Powered by OpenAIRE graph
Found an issue? Give us feedback
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/ ZENODOarrow_drop_down
image/svg+xml art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos Open Access logo, converted into svg, designed by PLoS. This version with transparent background. http://commons.wikimedia.org/wiki/File:Open_Access_logo_PLoS_white.svg art designer at PLoS, modified by Wikipedia users Nina, Beao, JakobVoss, and AnonMoos http://www.plos.org/
ZENODO
Other literature type . 2026
License: CC BY
Data sources: ZENODO
https://doi.org/10.2139/ssrn.6...
Article . 2026 . Peer-reviewed
Data sources: Crossref
ZENODO
Other literature type . 2026
License: CC BY
Data sources: Datacite
ZENODO
Other literature type . 2026
License: CC BY
Data sources: Datacite
versions View all 3 versions
addClaim

Authorization as a Missing Layer in Digital Systems

Authors: Julner, Mats Heming;

Authorization as a Missing Layer in Digital Systems

Abstract

This paper examines a structural omission in modern digital systems: the absence of authorization as an explicit, first-class layer independent of execution. Contemporary architectures overwhelmingly model behavior as execution flows, embedding authorization as a conditional check evaluated at the moment of action. This collapse prevents systems from representing intent that exists prior to, independent of, or without execution. The paper argues that authorization must be modeled as a persistent, time-bounded, and revocable object that precedes execution. When authorization is treated as an object rather than a condition, systems regain the ability to distinguish intent from action, allow permission to exist without immediate execution, and support non-action, expiration, and revocation as valid states. A range of recurring failures across finance, automation, artificial intelligence, and human-facing software are shown to arise from the same architectural omission: execution continuing after the authority that justified it has expired. Recent financial systems are used as a proof domain demonstrating that authorization can be formalized prior to execution, with execution functioning solely as settlement. The paper does not propose a product, protocol, or policy. It identifies a missing layer that digital systems already assume but have not explicitly modeled, and shows how its absence explains a broad class of coordination and safety failures across domains.

Keywords

execution, authorization, consent, system architecture, intent, digital systems, automation

  • BIP!
    Impact byBIP!
    selected citations
    These citations are derived from selected sources.
    This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
    0
    popularity
    This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
    Average
    influence
    This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
    Average
    impulse
    This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.
    Average
Powered by OpenAIRE graph
Found an issue? Give us feedback
selected citations
These citations are derived from selected sources.
This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
BIP!Citations provided by BIP!
popularity
This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.
BIP!Popularity provided by BIP!
influence
This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).
BIP!Influence provided by BIP!
impulse
This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.
BIP!Impulse provided by BIP!
0
Average
Average
Average
Green