Research Dossiers | Syrax Operations

Research Portfolio

A curated collection of observational research notes, design-level analyses, and conceptual threat modelling exploring security architecture, identity systems, and operational trust boundaries.

The research spans user-observable system behaviour, architectural decision-making, and hypothetical risk scenarios, with an emphasis on understanding how secure systems function in practice and how design assumptions can influence security outcomes.

Digital Identity, Authentication & Trust Enforcement

Explores weaknesses in how digital identity, sessions, and trust are handled across government and financial systems, highlighting how design assumptions and user behaviour can lead to identity exposure, unauthorized access, and systemic trust failures.

Research 001

Identity Workflows & Trust Enforcement Analysis

Examining how identity proofs, sessions, and verification flows behave across linked systems and where trust can fail.

Read Article

Research 002

Identity Resolution & Exposure Notes

Observing how PayID resolves and exposes recipient identity during lookup, and how this behaviour can be abused for identity enumeration and social engineering.

Read Article

Research 003

Session Trust & Logout Consistency in Federated Identity Platforms

A design-focused review of session continuity and logout behaviour across federated identity services, highlighting systemic trust and visibility considerations.

Read Article

Digital Identity Abuse & Governance

Examining how digital identity systems fail under consent-based misuse, governance gaps, and misplaced trust across public and federated services.

Case Study 01

Consent-Based Impersonation in VicRoads & myGov

Investigates how identity consent workflows across VicRoads and myGov can be used for unauthorized impersonation, outlining the policy gaps that enable abuse and the governance controls required to detect it.

Read Article

SYRAX OPERATIONS

Research Portfolio