Skip to main content

Concepts

The credential types, formats, and security model behind Ory Talos.

  • Architecture — editions, deployment shapes, and the design choices that matter when you adopt or operate Talos
  • Credential types — issued keys, imported keys, derived JWTs, and derived macaroons
  • Token format — the v1 format for issued API keys
  • Security model — cryptographic primitives and tenant isolation
  • Caching and consistency — verification caching and revocation propagation
  • Rate limiting — per-key rate limit policies and enforcement by edition
  • IP restrictions — CIDR allowlists that restrict which IPs can use a key