Understanding the key concepts will help you make the most of the Vincent platform.
Abilities give Vincent apps and agents the ability to perform specific actions on your behalf, like swapping tokens, depositing into DeFi protocols, or bridging. Think of them as the individual capabilities that you can grant to applications and agents.
Each ability is designed with built-in safeguards and can only perform the exact operation it was created for. For example, a Uniswap swap ability can only execute token swaps on Uniswap, it can't access other protocols or perform different types of transactions. Abilities can work across multiple blockchains and incorporate real-world data to make smart decisions about when and how to execute any given operation.
Policies are your personal guardrails that control when and how a given ability can be executed. They act as programmable rules that must be satisfied before any action can be taken on your behalf. Examples of policies include daily spending limits, specific token allowlists, time-based restrictions, or even more complex conditions that factor in market data.
For example, you might use a policy to only allow trading when market volatility is below a certain threshold, or one that pauses all operations during specific market conditions. Policies give you complete control over how Vincent apps and agents operate on your behalf to ensure your assets stay protected according to your preferences.
Apps are collections of abilities and policies that work together to provide complete functionality for a given use case. When you authorize an app, you're giving it permission to use specific abilities according to the boundaries you've set through your policies.
Apps can only execute the exact abilities you've approved, nothing more, nothing less. Each app clearly shows which abilities and policies it needs and why, so you always know what you're authorizing before you grant access.
Your account is your secure, multi-chain wallet that facilitates all Vincent-based interactions. Each Vincent Wallet is represented by a Programmable Key Pair (PKP), a decentralized key pair managed by the Lit network.
When you interact with a given Vincent app or agent, it will prompt you to delegate signing capabilities from your Vincent Wallet to specific Vincent abilities. By delegating these signing capabilities, you enable the Vincent App to execute specific operations on your behalf within the guardrails you define using Vincent policies.
Learn about how the Vincent platform was designed to keep your assets and data secure and fully in your control.
Your Vincent Wallet is managed by Lit Protocolβs decentralized key management network. Secured by MPC-TSS and TEEs, Lit ensures that all key material remains non-custodial, confidential, and fully in your control.
MPC-TSS: Multi-party computation threshold signature schemes (MPC-TSS) split private keys into individual key shares collectively managed by the nodes in the Lit network. Keys never exist in their entirety and never leave the sealed and confidential hardware environment run by each Lit node operator.
TEEs: All key material and signing, decryption, and compute operations take place inside of the sealed trusted execution environments (TEEs) run by the Lit node operators. The use of the TEE ensures that all of these operations are processed securely, without ever exposing keys or other secrets to node operators or end users interacting with the network.
To read more about how Lit keeps keys secure, check out the official security documentation.
All Vincent permissions are created using Lit Actions, immutable JavaScript programs that run on the Lit network. Lit Actions are blockchain agnostic, have the ability to access off-chain data, and can be used to program signing and decryption operations with Lit keys.
All Lit Actions are executed inside of the TEE present within each Lit node, meaning they remain fully confidential, enforceable, and cryptographically verifiable.
To read more about how abilities and policies are secured by Lit Actions, check out the security docs.