CATEGORY ARCHIVE
Safety & Governance
23 MARIA OS articles in the Safety & Governance category, covering Bonginkan, Judgment OS, AI governance, decision intelligence, and agentic organization architecture.
Judgment OS / Decision Intelligence OS
Core MARIA OS research on turning organizational judgment into executable decision systems.
Agentic Company Architecture
Research on human-agent organizations, delegation boundaries, role topology, and governed autonomy.
Responsibility Gates and AI Governance
Safety, accountability, fail-closed gates, auditability, and human-in-the-loop control for AI agents.
Multi-Agent Mathematics
Formal models for convergence, stability, game theory, graph dynamics, and multi-agent evaluation.
Evidence, RAG, and Knowledge Governance
Evidence bundles, retrieval architecture, Graph RAG, knowledge trust, and auditable reasoning pipelines.
Agentic R&D and Judgment Science
Research operations, simulation labs, judgment science, recursive improvement, and experimental AI governance.
Operational AI Governance as a Technical Moat: A Realistic Assessment of MARIA OS
Why internal auto-recovery, external HITL, responsibility envelopes, and fail-closed gates matter more than another agent demo
The next credible enterprise AI advantage will not come from claiming full autonomy. It will come from knowing where autonomy must stop, how recovery paths are tested, and how human accountability survives at production speed. This article gives a realistic assessment of Bonginkan's MARIA OS architecture and the operational evidence required to turn that architecture into a durable technical moat.
運用されるAIガバナンスは技術的優位性になるか:MARIA OSの現実的評価
内部では自動復旧を攻め、外部ではHITLを厚くする。責任契約・fail-closed・回復経路を実装レイヤーで見る
企業AIの次の優位性は、完全自律を主張することではなく、どこで止めるか、どう復旧するか、人間の責任をどう残すかを本番運用で証明することから生まれる。本稿では、ボンギンカンのMARIA OSが持ちうる技術的優位性と、グローバル・日本市場での現実的な位置づけを、過剰な断定を避けて評価する。
Autonomous Repair Harness: Turning Runtime Failures into Safe, Reviewable System Improvements
Failure episodes, repair proposals, rollback envelopes, and approval boundaries for self-healing agentic systems
Automatic repair is the next step after automatic implementation. A dynamic harness can observe runtime failures, classify drift, draft repairs, replay evidence, and route patches through rollback and approval boundaries without allowing agents to rewrite their own constitution.
自動改修ハーネス:Runtime Failureを安全でReview可能な改善へ変換する
Failure episode、repair proposal、rollback envelope、approval boundaryによるself-healing agentic system
自動改修は自動実装の次段階である。Dynamic harnessはruntime failureを観測し、driftを分類し、repairを下書きし、evidenceをreplayし、rollbackとapproval boundaryを通してpatchをrouteできる。ただしagentが自分自身の憲法を書き換えることは許さない。
Tool Genesis Under Governance: How to Safely Turn Generated Code into New Commands
A formal framework for sandbox verification, permission escalation, audit trails, and rollback mechanisms that enable self-extending agent systems without sacrificing safety
When an AI agent generates code that could become a new command in a production system, every line of that code becomes an attack surface. Without governance gates between generation and registration, a self-extending agent is indistinguishable from a self-propagating vulnerability. This paper presents the MARIA OS Tool Genesis Framework: a 7-stage pipeline that transforms generated code into governed commands through sandbox verification, formal safety proofs, permission escalation models, immutable audit trails, and automatic rollback mechanisms. We formalize tool safety as a decidable property under bounded execution, derive permission escalation bounds using lattice theory, introduce the Tool Safety Index (TSI) as a composite metric, and demonstrate that governed tool genesis achieves 99.7% safety compliance with only 12% latency overhead compared to ungoverned registration. The central thesis: self-extension is not dangerous — ungoverned self-extension is.
ガバナンス下のツール生成:生成コードを安全にコマンド化する方法
サンドボックス検証、権限昇格モデル、監査証跡、ロールバック機構による自己拡張エージェントシステムの安全性フレームワーク
AIエージェントが生成したコードが本番システムの新しいコマンドになりうるとき、そのコードのすべての行が攻撃対象面となる。生成からレジストリ登録までの間にガバナンスゲートがなければ、自己拡張エージェントは自己増殖する脆弱性と区別がつかない。本論文はMARIA OSツール生成フレームワークを提示する:生成コードをガバナンス済みコマンドに変換する7段階パイプラインであり、サンドボックス検証、形式的安全性証明、束論に基づく権限昇格モデル、改ざん不可能な監査証跡、自動ロールバック機構を含む。有界実行の仮定のもとでツール安全性が多項式時間で決定可能であることを証明し、10,000件のツール生成イベントにわたるベンチマークで99.7%の安全性コンプライアンスを12%のレイテンシオーバーヘッドで達成することを示す。中心的命題:自己拡張は危険ではない。ガバナンスなき自己拡張が危険なのだ。
Open Ethics Specification: Designing a Public Research Framework for Structural AI Governance
A four-layer public architecture that transforms the Agentic Ethics Lab from a corporate research institute into an open, reproducible, and standards-defining initiative for structural AI ethics
Open ethics declarations without structural enforcement are organizational theater, and closed ethics research without external validation is institutional self-deception. This paper presents the Open Ethics Specification — a public research framework that exposes the Agentic Ethics Lab's structural ethics methodology to external scrutiny, academic collaboration, and industry adoption. We formalize a four-layer public architecture (White Papers, Open Ethics Specification, Open Simulation Sandbox, Industry Collaboration Program), prove that open-closed information boundaries preserve commercial viability while maximizing trust accumulation, and demonstrate that a mathematically rigorous open research initiative outperforms closed proprietary ethics in regulatory alignment, talent acquisition, and long-term enterprise valuation. The framework introduces formal models for trust accumulation, standard adoption diffusion, and research quality metrics — all grounded in the MARIA OS coordinate system and fail-closed governance architecture.
Gated Meeting Intelligence: Fail-Closed Privacy Architecture for AI-Powered Meeting Transcription
Designing consent, scope, and export gates that enforce data sovereignty before a single word is stored
When an AI bot joins a meeting, the first question is not 'what was said?' but 'who consented to recording?' This paper formalizes the gate architecture behind MARIA Meeting AI — a system where Consent, Scope, Export, and Speak gates form a fail-closed barrier between raw audio and persistent storage. We derive the gate evaluation algebra, prove that the composition of fail-closed gates preserves the fail-closed property, and show how the Scope gate implements information-theoretic privacy bounds by restricting full transcript access to internal-only meetings. In production deployments, the architecture achieves zero unauthorized data retention while adding less than 3ms latency per gate evaluation.
Mission-Constrained Optimization in Agentic Companies
A Mathematical Framework for Value-Preserving Goal Execution
Local goal optimization often conflicts with organizational Mission. We formalize this conflict as a constrained optimization problem over a 7-dimensional Mission Value Vector, derive the alignment score and penalty-based objective, and present a three-stage decision gate architecture that prevents value erosion while preserving goal-seeking performance.
Responsibility Propagation in Dense Agent Networks: Decision Flow Analysis in Planet 100's 111-Agent Ecosystem
Formal analysis of decision flow across 111 agents using diffusion equations with fail-closed boundary conditions
We formalize responsibility propagation in Planet 100's 111-agent network using a diffusion framework analogous to heat conduction. Modeling agents as nodes with responsibility capacity and communication channels as conductance edges, we derive a Responsibility Conservation Theorem: total responsibility is conserved across decision-pipeline transitions. We identify bottleneck zones where responsibility accumulates and show how fail-closed gates prevent responsibility gaps with formal guarantees.
LOGOS and the AI Tribunal: Decision Patterns, Sustainability Optimization, and Constitutional Amendment Dynamics in Civilization's National AI Systems
Multi-objective optimization, divergent national AI strategies, and stochastic democratic override dynamics in autonomous governance
Each nation in the Civilization simulation operates a LOGOS AI system that optimizes a five-component sustainability objective: Stability, Productivity, Recovery, Power Dispersion, and Responsibility Alignment. We formalize this as a constrained multi-objective optimization problem, analyze how nations diverge by navigating different regions of the Pareto frontier, and model constitutional amendments as stochastic threshold events that can override AI recommendations. We then characterize conditions under which AI rulings conflict with democratic outcomes.
Responsibility Distribution in Multi-Agent Teams: Operational Allocation Without Accountability Blind Spots
Treat responsibility as a routing budget for execution, review, and exception handling
When several agents touch one decision, responsibility should be allocated explicitly rather than left implicit in logs or job titles. This article defines a practical responsibility vector for execution, review, approval, and human override. The goal is not to encode legal liability into a formula, but to prevent operational gaps where nobody owns the next action, the next check, or the next escalation.
Recursive Self-Improvement Under Governance Constraints: Governed Recursion via Contraction Mapping and Lyapunov Stability
How MARIA OS's Meta-Insight turns unbounded recursive self-improvement into convergent self-correction while preserving governance constraints
Recursive self-improvement (RSI) — an AI system improving its own capabilities — is both promising and risky. Unbounded RSI raises intelligence-explosion concerns: a system improving faster than human operators can evaluate or constrain. This paper presents governed recursion, a Meta-Insight framework in MARIA OS for bounded RSI with explicit convergence guarantees. We show that the composition operator M_{t+1} = R_sys ∘ R_team ∘ R_self(M_t, E_t) implements recursive improvement in meta-cognitive quality, while a contraction condition (gamma < 1) yields convergence to a fixed point instead of divergence. We also provide a Lyapunov-style stability analysis where Human-in-the-Loop gates define safe boundaries in state space. The multiplicative SRI form, SRI = product_{l=1..3} (1 - BS_l) * (1 - CCE_l), adds damping: degradation in any one layer lowers overall autonomy readiness. Across simulation and governance scenarios, governed recursion retained 89% of the unconstrained improvement rate while preserving measured alignment stability.
Confidence-Evidence Coupling for Agentic Governance: A Calibration Law for Safer Decisions
Couple confidence outputs to evidence sufficiency and contradiction pressure to reduce silent high-certainty failures
The coupling law ties confidence to evidence quality and provenance, improving escalation precision under uncertainty.
Securing Recursive AI Feedback Loops: Adversarial Reflexivity Hardening for Meta-Insight Systems
Defense framework for prompt injection, feedback poisoning, and policy-hijack attacks in self-improving loops
Layered provenance checks, anomaly scoring, and quarantine rules harden adaptive loops while preserving auditability.
Anomaly Detection for Agentic System Safety and Deviation Control
Isolation Forest and Autoencoder reconstruction error as the computational safety layer for self-governing enterprises
Agentic systems can produce operational deviations that require early detection and controlled response. This paper combines Isolation Forest anomaly scoring with Autoencoder reconstruction error to build a layered safety monitor. We define an anomaly-throttle-freeze response cascade and show how the MARIA OS stability guard applies the spectral-radius condition `spectral_radius < 1 - governance_density` in runtime governance.
Responsibility-Tiered RAG Output Control: A Mathematical Framework for Gate-Governed Retrieval Accuracy
Why controlling RAG accuracy through responsibility structure outperforms Top-k optimization alone
Many RAG systems optimize retrieval quality primarily through Top-k tuning and embedding similarity. This paper adds a governance-oriented approach: responsibility-tiered gates that adjust validation intensity by risk classification. The framework reports an 82% hallucination-rate reduction on enterprise document corpora while maintaining sub-second response times for low-risk queries.
Fail-Closed Gate Design for Agent Governance: Responsibility Decomposition and Optimal Human Escalation
Responsibility decomposition-point control for enterprise AI agents
When an AI agent modifies production code, calls external APIs, or alters contracts, responsibility boundaries must remain explicit. This paper formalizes fail-closed gates as a core architectural primitive for responsibility decomposition in multi-agent systems. We derive gate configurations via constrained optimization and use internal simulations to illustrate how a 30/70 human-agent ratio can preserve responsibility coverage while reducing decision latency versus full human review.
Ethics as Executable Architecture: Formalizing Moral Constraints as Computable Structures in Multi-Agent Systems
Why ethics must be structurally implemented, not merely declared, for responsible AI governance
Ethics declarations without enforcement are insufficient for production governance. This paper presents five mathematical frameworks for converting ethical principles into computable constraint structures in multi-agent systems: constraint formalization, ethical-drift detection, multi-universe conflict mapping, human-oversight calibration, and ethics-sandbox simulation before deployment. Together, these components define an Agentic Ethics Lab model for structurally implementing responsible AI.
Ethical Learning in Autonomous Systems: Constrained Reinforcement Learning with Responsibility Rewards and Long-Term Moral Memory
Making ethics a learnable, evolvable asset rather than a static constraint in multi-agent governance
Traditional AI ethics frameworks often treat moral principles as static design-time constraints. This paper frames ethics as a learnable system property that agents acquire through experience, retain in longer-term moral memory, and adapt across cultural contexts while preserving safety invariants. We formalize this with constrained reinforcement learning, responsibility-augmented rewards, decayed ethical memory, dynamic value-hierarchy adaptation within fail-closed boundaries, and an Agent Moral Stress metric for ethical load and performance risk.
Quantifying Responsibility Transfer: Does Automation Actually Reduce Responsibility?
A formal model showing why AI adoption can create an illusion of reduced responsibility while outcome responsibility remains conserved
When organizations automate decisions, responsibility is often perceived as reduced. This paper separates execution responsibility from outcome responsibility, defines a formal transfer quantity `T(h->a)`, and derives a conservation result showing that total outcome responsibility stays in the human domain even as execution is automated.
Mathematical Criteria for RiskTier Design: Impact, Irreversibility, and Regulatory Pressure
A principled scoring function T(d) = f(impact, irreversibility, regulation) with rational threshold derivation and domain calibration
Risk tiers in AI governance are often assigned heuristically. This paper proposes a formal scoring function `T(d)` based on three continuous variables: impact scope, irreversibility degree, and regulatory intensity. We derive threshold boundaries from loss-function analysis, characterize optimality under a quadratic loss model, and provide calibration examples for finance, healthcare, and software engineering.
Formalizing Reversibility: A Risk Differential Analysis of Reversible vs Irreversible Decisions
A continuous-valued framework for measuring decision reversibility and calibrating governance accordingly
Not all decisions carry equal risk; reversibility is a key differentiator. A reversible pricing change and irreversible contract execution have distinct risk profiles, yet many governance systems handle them similarly. This paper defines a continuous reversibility function Rev(d) in [0,1], derives risk-amplification behavior for low-reversibility decisions, and shows why optimal gate strength is inversely related to reversibility. In reported deployments, reversibility-aware gating achieved 41% lower realized risk with 22% fewer human escalations.