Delegation Chain

The cryptographic trail that records how a capability token was passed from one agent to another. Every link in the chain is signed, so any verifier can trace the authority back to its root issuer and confirm that no link exceeded its parent's permissions.