Examples
Identity Only Pattern

Identity Only Pattern

The Identity Only pattern is ideal for AI agents that need secure identity and audit trails without complex policy rules or agent-to-agent communication. This pattern is commonly used in enterprise customer service scenarios.

Use Case: Enterprise Customer Service AI

This pattern demonstrates secure identity for AI agents that:

  • Handle sensitive customer interactions
  • Access multiple enterprise systems
  • Maintain secure audit trails
  • Process confidential customer data
// Example using LangChain (works with any framework)
const customerServiceAgent = await secureConnect(
  new LangChain.Agent({
    name: "customer_service_ai",
    llm: new OpenAI({ temperature: 0 }),
    tools: [
      customerDataTool,
      billingSystemTool,
      orderManagementTool,
      supportTicketTool
    ]
  }), 
  {
    spiffe: {
      trustDomain: "enterprise.customer.service",
      keyDir: "/path/to/key/dir"
    }
  }
);
 
// Usage example
async function handleCustomerInquiry(customerId, inquiry) {
  // Verify agent identity before accessing customer data
  const agentId = await customerServiceAgent.getIdentity();
  
  // Log secure session with verified identity
  await logCustomerSession({
    event: "INQUIRY_START",
    customerId: customerId,
    agentId: agentId,
    timestamp: new Date()
  });
 
  try {
    // Process inquiry with secure system access
    const resolution = await customerServiceAgent.resolveInquiry({
      customer: customerData,
      inquiry: inquiry,
      systemAccess: {
        billing: true,
        orders: true,
        support: true
      }
    });
    
    return {
      resolution: resolution.response,
      ticket: resolution.ticketId,
      audit: {
        agentId: agentId,
        timestamp: new Date(),
        accessLog: resolution.accessLog
      }
    };
  } catch (error) {
    await logCustomerSession({
      event: "INQUIRY_ERROR",
      customerId: customerId,
      agentId: agentId,
      error: error.message,
      timestamp: new Date()
    });
    throw error;
  }
}

Real-World Applications

  1. Enterprise Customer Support

    • Secure customer data handling
    • Multi-system secure access
    • Complete interaction audit trail
    • Verified system operations

  2. Financial Account Management

    • Secure transaction processing
    • Identity-verified operations
    • Cross-system account access
    • Complete audit compliance

  3. Healthcare Patient Support

    • HIPAA-compliant data access
    • Secure patient interactions
    • Multi-department coordination
    • Complete medical record tracking
Security CapabilitiesIdentity + Policy Pattern