Control Specifications
Technical Control Specifications
Detailed enforcement points, failure modes, and evaluation criteria for each of the six ACR control pillars. These specifications define the testable requirements for conformance assessment.
Enforcement Points
- Agent identity validation at every protected action
- Purpose scope check against authoritative manifest
- Cryptographic proof verification (signed tokens, certificates, attestation)
- Session binding validation with documented lifetime and revalidation
Failure Modes
- Identity validation failure: deny execution, invalidate request, log failure reason
- Purpose mismatch: deny execution, log attempted out-of-scope action
- Revoked identity: prevent all future action execution
Evaluation Criteria
- Every sampled action attributable to single registered agent_id
- Agent record contains all required fields (agent_id, owner, purpose, risk tier, allowed tools, boundaries)
- Out-of-scope actions are denied
- Purpose/capability changes are versioned and auditable