30 lines
966 B
Markdown
30 lines
966 B
Markdown
---
|
||
title: "Identity Governance"
|
||
type: concept
|
||
tags: [identity, governance, multi-agent, entity-resolution]
|
||
last_updated: 2026-04-20
|
||
---
|
||
|
||
## Definition
|
||
Identity Governance 指在多智能体或多系统环境中,对实体身份的解析、归一化、合并、拆分、权限边界与审计进行统一治理的框架。
|
||
|
||
## Core Principles
|
||
- 同一实体必须收敛到同一个 canonical identity
|
||
- 身份写入必须可审计、可回滚
|
||
- 合并与拆分应优先以提案形式进入复核流程
|
||
- tenant 边界与 PII 脱敏默认启用
|
||
- 代理身份与实体身份应分层治理,避免把 agent authorization 与 entity resolution 混为一谈
|
||
- 身份/授权/证据链验证应 fail-closed
|
||
|
||
## Related Entities
|
||
- [[Identity Graph Operator]]
|
||
- [[Agentic Identity & Trust Architect]]
|
||
- [[The Agency]]
|
||
- [[AI代理(Agent)]]
|
||
|
||
## Related Concepts
|
||
- [[Audit Trail]]
|
||
- [[Zero Trust Access]]
|
||
- [[Multi-Agent-System-Reliability]]
|
||
- [[Idempotent Operation]]
|