Skip to content

RFC-027: IHL-Aligned Governance — Protected Persons and Humanitarian Context — 6. Security Considerations

AIGP SpecificationRFC-027: IHL-Aligned Governance — Protected Persons and Humanitarian Context › 6. Security Considerations

← 5. Compliance Mapping · Section index · 7. Backward Compatibility →

6. Security Considerations

  • Non-derogable rules cannot be disabled by any API call, configuration change, or administrative action. They are hardcoded into the governance evaluation pipeline when humanitarian_context.active = true.
  • The humanitarian_context declaration itself can only be activated/deactivated by a designated authority (not by the application or agent).
  • Audit trails for protected person contexts are subject to IHL retention requirements (potentially indefinite) and cannot be expired via DATA_RETENTION policies.
  • Tampering with audit records in a protected person context constitutes a potential grave breach under GCIV Art. 147 — the hash chain integrity mechanism (RFC-010, §4) provides the technical evidence for this.


← 5. Compliance Mapping · Section index · 7. Backward Compatibility →