Architecture
Reference architectures for AI-native systems.
Detailed architectural references for the systems described by the governance framework. Each architecture is independently usable, mapped against the relevant governance section, and grounded in a concrete implementation surface (cloud services, policy languages, retrieval boundaries).
Published
AI IAM Reference Architecture
PublishedA layered authorization model for AI execution chains. Governs users, agents, tools, data, models, and outputs through continuous runtime enforcement.
Secure RAG
PublishedRetrieval-augmented generation as an authorization boundary, not a search mechanism. Five enforcement phases from pre-retrieval policy through output review, with explicit defense against indirect prompt injection.
Agentic Workflows
PublishedMulti-agent orchestration with bounded delegation, agent-to-agent authorization, and full execution traceability. Treats every agent as a first-class identity.
AWS-Native AI Deployment
PublishedEnd-to-end patterns for governed AI on AWS. Bedrock, Knowledge Bases, IAM Identity Center, Verified Permissions with Cedar, and centralized observability, plus the secure defaults and account topology that make it operable.