in a consistent way. Static keys, uncontrolled credentials and weak service-to-service authentication can create significant security and operational risk.

For defence, government and enterprise environments, identity must be cryptographically strong, auditable, policy-bound and capable of operating across cloud, edge and sovereign networks.

Solution

PERIMETER-ZERO provides a unified zero-trust framework for authentication, authorisation and cross-domain access control.

The platform issues verifiable digital identities and scoped access tokens for users, applications and workloads. Every identity is policy-bound, every request can be cryptographically signed and every transaction can be logged for audit, verification and revocation.

The service is designed to operate as a clean-cloud managed service or as a deployable capability into private or classified networks.

Core Capabilities

Adaptive Identity Federation

PERIMETER-ZERO supports inter-agency, multi-network and multi-organisation authentication using unified zero-trust logic.

Policy-Based Access Control

Access decisions can be enforced using classification, context, organisation, service entitlement and operational role attributes.

Cryptographic Assurance

Keys and signatures provide stronger assurance over identity, service access and transaction integrity.

Scoped Service Tokens

The platform replaces uncontrolled static API keys with dynamic, per-service credentials that can expire automatically and be rotated or restricted.

Comprehensive Audit Layer

An immutable event ledger supports verification, revocation, forensic review and compliance reporting.

Offline and Edge Operation

Validation patterns can support disconnected environments through deterministic key proofs and controlled trust material.

Deployment Model

PERIMETER-ZERO can be deployed as a managed clean-cloud service or into private, sovereign or classified networks.

It is designed to integrate with Entra ID, Auth0 and internal PKI environments. SDK support can be provided for .NET, Go and Python, enabling secure integration with AIC or third-party services.

Strategic Value

PERIMETER-ZERO provides the identity backbone for a modern secure digital ecosystem.

It enables governments and enterprises to standardise identity trust across cloud, operational and tactical environments without exposing internal credentials or relying on uncontrolled third-party brokers.

The project demonstrates AIC’s wider capability in zero-trust architecture, secure API access, cryptographic trust, identity platform design and high-assurance service engineering.