A delegated transaction is a purchase or account action performed by software under some level of user authority. In practice, the key governance question is whether the delegation scope is explicit, bounded and revocable, especially when the action touches payment, returns or subscription changes.
Expanded Definition
A delegated transaction is best understood as a scoped authorisation pattern, not a blanket permission to act on behalf of a person. The software may initiate a purchase, submit a return, modify a subscription, or trigger another account action, but only within the bounds the user approved. In governance terms, the critical distinction is whether the delegation is explicit, bounded, time-limited, and revocable. That aligns closely with control expectations in NIST SP 800-53 Rev 5 Security and Privacy Controls, especially where systems must constrain actions to approved purposes and protect against misuse of delegated authority.
Definitions vary across vendors because some platforms treat delegated transactions as a checkout convenience, while others frame them as a broader identity and consent mechanism for AI agents and service workflows. For NHIMG, the security question is whether the delegated action can be verified, limited, and audited after the fact. That becomes especially important when the same workflow can move money, change an entitlement, or expose personal data. The most common misapplication is treating a one-time user consent as ongoing authority, which occurs when the delegated software can repeat sensitive actions without a fresh approval boundary.
Examples and Use Cases
Implementing delegated transactions rigorously often introduces user-friction and policy overhead, requiring organisations to weigh convenience against the risk of overbroad automation.
- An AI shopping assistant completes a purchase only after the user approves the item, merchant, amount ceiling, and expiry window.
- A customer support bot processes a return label within a preset policy, but cannot issue refunds unless a human authorises the final step.
- A subscription manager renews a service on behalf of a user, yet the delegation expires after the billing cycle and must be re-confirmed.
- An enterprise procurement workflow lets software submit a low-risk order under delegated authority, while high-value orders route to manual review.
- A finance automation agent reconciles invoices and drafts payment actions, but release requires a second control before transfer execution.
These patterns are becoming more visible as autonomous tooling expands. NHIMG notes that the Ultimate Guide to NHIs reports 97% of NHIs carry excessive privileges, which is a useful warning for delegated workflows that quietly accumulate broader authority over time. For implementation guidance around constrained control and auditability, teams also look to NIST SP 800-53 Rev 5 Security and Privacy Controls when designing approval checkpoints and revocation paths.
Why It Matters for Security Teams
Delegated transactions matter because they blur the boundary between user intent and machine execution. If the delegation scope is vague, expired, or hard to revoke, the software can continue acting with authority the user never meant to extend. That creates exposure across fraud, account takeover, unauthorised refunds, subscription drift, and privacy violations. In NHI terms, delegated transactions are especially relevant when software acts as a non-human executor with access to secrets, tokens, payment rails, or account APIs. The operational risk is not just that a task succeeds, but that it succeeds after the original business need has changed.
NHIMG research shows the broader pattern behind this risk: only 20% of organisations have formal processes for offboarding and revoking API keys, and even fewer rotate them reliably, according to the Ultimate Guide to NHIs. When delegated authority is left in place too long, it behaves like a standing privilege rather than a temporary permission. Security teams therefore need revocation logic, transaction logging, and step-up approval for higher-risk actions. Organisations typically encounter the real impact only after a disputed charge, unauthorised account change, or agent-driven misuse, at which point delegated transaction controls become operationally unavoidable to address.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Agentic AI Top 10 and OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0, NIST SP 800-53 Rev 5 and NIST SP 800-63 set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| NIST CSF 2.0 | PR.AC-4 | Delegated transactions depend on limiting access to the exact approved action scope. |
| NIST SP 800-53 Rev 5 | AC-6 | Least privilege is central when software acts under user authority for account actions. |
| OWASP Agentic AI Top 10 | Agentic systems need bounded authority and human-approved action limits. | |
| OWASP Non-Human Identity Top 10 | Delegated software commonly relies on non-human credentials and inherited authority. | |
| NIST SP 800-63 | AAL2 | Higher-assurance identity checks help validate sensitive delegated actions. |
Require explicit approval, scope limits, and revocation for agent-executed transactions.