AEGIS System Principles
Architectural Enforcement & Governance of Intelligent Systems
Version: 0.2
Status: Informational
Part of: AEGIS Architecture
Author: Kenneth Tannenbaum
Last Updated: March 6, 2026
Purpose
These principles are normative architecture rules for AEGIS. They define what must remain true for the system to be secure, governable, and auditable.
P1: Bounded Capability
Rule:
- No actor may exercise capability outside explicitly authorized scope.
Implementation check:
- Capability + resource + scope must be validated before execution.
P2: Complete Mediation
Rule:
Implementation check:
- No direct execution path from agent layer to infrastructure.
P3: Default Deny
Rule:
- Absence of explicit authorization is treated as denial.2
Implementation check:
- No policy match results in
DENY.
P4: Deterministic Governance
Rule:
- Same input + policy version + context yields same decision.3
Implementation check:
- Replay test corpus has zero decision mismatches.
P5: Auditability
Rule:
- Every decision and execution must have immutable evidence.
Implementation check:
- Execution event without prior audit ID is treated as policy violation.
P6: Explicit Authority Boundaries
Rule:
- Governance authority and execution authority are separate.
Implementation check:
- Decision Engine authorizes; Tool Proxy executes; neither role is conflated.
P7: Fail-Closed Safety
Rule:
- System uncertainty or subsystem failure must not produce implicit allow.3
Implementation check:
- Error paths return
ESCALATEorDENY.
P8: Least Privilege by Construction
Rule:
Implementation check:
- Constrained decisions carry enforceable limits (time, rate, target, size).
P9: Policy Integrity
Rule:
- Authorization logic depends only on authenticated policy artifacts.
Implementation check:
- Unsigned or modified policy bundles are rejected.
P10: Human Accountability for Exceptions
Rule:
- Break-glass or escalated paths require accountable human oversight.
Implementation check:
- Escalation approvals are attributable and fully audited.
Standards Alignment
These principles collectively implement the GOVERN and MANAGE functions of the NIST AI Risk Management Framework (AI RMF 1.0),5 the risk management, record-keeping, and quality management requirements of the EU Artificial Intelligence Act,6 and the operational control and monitoring obligations of ISO/IEC 42001:2023.7
Principle Compliance Review
Each release SHOULD include a principle compliance checklist proving:
- No mediation bypass.
- Deterministic replay parity.
- Immutable audit linkage.
- Fail-closed behavior under injected failures.
References
Footnotes
-
J. P. Anderson, “Computer Security Technology Planning Study,” Deputy for Command and Management Systems, HQ Electronic Systems Division (AFSC), Hanscom Field, Bedford, MA, Tech. Rep. ESD-TR-73-51, Vol. II, Oct. 1972. See REFERENCES.md. ↩
-
J. H. Saltzer and M. D. Schroeder, “The protection of information in computer systems,” Proc. IEEE, vol. 63, no. 9, pp. 1278–1308, Sep. 1975, doi: 10.1109/PROC.1975.9939. See REFERENCES.md. ↩ ↩2 ↩3
-
F. B. Schneider, “Enforceable Security Policies,” ACM Transactions on Information and System Security (TISSEC), vol. 3, no. 1, pp. 30–50, Feb. 2000, doi: 10.1145/353323.353382. See REFERENCES.md. ↩ ↩2
-
S. Rose, O. Borchert, S. Mitchell, and S. Connelly, “Zero Trust Architecture,” National Institute of Standards and Technology, Gaithersburg, MD, NIST Special Publication 800-207, Aug. 2020, doi: 10.6028/NIST.SP.800-207. See REFERENCES.md. ↩
-
National Institute of Standards and Technology, “Artificial Intelligence Risk Management Framework (AI RMF 1.0),” NIST AI 100-1, U.S. Department of Commerce, Jan. 2023, doi: 10.6028/NIST.AI.100-1. See REFERENCES.md. ↩
-
European Parliament and Council of the European Union, “Regulation (EU) 2024/1689 laying down harmonised rules on artificial intelligence (Artificial Intelligence Act),” Official Journal of the European Union, 12 Jul. 2024. See REFERENCES.md. ↩
-
International Organization for Standardization and International Electrotechnical Commission, “Information technology — Artificial intelligence — Management system,” ISO/IEC 42001:2023(E), Geneva, Switzerland, Dec. 2023. See REFERENCES.md. ↩