RFC-027: IHL-Aligned Governance — Protected Persons and Humanitarian Context — 6. Security Considerations
AIGP Specification › RFC-027: IHL-Aligned Governance — Protected Persons and Humanitarian Context › 6. Security Considerations
← 5. Compliance Mapping · Section index · 7. Backward Compatibility →
6. Security Considerations
- Non-derogable rules cannot be disabled by any API call, configuration change, or administrative action. They are hardcoded into the governance evaluation pipeline when
humanitarian_context.active = true. - The
humanitarian_contextdeclaration itself can only be activated/deactivated by a designated authority (not by the application or agent). - Audit trails for protected person contexts are subject to IHL retention requirements (potentially indefinite) and cannot be expired via DATA_RETENTION policies.
- Tampering with audit records in a protected person context constitutes a potential grave breach under GCIV Art. 147 — the hash chain integrity mechanism (RFC-010, §4) provides the technical evidence for this.
← 5. Compliance Mapping · Section index · 7. Backward Compatibility →