PERIMETER-ZERO - Identity and Access Service
PERIMETER-ZERO is AIC’s Identity and Access Service, designed to deliver defence-grade digital trust through service-scoped tokens, cryptographic key minting, policy-bound identities and auditable governance.
Category
Commercial
Client
Platform Initiative
Services
Service Design, Policy, Logging, Identity Architecture, API Keys, Cryptographic Trust, Access Control, Token Services, Audit Governance
Location
UK
Year
2025
TRL
7
Challenge
As organisations build more APIs, platforms, microservices and customer-facing digital products, identity becomes more than a login mechanism. It becomes the control plane for trust.
Users, organisations, services, workloads, API keys, permissions and audit policies all need to be governed in a consistent way. Static keys, uncontrolled credentials and weak service-to-service authentication can create significant security and operational risk.
For defence, government and enterprise environments, identity must be cryptographically strong, auditable, policy-bound and capable of operating across cloud, edge and sovereign networks.
Solution
PERIMETER-ZERO provides a unified zero-trust framework for authentication, authorisation and cross-domain access control.
The platform issues verifiable digital identities and scoped access tokens for users, applications and workloads. Every identity is policy-bound, every request can be cryptographically signed and every transaction can be logged for audit, verification and revocation.
The service is designed to operate as a clean-cloud managed service or as a deployable capability into private or classified networks.
Core Capabilities
Adaptive Identity Federation
PERIMETER-ZERO supports inter-agency, multi-network and multi-organisation authentication using unified zero-trust logic.
Policy-Based Access Control
Access decisions can be enforced using classification, context, organisation, service entitlement and operational role attributes.
Cryptographic Assurance
Keys and signatures provide stronger assurance over identity, service access and transaction integrity.
Scoped Service Tokens
The platform replaces uncontrolled static API keys with dynamic, per-service credentials that can expire automatically and be rotated or restricted.
Comprehensive Audit Layer
An immutable event ledger supports verification, revocation, forensic review and compliance reporting.
Offline and Edge Operation
Validation patterns can support disconnected environments through deterministic key proofs and controlled trust material.
Deployment Model
PERIMETER-ZERO can be deployed as a managed clean-cloud service or into private, sovereign or classified networks.
It is designed to integrate with Entra ID, Auth0 and internal PKI environments. SDK support can be provided for .NET, Go and Python, enabling secure integration with AIC or third-party services.
Strategic Value
PERIMETER-ZERO provides the identity backbone for a modern secure digital ecosystem.
It enables governments and enterprises to standardise identity trust across cloud, operational and tactical environments without exposing internal credentials or relying on uncontrolled third-party brokers.
The project demonstrates AIC’s wider capability in zero-trust architecture, secure API access, cryptographic trust, identity platform design and high-assurance service engineering.