{ "factlet_envelope": { "format": "factlet-json", "format_version": "0.1", "canonicalization": { "method": "JCS", "reference": "RFC8785" }, "serialization": "application/json", "container_id": "fenv_01JY8N7F4E9K2YB7D8X3QZ6M2P", "current_factlet": { "identity": { "factlet_id": "fct_policy_ai_external_publication_approval", "namespace": "org.example.ai_governance.policy", "domain": "ai-governance", "claim_type": "policy", "version": "1.2.0", "created_at": "2026-06-01T21:14:00Z", "created_by": { "type": "human", "id": "did:example:policy-reviewer-17" } }, "claim": { "assertion": "External publication of AI-generated policy guidance requires human approval by an authorized policy reviewer.", "atomicity": "atomic", "scope": { "organization": "Example Organization", "applies_to": [ "external publication", "AI-generated policy guidance" ], "does_not_apply_to": [ "internal drafts", "non-policy brainstorming", "personal notes" ] }, "context_constraints": { "effective_policy_version": "AI-PUB-3.2", "jurisdiction": "global_internal_policy", "effective_from": "2026-05-15" } }, "evidence": { "source_refs": [ { "source_id": "src_policy_ai_pub_3_2", "source_type": "policy_document", "title": "AI Publication Governance Policy", "section": "4.1 External Publication Approval", "snapshot_hash": { "alg": "SHA-256", "value": "sha256:7b31..." }, "accessed_at": "2026-06-01T20:55:00Z" } ], "decision_receipt_refs": [ { "receipt_id": "dr_01JY8N4YKB7Z2D8HV49F5A01QT", "relationship": "validated_during" } ], "validation_artifacts": [ { "artifact_id": "val_01JY8N66B9QC3RJD8RZRF6A1DF", "validator": "org.example.policy-validator", "method": "human_review_plus_source_hash_check", "result": "passed" } ] }, "trust": { "status": "current", "confidence": { "score": 0.94, "basis": [ "primary_policy_source", "human_review", "source_hash_verified" ] }, "risk_tier": "medium", "freshness_policy": { "revalidate_every": "P90D", "revalidate_on": [ "policy_document_change", "challenge_event", "external_publication_workflow_change" ] }, "usage_constraints": { "allowed_uses": [ "AI answer grounding", "policy workflow gating", "publication approval checks" ], "prohibited_uses": [ "legal advice", "regulatory interpretation outside internal policy" ] }, "access_constraints": { "classification": "internal", "authorized_roles": [ "policy_reviewer", "ai_governance_admin", "publication_workflow_service" ] } }, "dependencies": { "depends_on": [ { "factlet_id": "fct_policy_ai_pub_3_2_effective", "version": "1.0.0", "hash": "sha256:4a91..." } ], "supports": [], "contradicts": [], "supersedes": [ { "factlet_id": "fct_policy_ai_external_publication_approval", "version": "1.1.0", "hash": "sha256:6c20..." } ], "used_by": [] }, "lineage": { "lineage_model": "self-ledgering", "previous_version": { "factlet_id": "fct_policy_ai_external_publication_approval", "version": "1.1.0", "canonical_body_hash": { "alg": "SHA-256", "value": "sha256:6c20..." }, "sealed_snapshot_ref": "sealed:fct_policy_ai_external_publication_approval:1.1.0:sha256:9af3..." }, "events": [ { "event_type": "supersession", "event_id": "evt_01JY8N79E8K7R1F56W5R5YJBRQ", "timestamp": "2026-06-01T21:14:00Z", "actor": "did:example:policy-reviewer-17", "reason": "Policy scope clarified to exclude internal drafts.", "supersedes_version": "1.1.0", "signature": { "alg": "Ed25519", "key_id": "did:example:policy-reviewer-17#key-1", "value": "sig:..." } } ] } }, "security": { "current_body_hash": { "alg": "SHA-256", "canonicalization": "JCS", "value": "sha256:df82..." }, "current_body_signature": { "alg": "Ed25519", "signed_payload": "current_body_hash", "key_id": "did:example:policy-reviewer-17#key-1", "value": "sig:..." } }, "sealed_prior_versions": [ { "factlet_id": "fct_policy_ai_external_publication_approval", "version": "1.1.0", "seal_type": "embedded_encrypted_snapshot", "plaintext_hash": { "alg": "SHA-256", "canonicalization": "JCS", "value": "sha256:6c20..." }, "ciphertext_hash": { "alg": "SHA-256", "value": "sha256:9af3..." }, "encryption": { "alg": "AES-256-GCM", "key_management": "envelope_encryption", "iv": "base64url:...", "aad": { "factlet_id": "fct_policy_ai_external_publication_approval", "version": "1.1.0", "plaintext_hash": "sha256:6c20...", "previous_version_hash": "sha256:1f44..." }, "wrapped_keys": [ { "recipient": "did:example:policy-reviewer-role", "alg": "RSA-OAEP-256", "encrypted_cek": "base64url:..." } ] }, "ciphertext": "base64url:...", "snapshot_signature": { "alg": "Ed25519", "signed_payload": "plaintext_hash", "key_id": "did:example:policy-reviewer-12#key-1", "value": "sig:..." } } ] } }