Ricche Technical Note 002
Authenticated Authority Surfaces and Verified Actor Provenance
Ricche Technical Note 002 — Manfred Fuss, Founder, Ricche Ltd · June 2026.
Executive summary
Trustworthy systems must be able to answer two questions: who is permitted to act, and who can be proven to have acted? Many systems focus primarily on access control; fewer address attribution with the same level of rigour.
Ricche's governance architecture is designed around the principle that operational authority and recorded attribution are distinct concerns. Permission to perform an action, and evidence identifying the actor who performed it, must each be independently verifiable.
This note outlines the governance principles used to support authenticated authority surfaces, verified actor provenance, and audit-oriented system design. It describes the architectural approach without exposing implementation details, operational configurations, or security-sensitive information.
Governance principles
1. Authenticated authority. Operationally significant actions should be available only to authenticated and authorised principals. Authority is granted through verified identity rather than through client-supplied claims or user-provided metadata.
2. Verified attribution. The identity recorded for an action should be derived from authenticated system context rather than from externally supplied values. This distinction reduces ambiguity and strengthens confidence in operational records, investigations, and governance reviews.
3. Separation of claims and verification. Systems frequently receive descriptive information supplied by users, applications, or automated processes. Such information may be useful for operational context, but contextual claims and verified identity serve different purposes and should remain clearly distinguishable within governance records.
4. Honest verification. Verification is meaningful only when evidence supports it. Where verification is complete, it should be stated clearly. Where verification is partial, unavailable, or outside the scope of observation, those limitations should be disclosed explicitly rather than concealed behind assumptions. Ricche considers transparent uncertainty preferable to unjustified certainty.
Conceptual governance flow
This model emphasises the distinction between information supplied to a system and information independently verified by the system.
Why this matters
Governance controls are often evaluated only when something goes wrong. When attribution cannot be trusted, organisations may be unable to determine whether an action was authorised, accidental, malicious, or the result of system error.
Reliable attribution reduces uncertainty during investigation, audit, incident response, and operational review. The objective is not merely to record activity, but to record activity in a manner that supports trustworthy interpretation.
Audit-oriented design
Governance mechanisms should be capable of independent examination. Accordingly, Ricche favours designs that support:
- Independent verification
- Clear attribution boundaries
- Explicit evidence trails
- Traceable governance decisions
- Transparent limitations
Verification philosophy
A central principle of Ricche governance is that verification should be evidence-based rather than assumption-based. Where evidence demonstrates a conclusion, that conclusion may be stated confidently. Where evidence is incomplete, conclusions should remain appropriately qualified.
A system should not rely on trust alone when evidence can be provided. This approach seeks to reduce false confidence and improve the reliability of operational decision-making.
Conclusion
Trustworthy governance is not achieved by claiming certainty. It is achieved by clearly distinguishing what is known, what is verified, and what remains uncertain. Systems that preserve those distinctions provide a stronger foundation for accountability, auditability, and trustworthy operation.