GGao Internet/ Docs

AIP-03: Policy Model

AIP-03: Policy Model

Abstract#

Defines risk-tier evaluation and enforcement requirements.

Risk Tiers#

LOW: auto-executable
MEDIUM: user confirmation required
HIGH: explicit approval required; may require multi-signer / MFA for critical categories

Normative Requirements#

Every tool call MUST be evaluated against an active policy.
HIGH-risk actions MUST require explicit confirmation.
Infrastructure-destructive actions SHOULD require multi-factor confirmation or privileged approval.
Policy decisions MUST be recorded in audit events.
Policy configuration MUST be versioned and hashable (policy_hash).
Policy evaluation MUST be applied before side effects.

Compliance Consideration#

Policy enforcement establishes clear authorization boundaries and reduces operational liability.