Platform Concepts

Control how agents, users, and applications access the tools and data they need.

Keycard envisions a world where people and agents work together, built on trust. The platform is what lets you stop trading agent autonomy for security, or capability for control. Identity, policy, credentials, and audit in one system.

With Keycard, you can:

Connect users, applications, and resources across trust domains
Scope agent access to the task at hand, with human approval when it escalates
Delegate permissions across chains of agents and services, every hop traced to the authorizing user
Eliminate static secrets, replacing them with ephemeral tokens and least-privilege access
Monitor and control ongoing access in real-time

Concepts

CONCEPTS

The building blocks of identity and access in Keycard.

ZONESecurity domain for your users, applications, and resources→

UsersPeople who access resources directly or delegate access to applications and agents

delegates

ApplicationsSoftware that accesses resources, autonomously or on behalf of a user

accesses

ResourcesProtected APIs, MCP servers, and databases that users and applications access

PROVIDERSIssue authentication and access credentials to users and applications, built-in or via Okta, Google, GitHub→

API Reference Terraform