# User Flows and Account Controls

Passport Protocol operates through a meticulously designed process that ensures the security and integrity of cryptographic key management. Here's a detailed overview of how it works:

### Typical User Flows

*This is a diagram showcasing how our Passkeys auth flow works*

<figure><img src="https://3132925401-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FxUflkhxEYo3kdo32a9Ix%2Fuploads%2FxBC1b6ynXr34CSfmkpAO%2Fimage.png?alt=media&#x26;token=1f7a5ffa-700a-4824-b3ce-a51b1ea5877d" alt=""><figcaption><p>High Level Sequence Diagram of App &#x3C;> Passport &#x3C;> User Interaction</p></figcaption></figure>

### Account Controls

<figure><img src="https://3132925401-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FxUflkhxEYo3kdo32a9Ix%2Fuploads%2FraaGMcp4vtaTPpPsikQp%2Fimage.png?alt=media&#x26;token=e5b06225-46ad-47eb-9555-5d2166319aec" alt=""><figcaption><p>Types of Components used for Passport Protocol</p></figcaption></figure>

Here are the core components of Passport Protocol:

* **Scope**: Application level configuration
* **User Action**: Any use of an account (ex, signing)
* **Policy**: Set of rules that govern the use and access of an account
* **Credentials**: verifies access to an account.
* **Account**: contains information about credentials and the MPC generated keys