Governance Glossary
The terminology is converging. The implementations are not.
A dictionary for the formal object — so we stop arguing about words we never defined.
Same pipeline, three columns: what SECS calls it, what it actually does, and what everyone else already half-named (guardrails, circuit breakers, dry runs…). If a term maps cleanly to something you already know, good — the claim was never the English. It was the algebra holding it together. If it does not map, that is a real difference, not a rebrand.
Filter by layer if you are in a hurry. Scroll if you are not. In SECS, α means admissibility (the gate) — not the fine-structure constant on the Equation (C) page. Two alphabets, one site. Sorry.
01Admission — What gets in
The gate. Before anything executes, something decides whether the input is allowed to exist inside the system.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Admissibility (α) | Binary gate. Is this input admissible? Returns pass or reject. Constitutional constraints enforced before any processing begins. | Input validation · policy check · guardrail · pre-execution filter · access control gate |
| Spark | A single input signal arriving at the system boundary. Immutable after validation. Contains endpoint, payload, and doctrine tag. | Request · prompt · event · message · API call |
| Admissible Space | The partition of all possible inputs that satisfy constitutional constraints. Everything outside is structurally impossible. | Allowlist · policy scope · valid input domain |
| Possibility Space | The unbounded set of all potential inputs. Most are not admissible. | Input space · prompt space · request universe |
02Rejection — What gets refused, and why
Not filtering. Structural impossibility. The system cannot process what is inadmissible — it is not a choice, it is architecture.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Veto (v₁–v₆) | Complete rejection. Six exhaustive classes partition all inadmissible inputs. A vetoed element is unmathematical within the algebra. | Deny · block · reject · policy violation · guardrail trigger |
| v₁: Axiom Violation | Input violates a foundational law of the system. | Constitutional violation · hard constraint breach |
| v₂: Drift Introduction | Input would shift the system trajectory away from the collapsed fixed point φ̅. Same-input/same-topology determinism would break. | Drift detection · alignment deviation |
| v₃: Identity Emergence | Input contains identity content. Structurally excluded. | PII detection · identity stripping · anonymisation |
| v₄: Invariant Breach | Would cause a constitutional invariant to become false. | Invariant violation · constraint failure |
| v₅: Corruption Attempt | Targets the constitutional layer directly. Attempts to modify immutable rules. | Privilege escalation · jailbreak · prompt injection |
| v₆: Deployment Instability | Would render the system’s deployment state inconsistent. | Configuration drift · deployment conflict |
| ANNIHILATE | Veto action. Input mapped to ∅. Not blocked — structurally impossible. | Hard reject · drop · discard |
| REFUSE | Explicit rejection. Message recognised but definitively inadmissible. | Deny with reason · policy rejection |
| HOLD / ESCALATE | Partial veto. Escalated to human review when uncertainty requires judgment. | Human-in-the-loop · approval workflow · escalation queue |
03Processing — What happens to admissible inputs
Deterministic collapse. Same input, same output, every time. No branching, no randomness, no ambiguity.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Collapse Operator (Π) | The fundamental computation. Five sequential irreversible stages: α → ⊕ → λ → −⊗ → ⊕. Projection operator (Π² = Π). No inverse exists. | Processing pipeline · execution chain · workflow engine |
| Validation (⊕) | Collapse to well-formed element. Structural validity confirmed. | Schema validation · input normalisation · type checking |
| Routing (λ) | Collapse to exactly one deterministic path. No branching. | Request routing · dispatch · deterministic path selection |
| Reaction (−⊗) | Deterministic output from routed state. Same input always yields same output. | Execution · computation · inference · response generation |
| Extinction (⊕) | Return to purity (⊥₀). Nothing persists uncommitted. Complete reset. | State cleanup · session teardown · garbage collection |
| Purity (⊥₀) | The unique fixed-point state. Zero element. System returns here between every operation. | Clean state · idle · baseline · ground truth |
| Atom | Sovereign dispatch kernel. Stateless, pure, zero-allocation. O(1) dispatch. | Execution engine · runtime kernel · serverless function |
| Fast Path | Persistent execution lane. Connector → Atom → Collapse → Output. Runs continuously. Deterministic. | Hot path · critical path · main execution loop |
| Deterministic Execution | Same input + same topology → same path, same output, same latency. Verified under 96-worker stress. | Reproducibility · idempotency · deterministic inference |
04Governance — What constrains the system
Layered, constitutional, immutable at the foundation. Higher layers inherit all lower constraints.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Governance Filtration (G₀–G₄) | Nested constitutional layers on SECS: G₀ (principles) ⊆ G₁ (algebra) ⊆ G₂ (SAC axioms) ⊆ G₃ (constraint surface) ⊆ G₄ (envelopes). The six veto classes (Rejection layer) exhaustively partition inadmissible inputs at α. | Policy layers · governance hierarchy · rule tiers · RBAC levels |
| Constraint Surface | Frozen layer. Defines what is admissible. Cannot be modified at runtime. Loaded from doctrine at boot. | Policy-as-code · immutable config · constitutional AI rules |
| Adaptation Surface | Mutable layer within bounds. Neurotrophic layer can adjust parameters here. Bounded by constraint surface. | Tunable parameters · adaptive policy · dynamic configuration |
| Sovereignty Invariant | No external governance. System self-governs through constitutional chain. Founder has no runtime exception. | Self-governance · autonomous policy enforcement |
| Doctrine | Canonical definition files. Define constraints, profiles, boundaries, algebra. Loaded at boot. Immutable at runtime. | Policy definitions · governance rules · configuration-as-code |
05Identity — What the system refuses to know
Not privacy by policy. Privacy by architecture. The system cannot distinguish one user from another because the capability does not exist.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Identity Extinction | Axiom: no worker carries any identity. Not enforced — structural. The field does not exist. | Privacy by design · anonymisation · zero-knowledge |
| Identity Set | All keys that could distinguish one entity from another: id, userId, sessionId, token, email, deviceId, etc. Structurally excluded. | PII fields · identity attributes · user identifiers |
| Fungibility | All workers are equivalent. Same input → same output regardless of which worker processes it. | Stateless processing · horizontal scaling · worker equivalence |
| Observation Purity | Behavioural layer is descriptive (not prescriptive), passive (zero side effects), aggregate (not individual). | Privacy-preserving analytics · aggregate telemetry |
06Observation — What the system watches
Passive. Descriptive. Never prescriptive. The behavioural layer describes what happened, never what should happen next.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Behaviour (Atomic) | Single observation: timestamp, latency, error flag, payload size, work units. | Metric · event · log entry · telemetry point |
| Pattern (Composed) | Temporal sequence of 3+ behaviours revealing characteristics. | Trend · anomaly pattern · time series signal |
| Drift Detection | Behavioural deviation from expected profile. Flagged if >20% magnitude. Describes current state, not prediction. | Drift monitoring · model drift · distribution shift |
| φ-Convergence | Ratio stability between predictable and unpredictable streams. Alert if divergence >10%. | Balance metric · throughput ratio · system health score |
| Prediction Boundary | FORBIDDEN. Behavioural layer must not forecast future behaviour. Describes past and present only. | Observability constraint · no-prediction rule |
07Adaptation — How the system learns without drifting
Neurotrophic. Biological model. Five additive phases. The learning layer sits above execution and observes — it never modifies the fast path directly.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Phase A: Governed Homeostasis | Observes output. Evaluates against doctrine set points. Adjusts parameters within bounds. | PID control · feedback loop · autoscaling |
| Phase B: Structural Plasticity | Grows and prunes topology nodes. Adds seeds, strengthens connections, prunes underperformers. | Topology optimisation · neural architecture search |
| Phase C: Cross-Domain Fault Repair | Astrocyte-model mediator. Detects faults across boundaries. Repairs damaged circuits before learning proceeds. | Cross-system fault detection · self-healing |
| Phase D: Temporal Learning | Learns from history. Accumulates evidence until confidence threshold met. Adjusts weights, not rules. | Reinforcement learning · evidence accumulation |
| Phase E: Meta-Learning & Integration | Learns how to learn. Closes the slow-path loop without blocking the fast path. Founder-defined reward functions only. | Meta-learning · hyperparameter tuning · governed feedback |
| Seed | Discrete state point in substrate topology. Governed adjacency. Movement is seed→seed→seed. | Node · state · vertex · configuration point |
| Topology | Seed graph with governed transitions. Validated at boot. Expandable through Phase B. | State graph · execution topology · service mesh |
08Mutation — How the system changes safely
Every change follows a constitutional chain. No mutation bypasses governance. Reversibility is mandatory.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Mutation | Any substrate state change. Must follow 5-stage chain: Intent → Validate → Plan → Simulate → Execute. | Change request · deployment · state transition |
| Additive Mutation | Add new state without modifying existing. Low risk, reversible. | Feature addition · scale-out · additive deployment |
| Subtractive Mutation | Remove obsolete state. Medium risk. Requires dependency check. | Deprecation · teardown · scale-in |
| Transformative Mutation | Modify existing state while preserving structure. High risk. Cannot alter profile boundaries. | Migration · schema change · rolling update |
| Simulation | Isolated execution of mutation before commit. No side effects. Deterministic. Validates postconditions. | Dry run · staging · canary deployment · shadow testing |
| Rollback | Deterministic reversal. All mutations must define their reverse operation. Simulated before execution. | Rollback · undo · revert · blue-green switch |
09Enforcement — What protects the boundary
Physics-based. Content-blind. The perimeter enforces observable constraints — rate, volume, burst — without inspecting payloads.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Perimeter Engine | Physics-based enforcement. Protects integrity through observable constraints. Content-blind. | WAF · rate limiter · API gateway · load balancer |
| Rate Limiting | Max requests per time window per scope. Token bucket or sliding window. Different limits per profile. | Throttling · rate limiting · quota management |
| Circuit Breaker | Isolates failing adaptor. CLOSED → OPEN → HALF_OPEN. Prevents cascade failure. | Circuit breaker pattern · bulkhead · fault isolation |
| Load Shedding | System-wide capacity enforcement. When capacity exceeded, newer requests queued or dropped by priority. | Backpressure · load shedding · graceful degradation |
| Profile Compliance | Validates adaptor behaviour matches declared profile. Flags violations. | SLA monitoring · contract testing · compliance validation |
10Recovery — What happens when things break
Panic is a governed state, not a failure. The system knows what to do when it breaks because the doctrine defined it before it happened.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| PANIC_STATE | Governed emergency state. All mutations except founder-approved recovery are blocked. System stabilises before resuming. | Circuit open · degraded mode · emergency stop · safe mode |
| Critical Drift | φ-divergence ≥20%. Triggers panic. | SLA breach · critical alert · threshold violation |
| Error Cluster | Error rate >50% in 60s window. Triggers panic. | Error storm · failure cascade · incident trigger |
| Degradation | Latency increase >50% over 5 minutes without recovery. Triggers panic. | Performance degradation · SLA degradation |
| Recovery Validation | System must prove stability before exiting panic. Not time-based — evidence-based. | Health check · readiness probe · recovery verification |
11Adaptor — What connects the outside world
External. Certified. Independent. Adaptors are not part of the substrate — they are observed participants with declared behavioural profiles.
| SECS Term | Description | Industry Equivalent |
|---|---|---|
| Adaptor | External certified process providing behavioural telemetry. HTTP interface only. Runs independently. Not part of substrate. | Plugin · integration · connector · external service · agent |
| STABLE Profile | Low-variance, predictable behaviour. Bounded: 30–80 ms latency, 0.3% error, 64–256 byte payload. | Reliable service · SLA-bound endpoint |
| VOLATILE Profile | High-variance, unpredictable behaviour. Bounded: 20–500 ms (burst 800 ms), 5% error, 256–2048 byte payload. | Unreliable service · best-effort endpoint |
| Certificate | Cryptographically signed manifest. Contains adaptorId, profileClass, public key. Validated at load. | API key · mTLS cert · service token · signed manifest |
| Burst Mode | VOLATILE-exclusive. 10% probability of 800 ms spike. Expected and non-anomalous. | Latency spike · jitter · tail latency |
Living document · updated as the conversation evolves · June 2026