| Identity | Identity ambiguity, identity conflation, and loss of separation between the human principal and the agent acting on that principal's behalf. | Establish authority; Grant permission; Guarantee that an agent remains aligned with its assigned identity; Determine admissibility |
| Frame | Systems reasoning from the wrong operational reality. | Authorize execution; Replace governance; Guarantee truth; Prevent drift |
| Coherence Boundary | Unbounded execution beyond intended operating limits. | Guarantee compliance; Correct drift; Replace governance; Determine outcomes |
| Drift | Progressive loss of coherence leading to unreliable or unsafe operation. | Explain root cause; Restore alignment; Determine admissibility; Authorize execution |
| Correction | Persistent divergence after drift has occurred. | Guarantee correctness; Replace governance; Replace validation; Prevent future drift |
| Data Layer | AI systems operating on missing, corrupted, stale, inaccessible, untraceable, or improperly governed data. | Determine whether an AI action is admissible; Establish execution authority; Govern agent behavior; Guarantee that valid data produces a valid decision |
| Model Layer | The need to produce useful probabilistic outputs from complex or unstructured information. | Represent the complete AI system; Possess organizational authority; Determine whether an action may execute; Guarantee factual or operational correctness |
| Agent Layer | The inability of a single model inference to coordinate multi-step work across tools, systems, and changing conditions. | Possess authority merely because it can act; Guarantee that the objective is appropriate; Determine admissibility by itself; Replace runtime execution control |
| Governance Layer | AI systems operating without clear accountability, policy, decision rights, authority boundaries, or enforceable governance conditions. | Enforce itself automatically at runtime; Determine current system state; Prevent execution unless connected to technical controls; Replace the execution boundary |
| Runtime Layer | Actions executing after state, authority, evidence, policy, or operating conditions have become invalid or inadmissible. | Reconstruct the complete history of the system; Replace organizational strategy; Guarantee model quality; Assume that prior approval remains valid |
| Correction Layer | Systems continuing to operate from internally reinforced, stale, invalid, or drifted state without an independent mechanism for restoring alignment. | Define governance policy; Guarantee that every correction is valid; Eliminate future drift; Replace the need for current-state validation |
| Artificial Intelligence Model | The need to interpret complex inputs and produce useful probabilistic outputs. | Establish organizational authority; Determine whether execution is permitted; Guarantee factual correctness; Provide governance by itself |
| Large Language Model | Flexible language interpretation and generation across broad domains. | Know whether its output is true; Possess execution authority; Maintain organizational accountability; Determine whether an action is admissible |
| Inference | The need to generate an output from information not explicitly programmed as fixed rules. | Validate organizational state; Establish decision rights; Guarantee repeatable output; Authorize downstream action |
| Prompt | The need to direct model behavior for a specific inference request. | Create durable authority; Guarantee compliance; Prevent state drift; Replace system architecture |
| Hallucination | Identification of unsupported, fabricated, or insufficiently verified output produced or admitted by the system. | Prove that the model alone caused the failure; Identify the precise architectural source of the failure; Describe authority failure; Describe state drift; Describe unsafe execution by itself |
| Context | Model operation without sufficient situational information. | Persist automatically; Establish that the information is true; Guarantee completeness; Create authority |
| Context Window | The need to bound and manage the information supplied during inference. | Create permanent memory; Preserve complete history; Guarantee the relevance of included information; Validate supplied information |
| Memory | Loss of information across interactions or workflow boundaries. | Guarantee truth; Resolve conflicting memories automatically; Determine relevance by itself; Establish current authority |
| Retrieval-Augmented Generation | Model generation without access to relevant external information. | Guarantee that retrieved information is correct; Resolve authority; Prevent execution against invalid state; Create governance |
| Embedding | The inability of strict keyword matching to recover conceptually related information. | Prove semantic equivalence; Validate truth; Establish authority; Determine execution admissibility |
| AI Agent | The need to perform multi-step work across tools and changing conditions. | Possess authority merely because it can act; Guarantee correct planning; Guarantee safe execution; Replace governance |
| Agentic Workflow | Rigid automation that cannot adapt to changing workflow conditions. | Guarantee authority; Guarantee admissibility; Guarantee that the workflow objective is appropriate; Eliminate the need for human decision rights |
| Agent Orchestration | Uncoordinated multi-agent behavior and broken workflow dependencies. | Determine whether the objective is permissible; Create execution authority; Prevent collusion automatically; Guarantee coherent state across agents |
| Tool Calling | Model isolation from external systems and operational capabilities. | Establish permission to use the tool; Guarantee valid parameters; Guarantee that the resulting action is admissible; Provide accountability |
| Model Context Protocol | Fragmented, one-off integration between AI applications and external capabilities. | Determine whether a tool should be called; Authorize execution; Validate current state; Replace runtime governance |
| Evaluation | Unknown or unmeasured model and system performance. | Authorize execution; Establish authority; Prevent an action from occurring; Guarantee valid current state |
| Observability | Invisible system behavior and failures that cannot be diagnosed. | Prevent unsafe execution; Create policy; Authorize action; Correct drift by itself |
| Monitoring | Undetected changes and operating conditions. | Stop execution unless connected to a control; Establish authority; Repair drift automatically; Determine admissibility by itself |
| Telemetry | Lack of operational evidence. | Interpret itself; Authorize execution; Prove that a state is valid; Replace an execution gate |
| AI Governance | Unclear accountability, unmanaged risk, and inconsistent organizational control. | Automatically enforce itself at runtime; Determine current system state; Prevent execution unless connected to controls; Replace technical architecture |
| Authority | Actions performed without legitimate decision rights. | Guarantee that an action is correct; Guarantee that conditions remain unchanged; Persist automatically after delegation; Replace identity |
| Decision Rights | Unclear ownership and accountability for consequential decisions. | Guarantee that the decision is executed correctly; Replace authorization controls; Validate current state; Prevent authority drift by itself |
| Provenance | Unknown origin, lineage, and causal history. | Authorize the next action; Determine current admissibility; Prevent unsafe execution; Replace current-state validation |
| Evidence | Decisions and actions unsupported by defensible information. | Validate itself; Remain current automatically; Guarantee correct interpretation; Authorize every action derived from it |
| Current Validated State | Execution based on stale, incomplete, invalid, or internally assumed state. | Explain the entire history of the system; Guarantee future state; Replace provenance; Define organizational strategy |
| External Validation | Systems validating their own assumptions and continuing to execute from stale, fabricated, incomplete, or internally reinforced state. | Correct drift by itself; Define governance policy; Guarantee that the external source is current or authoritative; Determine admissibility by itself |
| Execution Boundary | Actions executing without a final runtime control decision. | Reconstruct system history; Optimize the business objective; Replace organizational governance; Guarantee the quality of model reasoning |
| Ledger Layer | Stateless execution, stale state, untraceable transitions, and divergence between the state a system believes it holds and the state actually governing execution. | Determine admissibility by itself; Replace current-state validation; Guarantee that recorded evidence is authoritative; Reconstruct events that were never recorded |
| Admissibility | Unsafe, unauthorized, unsupported, or out-of-bound execution. | Measure model performance; Explain how the system reached its current state; Predict business success; Replace provenance or audit |
| Runtime Governance | Governance that exists in policy but disappears during execution. | Replace policy development; Eliminate the need for evidence; Guarantee model correctness; Explain historical causation by itself |
| Fail-Safe | Continued execution after a critical operating boundary has been crossed. | Explain why the condition occurred; Perform root-cause analysis; Replace monitoring; Guarantee service continuity |
| Guardrail | Unconstrained or undesirable model and application behavior. | Guarantee enforcement; Determine current validated state; Create execution authority; Replace a fail-safe |
| Model Drift | Model performance degradation over time. | Describe every form of system drift; Describe authority loss; Describe invalid workflow state; Describe execution admissibility |
| Data Drift | Models and systems operating on data conditions they were not designed to handle. | Determine whether execution should stop; Explain authority failure; Correct the data automatically; Describe every change in system state |
| State Drift | Execution against a state that no longer reflects reality. | Describe model performance alone; Explain all historical causes; Correct itself; Establish authority |
| Identity Drift | Agents or actors continuing to operate under substituted, stale, expanded, ambiguous, or misaligned identity. | Prove malicious intent; Describe authentication failure alone; Describe authority drift by itself; Correct identity automatically |
| Frame Drift | Systems continuing to interpret evidence and pursue actions within a frame that no longer reflects the governing reality. | Describe model drift alone; Establish authority; Correct the operating frame automatically; Determine admissibility by itself |
| Authority Drift | Systems continuing to act under authority that is stale, expanded, inherited, or no longer valid. | Describe identity alone; Describe model accuracy; Prove malicious intent; Correct authority automatically |
| External Correction | Self-reinforcing divergence in which a system validates its own incorrect state. | Define governance policy; Repair historical provenance; Replace admissibility; Guarantee the external reference is authoritative |
| Identity | Actions that cannot be attributed separately to the human principal and the agent that executed them. | Establish permission by itself; Establish decision authority; Prove that an agent remained within its assigned role; Determine whether a specific action is admissible |
| User Identity | Loss of accountability for who initiated, approved, or benefited from an AI-driven action. | Define the identity of the agent performing the work; Automatically transfer all user authority to the agent; Guarantee that the user is authorized for every requested action; Determine execution admissibility |
| Agent Identity | Agents acting under ambiguous, substituted, stale, expanded, or drifted identity. | Inherit all authority of the user automatically; Guarantee that the agent remains aligned with its assigned role; Replace authentication or authorization; Determine admissibility by itself |
| Authentication | Unknown or falsely represented identity. | Determine what the actor may do; Establish business authority; Guarantee current role alignment; Authorize a specific execution |
| Authorization | Access or operations performed without assigned permission. | Guarantee that the action is appropriate now; Establish organizational decision rights; Validate current operating state; Replace admissibility |
| Least Privilege | Excessive access and unnecessary operational capability. | Determine whether a permitted action is admissible; Validate system state; Prevent all privilege escalation; Define business accountability |
| Zero Trust | Implicit trust granted from location, history, or inherited access. | Determine business suitability; Establish execution admissibility automatically; Replace governance; Guarantee coherent system state |
| Drift Stack™ | AI failure analyzed as isolated model behavior rather than architectural loss of coherence. | Describe only model drift; Replace implementation-specific controls; Assume governance documents enforce themselves; Treat the model as the complete system |
| SAQ™ | AI actions executing without proof that required conditions remain satisfied. | Depend on model confidence alone; Treat initial approval as permanent; Replace business governance; Assume observability prevents execution |
| Collective Execution Boundary | Individually permissible actions combining into an impermissible collective outcome. | Assume each agent is safe because it is individually authorized; Treat orchestration as governance; Ignore emergent collective behavior; Replace agent-specific controls |
| Execution Ledger | Execution decisions that cannot later be explained, audited, or defended. | Authorize action by itself; Replace current-state validation; Prevent unsafe execution; Guarantee the integrity of upstream evidence |
| Conformance | Systems claiming governance without implementing the required controls. | Mean that documentation exists; Mean that policy was approved; Guarantee permanent compliance; Replace runtime validation |