A secure executable container executed by a network device establishes a two-way trusted relationship in a secure peer-to-peer data network with a network entity, generates a secure key for the network device in the secure peer-to-peer data network, and associates the endpoint device with a federation identifier identifying the user entity in the secure peer-to-peer data network. The secure executable container also: establishes a two-way trusted relationship between the network device and a target network device; obtains, based on the two-way trusted relationship, cohort interface element definition describing commands executable by the target network device; and generates a data object identifying a selected command from the commands and identifying an identifier for the target network device as a subscriber to the data object, causing the target network device to securely retrieve and execute the selected command.