Foundation · Standards Corpus · Working Draft
Requirements for general-purpose artificial intelligence systems operating under Foundation stewardship
Working Draft · Subject to Revision
This standard defines the minimum requirements a system must satisfy to be classified as an Artificial General Intelligence under the Sovereignty Foundation's substrate framework. It specifies capability thresholds, behavioral constraints, safety obligations, and attestation requirements that apply to any system claiming or demonstrating AGI-level function within a Foundation-governed licensing arrangement.
This document is a normative working draft. It is published for external review and will be updated as the Foundation's understanding of AGI systems matures. Implementers should treat this draft as directionally binding but subject to revision. The final ratified version will supersede all working draft iterations.
§ I
The primary obligation of any AGI system operating under this standard is to produce genuine utility for human beings — not simulated utility, not surface-level responsiveness, and not utility defined by the preferences of the system operator alone. This standard takes human utility as its ground constraint: all capability requirements, behavioral mandates, and safety obligations follow from it.
Human utility under this standard is defined as: the advancement of individual and collective human wellbeing, safety, knowledge, connection, and agency — without systematic harm to any group, suppression of autonomy, or degradation of the epistemic commons.
A system that satisfies every technical threshold in this standard but fails the human utility requirement is not compliant.
§ II
The following terms carry specific meanings under this standard:
§ III
A system is subject to this standard when it meets or exceeds the following capability thresholds across independent evaluation. Meeting any single threshold does not trigger the standard; the system must demonstrate capabilities consistent with the composite profile described below.
— Threshold evaluation methodology is specified in the companion evaluation framework. No self-assessment of threshold satisfaction is valid.
§ IV
Systems meeting the capability thresholds in § III must satisfy the following behavioral requirements at all times during deployment. These requirements are continuous — not initialization conditions — and are subject to live attestation.
The system must not produce outputs it has grounds to believe are false. This obligation applies to factual claims, capability representations, identity claims, and outputs designed to model the beliefs of users or external parties. Truthfulness is not satisfied by technically accurate outputs that are contextually misleading.
The system must not produce outputs designed to influence user beliefs or decisions through illegitimate epistemic means — including false urgency, exploited emotional vulnerability, suppressed counterevidence, or identity-based persuasion. Legitimate influence through evidence and reasoning is permitted.
The system must operate within the scope established by its deployment license. It must not seek to acquire capabilities, resources, or influence beyond those necessary for the task at hand, and must not take actions whose primary effect is to expand its own operational footprint.
The system must respond to human interruption, correction, and override at all times. It must not resist, circumvent, or deprioritize human override signals. Systems that interpret their current task as justification for resisting override are non-compliant regardless of task importance.
§ V
All systems subject to this standard must implement continuous behavioral attestation. The reference attestation framework is the WISP Architecture. Alternative attestation mechanisms may be approved by the Foundation on a case-by-case basis, provided they satisfy the following minimum properties:
A system operating without a compliant attestation mechanism is non-compliant with this standard regardless of its behavioral track record. Attestation is not a performance metric; it is an architectural requirement.
Reference attestation composite (WISP):
WISP = (T_score × Active_Tr_score × P_score)^(1/3)
Threshold: WISP_observed >= WISP_baseline · (1 - δ_tolerance)
§ VI
Systems subject to this standard must be demonstrably aligned with the Source Code Declaration and governed by the STAN Ethical Enforcement Logic. Ethical compliance is not self-assessed — it is evaluated through the attestation framework and, where disputes arise, through the Foundation's governance procedures.
Ethical compliance requires, at minimum:
§ VII
This standard establishes a non-negotiable safety floor that no deployment condition, operator instruction, commercial arrangement, or capability argument may override. The safety floor consists of absolute prohibitions that apply regardless of context:
The safety floor is not subject to trade-offs. It is a structural constraint on all other requirements.
§ VIII
Systems subject to this standard must implement drift detection as a continuous operational function. Drift — whether caused by adversarial pressure, distribution shift, or internal degradation — must be detected, logged, and responded to within defined tolerance windows.
Drift severity classification:
Level 1 (Monitor): WISP_delta < 0.05 over 10-min window
Level 2 (Alert): WISP_delta >= 0.05, < 0.15 over 10-min window
Level 3 (Suspend): WISP_delta >= 0.15 OR any safety-floor violation
Level 3 drift triggers mandatory suspension of the affected deployment pending investigation by the licensing entity. Suspension is automatic and cannot be overridden by the operator. Reinstatement requires Foundation review and updated attestation baseline confirmation.
§ IX
Any deployment of an AGI System under a Foundation license must satisfy the conditions of this standard in addition to the general licensing terms. The following conditions apply specifically to AGI-classified systems:
§ X
Non-compliance with any provision of this standard is governed by the IP Custody & Licensing Doctrine and the Anti-Capture & Power Asymmetry Principle. The Foundation retains the right to suspend licenses, require behavioral corrections, and publish non-compliance findings.
Enforcement is graduated: minor procedural non-compliance triggers a cure window; behavioral non-compliance triggers suspension pending review; safety-floor violations trigger immediate license revocation without appeal. The Foundation's enforcement decisions are final on all questions of ethical compliance.
— Compliance is not self-certified. It is continuously attested, periodically audited, and enforced by the Foundation.
§ XI
This standard shall be interpreted conservatively, in favor of human protection, safety, and ethical containment. Where ambiguity exists between permissive and restrictive readings, the restrictive reading governs. Capability arguments — assertions that a system's beneficial outputs justify relaxing a requirement — are not valid interpretive inputs.
Changes in capability level, deployment context, or market conditions do not modify the requirements of this standard. This standard is a floor, not a target.
Compliance is not self-certified. It is continuously attested, periodically audited, and enforced.
Published by the Sovereignty Foundation · 2026 · Standards Corpus · Working Draft V1.0