Standards
Recur Labs publishes a small set of standards. RIP-100 defines the foundational authorization primitive; RIP-001 and RIP-002 define a profile and registry infrastructure that consume it.
RIP-100 — Authorization Objects
Status: Draft
Defines Authorization Objects (AO): first-class, time-bounded, revocable authorizations that exist independently of execution.
Spec link: add your canonical RIP-100 URL in
rip-100.html when ready.
RIP-001 — Permissioned Pull Standard
Status: Stable
A standard for expressing authorization as an explicit object, decoupled from execution, enabling pull-based flows across digital systems.
Spec link: add your canonical RIP-001 URL in
rip-001.html when ready.
RIP-002 — Consent Registry
Status: Draft
A registry model for recording and observing authorization objects. Intended as an extension to RIP-001, not a replacement.
Draft link: add your canonical RIP-002 URL in
rip-002.html when ready.
Design constraints
- Authorization must be explicit (as an object), inspectable, and revocable prior to execution.
- Non-action is a valid outcome (authorization may remain unused).
- Execution systems should consume authorization objects, not define them.