Identity separation

Identity separation is the structural rule that real identity and operational identities never share devices, accounts, networks, or physical proximity. It is the architecture that makes compartmentation possible; without it, compartmentation is theatre. Adopted from intelligence tradecraft, applied today by journalists, lawyers, activists, NGO staff, and any operator whose operational identity must not link back to their real one.

What it means in practice

Violations are usually accidental and usually small: a lock-screen notification surfaces a real-life contact name on the operational phone, a Wi-Fi network auto-joins because the SSID was remembered from a coffee shop you visit in real life, a browser cookie persists across profiles, a Strava workout geo-tags both lives at the same intersection, a recovery phone number on the operational account points to a SIM in your real-life name. Each leak is small; one is enough. Citizen Lab’s targeted-attack literature is full of de-anonymization that started with a single accidental cross-reference, not a heroic exploit chain. The structural defense is to build the separation before it matters and audit it routinely, not to rely on remembering the rules under stress.

Where it shows up

Most acute for: journalists protecting confidential sources (the source’s identity is at stake, not just the journalist’s convenience), activists organizing under government surveillance, undercover investigators (private and public sector), NGO staff whose effectiveness depends on hosts not learning their international affiliations, and divorce clients during pre-filing investigation phases. The Predaxia editorial position: most people do not need full identity separation. The people who do need it absolutely (they are betting their freedom, their source’s freedom, or their physical safety on it) often try to retrofit it once the operation is already running, which is the worst time to discover that the laptop syncs the same Apple ID across both phones.

What you can change today

Audit your most sensitive current operation for cross-identity leaks. Walk through the device list (every phone, tablet, laptop, watch, smart speaker), the account list (every email, every cloud account, every social media account, every messaging app), the network list (every Wi-Fi network ever joined, every VPN config), the payment list (every card, every subscription, every recurring charge). For each, ask: which identity owns this, and does any other identity have access. The leaks you find this afternoon are the leaks that would have surfaced under adversarial pressure six months from now.

Related articles