This paper presents an authorization model for distributed systems that operate with limited internet connectivity. Reliable internet access remains a luxury for a majority of the world’s population. Even for those who can afford it, a dependence on internet connectivity leads to sub-optimal user experiences. With a focus on decentralized deployment, this model is suitable for scenarios where devices right next to each other (such as a sensor or a friend’s phone) should be able to communicate securely in a peer-to-peer manner. The model combines several known techniques from previous work on SPKI/SDSI [26, 19], Macaroons , and the vast literature on trust management . It has been deployed as part of the open-source framework Vanadium  that offers a set of tools, libraries and services for developing secure, distributed applications that can run over a network of devices.