How should users and processes be defined in a trust model?

How should users and processes be defined in a trust model? Provide example of building blocks within this trust model.