Secure collaboration, without centralised identity
To enable collaboration at scale, SEAF uses a federated identity model.
Each participating organisation continues to verify and manage its own users through its existing identity systems. SEAF accepts these authentication assertions and applies access controls at the platform level.
Under this model:
- Access to specific zones is granted through organisational nomination and approval
- Permissions are role-based and purpose-specific
- All access is logged and reviewable
This allows organisations to retain responsibility for their staff while enabling controlled collaboration across institutional boundaries.
Participants interact with analytical environments through approved tools and interfaces.
Integration is governed by:
- Authentication and authorisation requirements
- Enforcement of zone-specific permissions
- Adherence to data licensing conditions
- Restrictions on unapproved technologies
Only technologies that meet security, interoperability and sustainability requirements are permitted.
Exceptions may be considered, but only through a formal approval process. This approach reduces cybersecurity risk, avoids fragmentation and ensures that analytical workflows remain portable and auditable.
