---
id: "question-enterprise-access-controls"
type: "open-question"
source_timestamps: ["19:55:00", "20:15:00"]
tags: ["enterprise", "security"]
related: ["concept-three-tiers-skills", "framework-three-tier-deployment"]
resolutionPath: "The development of granular RBAC (Role-Based Access Control) within enterprise AI platforms (like Claude Enterprise or Copilot) to ensure sensitive methodology skills are only accessible to authorized teams."
sources: ["s43-file-format-agreement"]
sourceVaultSlug: "s43-file-format-agreement"
originDay: 43
---
# How will enterprises manage access to Tier 2 skills?

## Open Question

How will enterprises manage **access controls** to Tier 2 (Methodology) skills (see [[concept-three-tiers-skills]])?

## Why It Matters

Tier 2 skills encode the **proprietary craft** of senior practitioners — they are arguably the most valuable IP an organization has captured. Yet exposing them to all employees, contractors, or other agents may leak competitive moats. Conversely, locking them down too tightly destroys the compounding effect.

## Resolution Path

The development of **granular RBAC (Role-Based Access Control)** within enterprise AI platforms (Claude Enterprise, Copilot, etc.) ensuring that:

- sensitive methodology skills are only accessible to authorized teams
- audit trails record which agents invoked which skills on whose behalf
- skills can carry data-classification labels propagated through agent pipelines

## Related

- [[framework-three-tier-deployment]]
- [[action-categorize-skills]]