{ "file_id": "09_vertical_government_public_sector", "version": "2026.03.16", "schema_version": "2.2", "status": "Production Authority", "last_authoritative_sync": "2026-03-16", "description": "Comprehensive enumeration library for the Government & Public Sector vertical. Covers every subdomain where agentic AI is actively deployed as of March 2026: FedRAMP cloud authorisation and NIST SP 800-53 Rev 5 control family compliance monitoring, OMB M-24-10 AI governance for federal agencies, FIPS 140-3 cryptographic module compliance, AI accountability use case classification for high-impact government AI, federal procurement and acquisition AI (FAR/DFARS), benefits eligibility and public services delivery, law enforcement and criminal justice AI governance, immigration adjudication, open government data and FOIA automation, and EU public sector AI governance (EU AI Act Annex III, GDPR Art 22, EU AI Act Art 14). Designed for use as OTel span attributes in an agentic AI SDK and as policy vocabulary in an OPA Rego GRC portal.", "vertical_metadata": { "vertical_key": "government_public_sector", "industry": "Government & Public Sector", "primary_standards": [ "NIST SP 800-53 Rev 5 — Security and Privacy Controls for Information Systems and Organizations (2020)", "NIST SP 800-53B — Control Baselines for Information Systems (2020)", "NIST SP 800-37 Rev 2 — Risk Management Framework (RMF) for Information Systems (2018)", "NIST SP 800-171 Rev 3 — Protecting CUI in Nonfederal Systems (2024)", "NIST AI RMF 1.0 — AI Risk Management Framework (2023)", "NIST AI 600-1 — Generative AI Profile (2024)", "FedRAMP Rev 5 — Federal Risk and Authorization Management Program (GSA/OMB, 2023)", "FedRAMP Authorization Playbook — Agency and JAB authorisation processes", "FIPS 140-3 — Security Requirements for Cryptographic Modules (2019)", "FIPS 199 — Standards for Security Categorization of Federal Information and Information Systems", "FIPS 200 — Minimum Security Requirements for Federal Information and Information Systems", "OMB M-24-10 — Advancing Governance, Innovation, and Risk Management for Agency Use of AI (March 2024)", "OMB M-23-22 — Delivering a Digital-First Public Experience (September 2023)", "OMB M-22-09 — Moving the US Government Toward Zero Trust Cybersecurity Principles", "OMB M-21-31 — Improving the Federal Government's Investigative and Remediation Capabilities (log retention)", "EO 14110 — Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (October 2023)", "EO 14028 — Improving the Nation's Cybersecurity (May 2021)", "CISA JCDC AI Cybersecurity Collaboration Playbook (2024)", "FAR Part 12/39 — Federal Acquisition Regulation for IT and AI procurement", "DFARS 252.204-7012 — Safeguarding Covered Defense Information", "EU AI Act (2024/1689) Annex III para 5 — High-risk AI in public services and law enforcement", "EU AI Act (2024/1689) Annex III para 6 — High-risk AI in law enforcement", "EU AI Act (2024/1689) Annex III para 7 — High-risk AI in migration, asylum, border control", "EU GDPR Article 22 — Automated individual decision-making including profiling", "EU NIS2 Directive (2022/2555) — Essential and important entities in public administration", "Council of Europe Framework Convention on AI (CETS 225) — Opened for signature September 2024", "G7 Hiroshima AI Process — Guiding principles for advanced AI systems (2023)", "OECD Principles on AI (2019, updated 2024)", "UN General Assembly Resolution A/RES/78/311 — International AI Governance (March 2024)" ], "primary_source_urls": [ "https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final", "https://www.fedramp.gov/", "https://www.whitehouse.gov/wp-content/uploads/2024/03/M-24-10-Advancing-Governance-Innovation-and-Risk-Management.pdf", "https://www.whitehouse.gov/briefing-room/presidential-actions/2023/10/30/executive-order-on-the-safe-secure-and-trustworthy-development-and-use-of-artificial-intelligence/", "https://csrc.nist.gov/publications/detail/ai/100-1/final", "https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32024R1689" ], "otel_namespace": "government", "opa_namespace": "data.government", "agentic_ai_deployment_context": "As of March 2026, agentic AI in government and public sector is deployed across: automated benefits eligibility determination (Social Security, Medicaid, SNAP, unemployment insurance), AI-driven immigration document review and risk scoring (USCIS, CBP), predictive law enforcement tools (crime forecasting, recidivism risk scoring), AI-assisted procurement and contract vehicle management (GSA, DoD), automated FOIA request triage and redaction, AI-powered citizen services chatbots and case routing (VA, SSA, IRS), fraud detection and improper payment prevention (OMB paymentaccuracy.gov), federal cybersecurity threat detection (CISA CDM programme), AI-assisted legislative drafting and regulatory analysis, and open data portal AI (Data.gov, DOGE-related automation). OMB M-24-10 (March 2024) requires every federal agency to: designate a Chief AI Officer (CAIO), conduct annual inventories of all AI use cases, complete minimum risk practices for rights-impacting and safety-impacting AI by December 2024, and publish AI use case inventories. EO 14110 requires agencies with AI use in critical infrastructure or national security to conduct safety evaluations and report to OMB. The EU AI Act Annex III paras 5–7 explicitly classify AI used in public benefits administration, law enforcement, migration, and border control as high-risk.", "key_regulatory_risk_note": "OMB M-24-10 Section 5 establishes minimum risk management practices for 'rights-impacting' and 'safety-impacting' AI — AI that meaningfully impacts the rights, opportunities, or access to critical resources of members of the public, or that could threaten the life or safety of individuals. These practices include: independent assessments before deployment, ongoing monitoring, testing for bias and disparate impact, providing human alternatives and timely human review, and public disclosure. Federal agencies that deploy such AI without completing these practices must pause or halt use. The EU AI Act Article 6(2) and Annex III para 5(a) make AI systems determining access to public benefits and services a high-risk category — applying from August 2, 2026 with a 12-month grace period for systems already in service. The Council of Europe AI Convention (CETS 225), which the US, EU member states, and other signatories opened for signature in September 2024, creates binding human rights obligations for AI across public and private sector applications." }, "subdomains": [ { "subdomain": "FedRAMP & Cloud Security Authorisation", "description": "Covers FedRAMP Rev 5 authorisation lifecycle, NIST SP 800-37 RMF phase enumerations, and FIPS security classification for federal cloud deployments. AI systems deployed in federal cloud environments must achieve FedRAMP authorisation — agentic AI components are subject to the same requirements as other cloud services.", "relevant_standards": [ "FedRAMP Rev 5 — Federal Risk and Authorization Management Program (2023)", "NIST SP 800-37 Rev 2 — Risk Management Framework", "NIST SP 800-53 Rev 5 — Security and Privacy Controls", "FIPS 199 — Security Categorization", "FIPS 200 — Minimum Security Requirements" ], "categories": [ { "enum_name": "FedRAMPAuthorizationStatus", "label": "Fed Ramp Authorization Status", "otel_attribute": "government.fedramp.authorization_status", "opa_policy_path": "data.government.fedramp.authorization_status", "rego_input_key": "government_fedramp_authorization_status", "stability": "stable", "description": "FedRAMP Rev 5 authorisation status of a cloud service or AI system deployed in the federal environment. AI agents integrated into federal systems must verify FedRAMP authorisation status before consuming or producing data in FedRAMP-boundary systems. An AI agent itself may require FedRAMP authorisation if it processes federal data.", "permitted_values": [ "in_process", "fedramp_ready", "authorized_agency", "authorized_jab", "authorized_with_conditions", "revoked", "not_applicable_on_premise" ], "value_labels": { "in_process": "In Process", "fedramp_ready": "Fedramp Ready", "authorized_agency": "Authorized Agency", "authorized_jab": "Full Fed Ramp Authorisation Granted by the Joint Authorization Board (jab", "authorized_with_conditions": "Authorized with Conditions", "revoked": "Revoked", "not_applicable_on_premise": "Not Applicable on Premise" }, "code_definitions": { "in_process": "Cloud service is actively pursuing FedRAMP authorisation; Readiness Assessment Report (RAR) or full security package in development; not yet authorised for production federal data", "fedramp_ready": "Readiness Assessment Report accepted by FedRAMP PMO; demonstrates high likelihood of achieving full authorisation; not yet authorised", "authorized_agency": "Full FedRAMP authorisation granted by a sponsoring federal agency (ATO); listed on FedRAMP Marketplace", "authorized_jab": "Full FedRAMP authorisation granted by the Joint Authorization Board (JAB — DoD, DHS, GSA); highest reuse value across agencies", "authorized_with_conditions": "FedRAMP ATO granted with specific conditions or Plan of Action and Milestones (POA&M) items that must be remediated within defined timeframes", "revoked": "FedRAMP authorisation has been revoked; federal agencies must immediately cease using the service for federal data", "not_applicable_on_premise": "System is deployed on-premise within the federal boundary; FedRAMP does not apply; FISMA authorisation required instead" }, "regulatory_mappings": { "fedramp_rev5": "FedRAMP Rev 5 — Cloud services processing federal data at Low, Moderate, or High impact levels require FedRAMP authorisation", "fisma": "Federal Information Security Modernization Act — FedRAMP ATO satisfies FISMA ATO requirements for cloud services", "omb_m_24_10": "OMB M-24-10 Section 4.2 — Agencies must ensure AI systems deployed in cloud environments meet FedRAMP requirements before processing government data" }, "use_case": "OPA policy blocks any AI agentic workflow from routing federal data to a cloud-based AI service whose FedRAMP authorisation status is not 'authorized_agency', 'authorized_jab', or 'authorized_with_conditions'. 'Revoked' status triggers immediate data routing halt and CISO notification.", "source": "FedRAMP Rev 5 Authorisation Process documentation; FedRAMP Marketplace status definitions", "source_url": "https://www.fedramp.gov/documents-templates/" }, { "enum_name": "FIPSSecurityLevel", "label": "FIPS Security Level", "otel_attribute": "government.fips.security_level", "opa_policy_path": "data.government.fips.security_level", "rego_input_key": "government_fips_security_level", "stability": "stable", "description": "FIPS 140-3 security level for a cryptographic module used by a government AI system. All cryptographic operations in federal systems — including AI model signing, API authentication, and data-at-rest encryption — must use FIPS 140-3 validated modules at the appropriate security level.", "permitted_values": [ "level_1", "level_2", "level_3", "level_4" ], "value_labels": { "level_1": "Level 1", "level_2": "Level 2", "level_3": "Level 3", "level_4": "Level 4" }, "code_definitions": { "level_1": "Basic security requirements for cryptographic modules; software-only implementations permitted; no physical security required", "level_2": "Physical tamper-evidence required; role-based authentication; minimum requirement for most federal applications handling sensitive but unclassified data", "level_3": "Physical tamper-resistance and tamper-response; identity-based authentication; required for modules processing Controlled Unclassified Information (CUI) in high-risk environments", "level_4": "Highest physical security; complete envelope protection; environmental failure protection; required for modules in physically unprotected environments handling classified information" }, "ordered": true, "value_ordinals": { "level_1": 1, "level_2": 2, "level_3": 3, "level_4": 4 }, "regulatory_mappings": { "fips_140_3": "FIPS 140-3 — Cryptographic module validation; federal agencies must use validated modules for all cryptographic operations", "nist_sp_800_53_sc12": "NIST SP 800-53 SC-12 — Cryptographic Key Establishment and Management: key establishment must use FIPS-validated mechanisms", "omb_m_22_09": "OMB M-22-09 Zero Trust — Encrypted DNS and TLS 1.3 must use FIPS 140-3 validated implementations" }, "use_case": "AI agent security posture registry records the FIPS security level of all cryptographic modules used by the agent. OPA policy enforces that AI agents processing CUI must use Level 2 or above. AI agents in physically unprotected field deployments processing classified data require Level 4.", "source": "FIPS 140-3 — Security Requirements for Cryptographic Modules (NIST, 2019)", "source_url": "https://csrc.nist.gov/publications/detail/fips/140/3/final" }, { "enum_name": "FISMAImpactLevel", "label": "FISMA Impact Level", "otel_attribute": "government.fisma.impact_level", "opa_policy_path": "data.government.fisma.impact_level", "rego_input_key": "government_fisma_impact_level", "stability": "stable", "description": "FIPS 199 / FISMA security impact categorisation for a federal information system. Determines the NIST SP 800-53 control baseline applicable to an AI system. All AI systems processing federal information must be categorised at the system level before deployment.", "permitted_values": [ "low", "moderate", "high" ], "value_labels": { "low": "Low", "moderate": "Moderate", "high": "High" }, "code_definitions": { "low": "Limited adverse effect on operations, assets, or individuals if compromised. Applies to many internal workflow and analytics AI systems with no PII or national security data.", "moderate": "Serious adverse effect. Applies to most AI systems processing PII, CUI, or performing functions affecting the public. Most FedRAMP authorisations are at the Moderate baseline.", "high": "Severe or catastrophic adverse effect. Applies to AI systems supporting critical infrastructure, law enforcement, national security, or processing highly sensitive PII (e.g. financial, health). Requires FedRAMP High or classified system authorisation." }, "ordered": true, "value_ordinals": { "low": 1, "moderate": 2, "high": 3 }, "regulatory_mappings": { "fips_199": "FIPS 199 — Standards for Security Categorisation: all federal information and systems must be categorised", "nist_sp_800_53b": "NIST SP 800-53B — Control baselines: Low, Moderate, and High impact levels map to increasing control sets", "fedramp": "FedRAMP authorisation packages must specify the impact level; Moderate and High are the most common for AI-as-a-service" }, "source": "FIPS 199; FIPS 200; NIST SP 800-53B", "source_url": "https://csrc.nist.gov/publications/detail/fips/199/final" }, { "enum_name": "RMFLifecyclePhase", "label": "RMF Lifecycle Phase", "otel_attribute": "government.rmf.lifecycle_phase", "opa_policy_path": "data.government.rmf.lifecycle_phase", "rego_input_key": "government_rmf_lifecycle_phase", "stability": "stable", "description": "NIST SP 800-37 Rev 2 Risk Management Framework lifecycle phase for a federal information system or AI system. AI systems must progress through all RMF phases before receiving an ATO and going into production with federal data.", "permitted_values": [ "prepare", "categorize", "select", "implement", "assess", "authorize", "monitor" ], "value_labels": { "prepare": "Prepare", "categorize": "Categorize", "select": "Select", "implement": "Implement", "assess": "Assess", "authorize": "Authorize", "monitor": "Monitor" }, "code_definitions": { "prepare": "Organisation- and system-level preparation activities; establish risk management strategy, assign roles (AO, ISSO, ISSM), register system in CSAM or equivalent", "categorize": "FIPS 199 categorisation of the system and information processed; document in System Security Plan (SSP)", "select": "Select, tailor, and document applicable NIST SP 800-53 Rev 5 security controls based on impact level and risk", "implement": "Implement selected security controls; document implementation in SSP; configure AI system and environment per controls", "assess": "Assess control implementation effectiveness; Security Assessment Report (SAR) produced by independent assessor (3PAO for FedRAMP)", "authorize": "Authorising Official (AO) reviews SAR and POA&M; issues Authority to Operate (ATO), Denial of ATO (DATO), or ATO with conditions", "monitor": "Ongoing monitoring of controls; continuous monitoring programme; annual assessments; significant change review" }, "ordered": true, "value_ordinals": { "prepare": 1, "categorize": 2, "select": 3, "implement": 4, "assess": 5, "authorize": 6, "monitor": 7 }, "regulatory_mappings": { "nist_sp_800_37": "NIST SP 800-37 Rev 2 — Full RMF lifecycle required for all federal information systems", "fedramp": "FedRAMP maps directly to RMF; cloud services must complete all phases; 3PAO performs independent assessment in the 'assess' phase", "omb_m_24_10": "OMB M-24-10 — AI systems must complete RMF before production deployment; rights-impacting and safety-impacting AI require additional risk practices beyond baseline RMF" }, "source": "NIST SP 800-37 Rev 2 — Risk Management Framework Steps", "source_url": "https://csrc.nist.gov/publications/detail/sp/800-37/rev-2/final" } ] }, { "subdomain": "NIST SP 800-53 Control Compliance Monitoring", "description": "Covers NIST SP 800-53 Rev 5 control family taxonomy and control assessment status enumerations for AI-driven continuous compliance monitoring. Federal AI compliance agents generating automated control evidence must tag each evidence record with the applicable control family and assessment status.", "relevant_standards": [ "NIST SP 800-53 Rev 5 — 20 control families, 1000+ individual controls", "NIST SP 800-53A Rev 5 — Assessing Security and Privacy Controls", "NIST SP 800-137A — Assessing Information Security Continuous Monitoring Programmes" ], "categories": [ { "enum_name": "NISTSPControlFamily", "label": "Nistsp Control Family", "otel_attribute": "government.nist_sp800_53.control_family", "opa_policy_path": "data.government.nist_sp800_53.control_family", "rego_input_key": "government_nist_sp800_53_control_family", "stability": "stable", "description": "NIST SP 800-53 Rev 5 control family identifier. All 20 control families are represented. AI compliance agents tag automated evidence generation and control assessment actions with the applicable family for CSAM/eMASS integration and audit trail.", "permitted_values": [ "AC_access_control", "AT_awareness_training", "AU_audit_accountability", "CA_assessment_authorisation_monitoring", "CM_configuration_management", "CP_contingency_planning", "IA_identification_authentication", "IR_incident_response", "MA_maintenance", "MP_media_protection", "PE_physical_environmental_protection", "PL_planning", "PM_program_management", "PS_personnel_security", "PT_pii_processing_transparency", "RA_risk_assessment", "SA_system_services_acquisition", "SC_system_communications_protection", "SI_system_information_integrity", "SR_supply_chain_risk_management" ], "value_labels": { "AC_access_control": "AC Access Control", "AT_awareness_training": "AT Awareness and Training", "AU_audit_accountability": "AU Audit and Accountability", "CA_assessment_authorisation_monitoring": "CA Assessment, Authorization, and Monitoring", "CM_configuration_management": "CM Configuration Management", "CP_contingency_planning": "CP Contingency Planning", "IA_identification_authentication": "IA Identification and Authentication", "IR_incident_response": "IR Incident Response", "MA_maintenance": "MA Maintenance", "MP_media_protection": "MP Media Protection", "PE_physical_environmental_protection": "PE Physical and Environmental Protection", "PL_planning": "PL Planning", "PM_program_management": "PM Program Management", "PS_personnel_security": "PS Personnel Security", "PT_pii_processing_transparency": "PT PII Processing and Transparency", "RA_risk_assessment": "RA Risk Assessment", "SA_system_services_acquisition": "SA System and Services Acquisition", "SC_system_communications_protection": "SC System and Communications Protection", "SI_system_information_integrity": "SI System and Information Integrity", "SR_supply_chain_risk_management": "SR Supply Chain Risk Management" }, "use_case": "AI continuous monitoring agent generates automated evidence for each NIST SP 800-53 control it can assess. Evidence records are tagged with control family and specific control ID (e.g. AC-2, AU-6) for ingestion into eMASS or equivalent agency GRC platform.", "source": "NIST SP 800-53 Rev 5 — Security and Privacy Controls for Information Systems and Organisations (all 20 control families)", "source_url": "https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final", "notes": "Rev 5 added PT (PII Processing and Transparency) as the 20th control family. Prior versions had 18 families. AI compliance agents must use Rev 5 family codes — Rev 4 codes (e.g. AR for Accountability, IP for Individual Participation) are no longer current." }, { "enum_name": "ControlAssessmentStatus", "label": "Control Assessment Status", "otel_attribute": "government.nist_sp800_53.control_assessment_status", "opa_policy_path": "data.government.nist_sp800_53.control_assessment_status", "rego_input_key": "government_nist_sp800_53_control_assessment_status", "stability": "stable", "description": "NIST SP 800-53A Rev 5 control assessment outcome status. AI compliance agents report the assessment result for each tested control in the Security Assessment Report (SAR) and continuous monitoring programme.", "permitted_values": [ "satisfied", "other_than_satisfied", "not_applicable", "not_assessed", "assessment_in_progress", "inherited_from_common_control_provider" ], "value_labels": { "satisfied": "Satisfied", "other_than_satisfied": "Other Than Satisfied", "not_applicable": "Not Applicable", "not_assessed": "Not Assessed", "assessment_in_progress": "Assessment in Progress", "inherited_from_common_control_provider": "Inherited From Common Control Provider" }, "code_definitions": { "satisfied": "Control is fully implemented and operating as intended; all assessment objectives met; no weaknesses identified", "other_than_satisfied": "One or more assessment objectives not met; weakness documented in POA&M; risk accepted by Authorising Official or remediation in progress", "not_applicable": "Control does not apply to this system based on its characteristics, operating environment, or applicable tailoring guidance", "inherited_from_common_control_provider": "Control is fully or partially provided by a common control (e.g. FedRAMP-authorised CSP, agency-level common control); responsibility documented in SSP" }, "regulatory_mappings": { "nist_sp_800_53a": "NIST SP 800-53A Rev 5 — Assessment procedures produce satisfied/other-than-satisfied determinations for each control objective", "fedramp": "FedRAMP 3PAO assessment: 'other_than_satisfied' findings must appear in SAR and POA&M; High findings may result in DATO" }, "source": "NIST SP 800-53A Rev 5 — Assessing Security and Privacy Controls", "source_url": "https://csrc.nist.gov/publications/detail/sp/800-53a/rev-5/final" }, { "enum_name": "ContinuousMonitoringFrequency", "label": "Continuous Monitoring Frequency", "otel_attribute": "government.continuous_monitoring.frequency", "opa_policy_path": "data.government.continuous_monitoring.frequency", "rego_input_key": "government_continuous_monitoring_frequency", "stability": "stable", "description": "NIST SP 800-137A / FedRAMP continuous monitoring assessment frequency classification. AI compliance agents schedule automated control assessments according to these frequencies as required by FedRAMP ConMon obligations.", "permitted_values": [ "continuously", "daily", "weekly", "monthly", "quarterly", "semi_annually", "annually", "on_demand", "event_driven" ], "value_labels": { "continuously": "Continuously", "daily": "Daily", "weekly": "Weekly", "monthly": "Monthly", "quarterly": "Quarterly", "semi_annually": "Semi Annually", "annually": "Annually", "on_demand": "On Demand", "event_driven": "Event Driven" }, "use_case": "FedRAMP ConMon requires monthly vulnerability scanning, annual penetration testing, and continuous log monitoring. AI compliance agents schedule and execute control assessments at the required frequency and generate evidence with timestamp and frequency classification for the FedRAMP PMO.", "source": "NIST SP 800-137A; FedRAMP Continuous Monitoring Strategy Guide", "source_url": "https://www.fedramp.gov/documents-templates/" } ] }, { "subdomain": "AI Accountability & Rights-Impacting Use Cases", "description": "Covers OMB M-24-10, EO 14110, and EU AI Act Annex III enumerations for high-impact government AI use cases, AI accountability minimum risk practices, and the federal AI use case inventory. These enums are the vocabulary for the federal AI governance ecosystem.", "relevant_standards": [ "OMB M-24-10 — Advancing Governance, Innovation, and Risk Management for Agency Use of AI (March 2024)", "EO 14110 — Safe, Secure, and Trustworthy Development and Use of AI (October 2023)", "EU AI Act (2024/1689) Annex III paras 5, 6, 7 — High-risk AI in public services, law enforcement, migration", "NIST AI RMF 1.0 — AI Risk Management Framework (2023)", "NIST AI 600-1 — Generative AI Profile (2024)", "Blueprint for an AI Bill of Rights (OSTP, October 2022)" ], "categories": [ { "enum_name": "AIAccountabilityUseCase", "label": "AI Accountability Use Case", "otel_attribute": "government.ai_accountability.use_case", "opa_policy_path": "data.government.ai_accountability.use_case", "rego_input_key": "government_ai_accountability_use_case", "stability": "stable", "description": "OMB M-24-10 / EU AI Act Annex III high-impact government AI use case classification. Every federal AI system must be categorised against this taxonomy for the annual agency AI use case inventory and to determine which minimum risk practices apply. Use cases marked rights-impacting or safety-impacting require enhanced governance.", "permitted_values": [ "benefits_eligibility_determination", "law_enforcement_predictive_policing", "law_enforcement_facial_recognition", "child_welfare_risk_scoring", "hiring_and_employment_screening", "parole_sentencing_risk_scoring", "immigration_adjudication", "immigration_border_risk_screening", "credit_and_housing_determination", "healthcare_diagnosis_or_treatment", "educational_outcome_assessment", "tax_fraud_detection", "public_procurement_evaluation", "national_security_threat_assessment", "emergency_resource_allocation", "regulatory_enforcement_targeting", "administrative_process_automation", "citizen_service_chatbot_non_binding" ], "value_labels": { "benefits_eligibility_determination": "Benefits Eligibility Determination", "law_enforcement_predictive_policing": "Law Enforcement Predictive Policing", "law_enforcement_facial_recognition": "Law Enforcement Facial Recognition", "child_welfare_risk_scoring": "Child Welfare Risk Scoring", "hiring_and_employment_screening": "Hiring and Employment Screening", "parole_sentencing_risk_scoring": "Parole Sentencing Risk Scoring", "immigration_adjudication": "Immigration Adjudication", "immigration_border_risk_screening": "Immigration Border Risk Screening", "credit_and_housing_determination": "Credit and Housing Determination", "healthcare_diagnosis_or_treatment": "Healthcare Diagnosis or Treatment", "educational_outcome_assessment": "Educational Outcome Assessment", "tax_fraud_detection": "Tax Fraud Detection", "public_procurement_evaluation": "Public Procurement Evaluation", "national_security_threat_assessment": "National Security Threat Assessment", "emergency_resource_allocation": "Emergency Resource Allocation", "regulatory_enforcement_targeting": "Regulatory Enforcement Targeting", "administrative_process_automation": "Administrative Process Automation", "citizen_service_chatbot_non_binding": "Citizen Service Chatbot Non Binding" }, "code_definitions": { "benefits_eligibility_determination": "AI determining, recommending, or influencing eligibility decisions for government benefit programmes (Social Security, Medicaid, SNAP, unemployment insurance, veterans benefits). OMB M-24-10 rights-impacting. EU AI Act Annex III para 5(a) high-risk.", "law_enforcement_facial_recognition": "AI using facial recognition or biometric identification in law enforcement contexts. EU AI Act Article 5 prohibits real-time remote biometric identification in public spaces except in narrow exceptions.", "parole_sentencing_risk_scoring": "AI producing risk scores used in parole, bail, or sentencing decisions (e.g. COMPAS-type tools). OMB M-24-10 rights-impacting. EU AI Act Annex III para 6(d) high-risk.", "citizen_service_chatbot_non_binding": "AI providing information or routing assistance to citizens where the AI output does not directly determine access to services or rights; lower risk tier." }, "regulatory_mappings": { "omb_m_24_10": "OMB M-24-10 Section 5 — Minimum risk practices required for 'rights-impacting' and 'safety-impacting' AI; annual use case inventory required", "eu_ai_act_annex3": "EU AI Act Annex III paras 5, 6, 7 — Explicit high-risk classifications for government AI use cases", "eu_ai_act_art5": "EU AI Act Article 5 — Prohibited AI practices: real-time remote biometric identification, social scoring, exploitation of vulnerabilities", "blueprint_ai_bill_rights": "OSTP Blueprint for an AI Bill of Rights — Safe and effective systems, algorithmic discrimination protections, data privacy, notice and explanation, human alternatives" }, "use_case": "Agency AI inventory system classifies every AI system by use case. OPA policy enforces that 'parole_sentencing_risk_scoring', 'benefits_eligibility_determination', and 'immigration_adjudication' systems must complete all OMB M-24-10 minimum risk practices before production deployment.", "source": "OMB M-24-10 — Appendix I high-impact AI use case definitions; EU AI Act Annex III paras 5-7; NIST AI RMF", "source_url": "https://www.whitehouse.gov/wp-content/uploads/2024/03/M-24-10-Advancing-Governance-Innovation-and-Risk-Management.pdf" }, { "enum_name": "AIMinimumRiskPracticeStatus", "label": "AI Minimum Risk Practice Status", "otel_attribute": "government.ai_accountability.min_risk_practice_status", "opa_policy_path": "data.government.ai_accountability.min_risk_practice_status", "rego_input_key": "government_ai_accountability_min_risk_practice_status", "stability": "stable", "description": "OMB M-24-10 Section 5 minimum risk practice completion status for a rights-impacting or safety-impacting AI use case. All required practices must reach 'completed' status before the AI system may be deployed in production for the relevant use case.", "permitted_values": [ "not_started", "in_progress", "completed", "completed_with_exceptions", "waiver_requested", "waiver_granted", "not_applicable", "overdue_paused" ], "value_labels": { "not_started": "Not Started", "in_progress": "In Progress", "completed": "Completed", "completed_with_exceptions": "Completed with Exceptions", "waiver_requested": "Waiver Requested", "waiver_granted": "Waiver Granted", "not_applicable": "Not Applicable", "overdue_paused": "Overdue Paused" }, "code_definitions": { "completed": "Minimum risk practice fully completed and documented; evidence available for OMB review", "overdue_paused": "Minimum risk practice deadline passed without completion; OMB M-24-10 Section 5(c) requires agency to pause or halt use of the AI system until practice is completed", "waiver_granted": "Agency Director has granted a waiver from a specific minimum risk practice based on documented operational necessity; waiver and basis must be published in use case inventory" }, "regulatory_mappings": { "omb_m_24_10_section5": "OMB M-24-10 Section 5(b) — Minimum practices deadline was December 1, 2024; Section 5(c) — Systems failing to complete practices must be paused or halted", "eo_14110": "EO 14110 Section 10 — Agency AI governance requirements; Chief AI Officer oversight of minimum practice completion" }, "use_case": "Agency Chief AI Officer dashboard tracks minimum risk practice status for every rights-impacting AI system. OPA policy blocks deployment of any rights-impacting AI system where any required minimum risk practice has status 'not_started', 'in_progress', or 'overdue_paused'.", "source": "OMB M-24-10 Section 5 — Minimum Practices for Rights-Impacting and Safety-Impacting AI", "source_url": "https://www.whitehouse.gov/wp-content/uploads/2024/03/M-24-10-Advancing-Governance-Innovation-and-Risk-Management.pdf" }, { "enum_name": "AIUseCaseInventoryStage", "label": "AI Use Case Inventory Stage", "otel_attribute": "government.ai_accountability.inventory_stage", "opa_policy_path": "data.government.ai_accountability.inventory_stage", "rego_input_key": "government_ai_accountability_inventory_stage", "stability": "stable", "description": "Stage of an AI use case in the federal agency annual AI use case inventory lifecycle per OMB M-24-10. Agencies must publish inventories annually; AI systems not yet inventoried may not process public data.", "permitted_values": [ "identified_not_yet_assessed", "under_assessment", "inventoried_non_sensitive", "inventoried_rights_impacting", "inventoried_safety_impacting", "inventoried_national_security_excepted", "decommissioned", "not_covered_narrow_exception" ], "value_labels": { "identified_not_yet_assessed": "Identified not Yet Assessed", "under_assessment": "Under Assessment", "inventoried_non_sensitive": "Inventoried Non Sensitive", "inventoried_rights_impacting": "Inventoried Rights Impacting", "inventoried_safety_impacting": "Inventoried Safety Impacting", "inventoried_national_security_excepted": "Inventoried National Security Excepted", "decommissioned": "Decommissioned", "not_covered_narrow_exception": "Not Covered Narrow Exception" }, "regulatory_mappings": { "omb_m_24_10_section3": "OMB M-24-10 Section 3 — Annual AI use case inventory publication requirement; CAIO responsible for completeness and accuracy" }, "source": "OMB M-24-10 Section 3 — AI Governance and Accountability; EO 14110 Section 10(a)", "source_url": "https://www.whitehouse.gov/wp-content/uploads/2024/03/M-24-10-Advancing-Governance-Innovation-and-Risk-Management.pdf" } ] }, { "subdomain": "Law Enforcement & Criminal Justice AI", "description": "Covers AI governance enumerations specific to law enforcement, criminal justice, and corrections AI systems. These are among the most rights-sensitive AI applications — subject to OMB M-24-10, EU AI Act Annex III para 6, and the Blueprint for an AI Bill of Rights.", "relevant_standards": [ "EU AI Act (2024/1689) Annex III para 6 — High-risk AI in law enforcement", "EU AI Act Article 5 — Prohibited AI: real-time remote biometric ID, social scoring", "OMB M-24-10 — Rights-impacting AI minimum practices", "DOJ AI Use Policy (2024)", "CJIS Security Policy v5.9 — FBI Criminal Justice Information Services security requirements", "Algorithmic Accountability Act (proposed) — Congressional proposals for bias auditing" ], "categories": [ { "enum_name": "LawEnforcementAIToolType", "label": "Law Enforcement AI Tool Type", "otel_attribute": "government.law_enforcement.ai_tool_type", "opa_policy_path": "data.government.law_enforcement.ai_tool_type", "rego_input_key": "government_law_enforcement_ai_tool_type", "stability": "stable", "description": "Classification of a law enforcement AI tool type for accountability tracking and rights-impact assessment. Each type carries different bias risks, due process implications, and EU AI Act compliance requirements.", "permitted_values": [ "facial_recognition_identification", "predictive_policing_hotspot", "recidivism_risk_scoring", "bail_risk_assessment", "gang_membership_identification", "social_media_monitoring", "license_plate_reader_analytics", "gunshot_detection_ai", "body_camera_analytics", "forensic_dna_probabilistic_genotyping", "document_fraud_detection", "crime_pattern_analysis", "investigative_lead_generation" ], "value_labels": { "facial_recognition_identification": "Facial Recognition Identification", "predictive_policing_hotspot": "Predictive Policing Hotspot", "recidivism_risk_scoring": "Recidivism Risk Scoring", "bail_risk_assessment": "Bail Risk Assessment", "gang_membership_identification": "Gang Membership Identification", "social_media_monitoring": "Social Media Monitoring", "license_plate_reader_analytics": "License Plate Reader Analytics", "gunshot_detection_ai": "Gunshot Detection AI", "body_camera_analytics": "Body Camera Analytics", "forensic_dna_probabilistic_genotyping": "Forensic Dna Probabilistic Genotyping", "document_fraud_detection": "Document Fraud Detection", "crime_pattern_analysis": "Crime Pattern Analysis", "investigative_lead_generation": "Investigative Lead Generation" }, "regulatory_mappings": { "eu_ai_act_annex3_6": "EU AI Act Annex III para 6 — All types in this list are high-risk AI in law enforcement contexts; full Title III Chapter 2 obligations apply", "eu_ai_act_art5_1d": "EU AI Act Article 5(1)(d) — 'facial_recognition_identification' for real-time remote biometric ID in public spaces is prohibited with narrow exceptions (serious crime, terrorism prevention, missing persons)", "omb_m_24_10": "OMB M-24-10 — All types qualify as rights-impacting AI; minimum risk practices mandatory", "cjis_security_policy": "FBI CJIS Security Policy v5.9 — Systems accessing CJIS data must meet security requirements regardless of AI tool type" }, "use_case": "Agency AI inventory registers all law enforcement AI tools by type. OPA policy enforces that 'facial_recognition_identification' and 'recidivism_risk_scoring' tools require completed bias audit, human review protocol, and public transparency notice before operational use.", "source": "EU AI Act Annex III para 6; OMB M-24-10; DOJ AI Use Policy (2024); ACLU/AI Now law enforcement AI taxonomy", "source_url": "https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32024R1689" }, { "enum_name": "BiasAuditOutcome", "label": "Bias Audit Outcome", "otel_attribute": "government.ai_accountability.bias_audit_outcome", "opa_policy_path": "data.government.ai_accountability.bias_audit_outcome", "rego_input_key": "government_ai_accountability_bias_audit_outcome", "stability": "proposed", "description": "Outcome of an independent bias and disparate impact audit for a rights-impacting or safety-impacting government AI system. OMB M-24-10 requires independent assessments; EU AI Act Article 9 requires ongoing bias testing for high-risk AI.", "permitted_values": [ "no_disparate_impact_identified", "disparate_impact_identified_within_threshold", "disparate_impact_identified_exceeds_threshold", "disparate_impact_identified_remediation_complete", "audit_in_progress", "audit_not_yet_conducted", "audit_methodology_under_review" ], "value_labels": { "no_disparate_impact_identified": "No Disparate Impact Identified", "disparate_impact_identified_within_threshold": "Disparate Impact Identified Within Threshold", "disparate_impact_identified_exceeds_threshold": "Disparate Impact Identified Exceeds Threshold", "disparate_impact_identified_remediation_complete": "Disparate Impact Identified Remediation Complete", "audit_in_progress": "Audit in Progress", "audit_not_yet_conducted": "Audit not Yet Conducted", "audit_methodology_under_review": "Audit Methodology Under Review" }, "regulatory_mappings": { "omb_m_24_10": "OMB M-24-10 Section 5(b)(iv) — Independent bias assessment required for rights-impacting AI; results must be disclosed in use case inventory", "eu_ai_act_art9": "EU AI Act Article 9 — Risk management system for high-risk AI must include bias testing across relevant demographic groups", "title_vi_civil_rights_act": "Title VI of the Civil Rights Act — Federal programmes may not discriminate on the basis of race, colour, or national origin; AI tools showing 'disparate_impact_identified_exceeds_threshold' require immediate remediation" }, "use_case": "OPA policy blocks deployment of any law enforcement AI tool where bias_audit_outcome is 'audit_not_yet_conducted', 'disparate_impact_identified_exceeds_threshold', or 'audit_in_progress'. All three states require human review and audit completion before operational use.", "source": "OMB M-24-10 Section 5; EU AI Act Article 9; EEOC four-fifths rule for disparate impact threshold guidance", "source_url": "https://www.whitehouse.gov/wp-content/uploads/2024/03/M-24-10-Advancing-Governance-Innovation-and-Risk-Management.pdf" } ] }, { "subdomain": "Benefits Administration & Public Services", "description": "Covers AI governance enumerations for public benefits programmes (Social Security, Medicaid, SNAP, unemployment insurance, veterans benefits) and digital government service delivery. Benefits eligibility AI is one of the most volume-intensive government AI deployments and the primary focus of OMB M-24-10 rights-impacting minimum risk practices.", "relevant_standards": [ "OMB M-24-10 — Rights-impacting AI minimum practices", "Social Security Act — Benefits eligibility statutory requirements", "EU AI Act Annex III para 5(a) — AI in public benefits access decisions is high-risk", "EU GDPR Article 22 — Automated individual decision-making", "APA § 553/706 — Administrative Procedure Act — Due process in federal agency decisions", "Section 508 — Accessibility for citizen-facing digital services" ], "categories": [ { "enum_name": "BenefitsEligibilityDecisionType", "label": "Benefits Eligibility Decision Type", "otel_attribute": "government.benefits.eligibility_decision_type", "opa_policy_path": "data.government.benefits.eligibility_decision_type", "rego_input_key": "government_benefits_eligibility_decision_type", "stability": "stable", "description": "Type of AI-assisted benefits eligibility decision. Every AI-assisted determination affecting a citizen's access to government benefits must be classified to ensure the correct human review, appeal, and notice requirements apply.", "permitted_values": [ "initial_eligibility_approved", "initial_eligibility_denied", "recertification_approved", "recertification_denied", "benefit_amount_determination", "benefit_suspension", "benefit_termination", "overpayment_determination", "fraud_referral", "appeal_upheld", "appeal_overturned", "administrative_review_required" ], "value_labels": { "initial_eligibility_approved": "Initial Eligibility Approved", "initial_eligibility_denied": "Initial Eligibility Denied", "recertification_approved": "Recertification Approved", "recertification_denied": "Recertification Denied", "benefit_amount_determination": "Benefit Amount Determination", "benefit_suspension": "Benefit Suspension", "benefit_termination": "Benefit Termination", "overpayment_determination": "Overpayment Determination", "fraud_referral": "Fraud Referral", "appeal_upheld": "Appeal Upheld", "appeal_overturned": "Appeal Overturned", "administrative_review_required": "Administrative Review Required" }, "regulatory_mappings": { "eu_ai_act_annex3_5a": "EU AI Act Annex III para 5(a) — AI determining access to public benefits is high-risk; human oversight, transparency, and accuracy requirements apply", "eu_gdpr_art22": "GDPR Article 22 — Citizens have the right not to be subject to solely automated decisions with significant effects; human review must be available", "apa_due_process": "APA § 706 / Due process — Adverse determinations ('initial_eligibility_denied', 'benefit_termination', 'fraud_referral') must include written notice of reasons, evidence basis, and right of appeal", "omb_m_24_10": "OMB M-24-10 Section 5(b)(ii) — Human alternative must be available; timely human review of adverse AI determinations required" }, "use_case": "AI benefits processing agent produces a recommended decision type. OPA policy enforces that 'initial_eligibility_denied', 'benefit_termination', and 'fraud_referral' decisions always require human case worker review before the decision is communicated to the claimant. AI may never autonomously issue an adverse benefits determination.", "source": "OMB M-24-10; EU AI Act Annex III para 5(a); SSA POMS; Medicaid MAGI eligibility rules", "source_url": "https://www.ssa.gov/policy/docs/ssb/v77n4/v77n4p1.html" }, { "enum_name": "CitizenServiceChannelType", "label": "Citizen Service Channel Type", "otel_attribute": "government.citizen_service.channel_type", "opa_policy_path": "data.government.citizen_service.channel_type", "rego_input_key": "government_citizen_service_channel_type", "stability": "proposed", "description": "Channel through which an AI-assisted citizen service interaction is delivered. OMB M-23-22 requires agencies to provide a digital-first but not digital-only public experience — human alternative channels must always be available alongside AI channels.", "permitted_values": [ "ai_chatbot_web", "ai_chatbot_mobile", "ai_voice_ivr", "ai_assisted_human_agent", "human_agent_only", "in_person_office", "mail_paper", "third_party_navigator" ], "value_labels": { "ai_chatbot_web": "AI Chatbot Web", "ai_chatbot_mobile": "AI Chatbot Mobile", "ai_voice_ivr": "AI Voice Ivr", "ai_assisted_human_agent": "AI Assisted Human Agent", "human_agent_only": "Human Agent Only", "in_person_office": "In Person Office", "mail_paper": "Mail Paper", "third_party_navigator": "Third Party Navigator" }, "regulatory_mappings": { "omb_m_23_22": "OMB M-23-22 — Digital-first public experience: agencies must offer high-quality digital services; OMB M-24-10 requires human alternative channel alongside AI channels for rights-impacting interactions", "section_508": "Section 508 — All AI-delivered citizen service channels must be accessible to individuals with disabilities" }, "use_case": "AI citizen service agent logs the channel type for each interaction. OPA policy enforces that benefits eligibility and immigration interactions conducted via 'ai_chatbot_web' or 'ai_voice_ivr' must always include a prominent human escalation path.", "source": "OMB M-23-22; OMB M-24-10; Section 508 accessibility requirements", "source_url": "https://www.whitehouse.gov/wp-content/uploads/2023/09/M-23-22-Delivering-a-Digital-First-Public-Experience.pdf" } ] }, { "subdomain": "Immigration & Border Management AI", "description": "Covers EU AI Act Annex III para 7 and DHS/CBP enumerations for AI systems used in immigration adjudication, border screening, and asylum processing. These are among the most internationally scrutinised government AI applications.", "relevant_standards": [ "EU AI Act (2024/1689) Annex III para 7 — High-risk AI in migration, asylum, and border control", "EU AI Act Article 5(1)(d) — Prohibition on real-time biometric ID (with narrow exceptions)", "UNHCR ExCom — AI in refugee status determination guidance (2024)", "DHS AI Strategy (2023) — Department of Homeland Security AI governance", "CBP AI Use Policy — Customs and Border Protection", "USCIS AI Use Cases — US Citizenship and Immigration Services" ], "categories": [ { "enum_name": "ImmigrationAdjudicationAIUseType", "label": "Immigration Adjudication AI Use Type", "otel_attribute": "government.immigration.ai_use_type", "opa_policy_path": "data.government.immigration.ai_use_type", "rego_input_key": "government_immigration_ai_use_type", "stability": "stable", "description": "Type of AI use in an immigration or border management process. EU AI Act Annex III para 7 makes all these AI use types high-risk — requiring full Title III Chapter 2 compliance including conformity assessment, registration, and human oversight.", "permitted_values": [ "visa_application_risk_screening", "asylum_claim_credibility_assessment", "document_authenticity_verification", "biometric_identity_matching", "travel_document_fraud_detection", "border_crossing_anomaly_detection", "refugee_status_determination_support", "immigration_enforcement_targeting", "detention_risk_assessment", "deportation_order_generation" ], "value_labels": { "visa_application_risk_screening": "Visa Application Risk Screening", "asylum_claim_credibility_assessment": "Asylum Claim Credibility Assessment", "document_authenticity_verification": "Document Authenticity Verification", "biometric_identity_matching": "Biometric Identity Matching", "travel_document_fraud_detection": "Travel Document Fraud Detection", "border_crossing_anomaly_detection": "Border Crossing Anomaly Detection", "refugee_status_determination_support": "Refugee Status Determination Support", "immigration_enforcement_targeting": "Immigration Enforcement Targeting", "detention_risk_assessment": "Detention Risk Assessment", "deportation_order_generation": "Deportation Order Generation" }, "regulatory_mappings": { "eu_ai_act_annex3_7": "EU AI Act Annex III para 7 — All use types listed are high-risk AI in migration, asylum, and border control contexts", "eu_ai_act_art14": "EU AI Act Article 14 — All high-risk immigration AI must have human oversight; officers must be able to override AI recommendations", "unhcr_guidance": "UNHCR ExCom Conclusion on AI — AI in refugee status determination must be explainable and subject to human review; adverse recommendations require officer-level decision", "eu_charter_art18": "EU Charter of Fundamental Rights Article 18 — Right to asylum; AI tools cannot make binding asylum determinations without human adjudicator decision" }, "use_case": "Immigration AI agent assists officers with risk screening. OPA policy enforces that 'asylum_claim_credibility_assessment', 'detention_risk_assessment', and 'deportation_order_generation' outputs are advisory only — binding decisions require human immigration officer sign-off documented in the case record.", "source": "EU AI Act Annex III para 7; DHS AI Strategy; UNHCR AI in RSD guidance 2024", "source_url": "https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32024R1689" } ] }, { "subdomain": "Federal Procurement & Acquisition AI", "description": "Covers FAR/DFARS AI procurement enumerations, federal contract vehicle classification for AI services, and acquisition lifecycle AI governance.", "relevant_standards": [ "FAR Part 12 — Acquisition of Commercial Items", "FAR Part 39 — Acquisition of Information Technology", "DFARS 252.204-7012 — Safeguarding Covered Defense Information", "DFARS 252.204-7024 — Notice on the Use of AI in Defence Contracts (proposed 2024)", "OMB M-24-18 — Acquisition of AI-Enabled Software Products and Services (2024)", "GSA MAS Schedule — IT Category AI solutions", "DoD AI Acquisition Guidance (2023)" ], "categories": [ { "enum_name": "FederalAIAcquisitionVehicleType", "label": "Federal AI Acquisition Vehicle Type", "otel_attribute": "government.procurement.ai_acquisition_vehicle", "opa_policy_path": "data.government.procurement.ai_acquisition_vehicle", "rego_input_key": "government_procurement_ai_acquisition_vehicle", "stability": "stable", "description": "Federal contract vehicle or procurement mechanism used to acquire AI products and services. Determines the regulatory requirements (FedRAMP, DFARS, Section 508) and oversight obligations applicable to the procured AI system.", "permitted_values": [ "gsa_mas_schedule_it_category", "gsa_gwac_alliant_3", "gsa_gwac_8a_stars_iii", "doi_ecs_iii", "nasa_sewp_vi", "dod_otagreement", "dod_idiq_contract", "agency_direct_award_sar", "sbir_sttr_award", "cooperative_research_crada", "open_source_no_contract" ], "value_labels": { "gsa_mas_schedule_it_category": "Gsa Mas Schedule It Category", "gsa_gwac_alliant_3": "Gsa Gwac Alliant 3", "gsa_gwac_8a_stars_iii": "Gsa Gwac 8a Stars Iii", "doi_ecs_iii": "Doi Ecs Iii", "nasa_sewp_vi": "Nasa Sewp Vi", "dod_otagreement": "Dod Otagreement", "dod_idiq_contract": "Dod Idiq Contract", "agency_direct_award_sar": "Agency Direct Award SAR", "sbir_sttr_award": "Sbir Sttr Award", "cooperative_research_crada": "Cooperative Research Crada", "open_source_no_contract": "Open Source No Contract" }, "regulatory_mappings": { "far_part_39": "FAR Part 39 — IT acquisitions including AI must comply with Section 508 and FedRAMP requirements", "dfars_252_204_7012": "DFARS 252.204-7012 — DoD contracts must include CUI safeguarding requirements; applies to AI vendors with access to covered defence information", "omb_m_24_18": "OMB M-24-18 — AI acquisition guidance: agencies must include AI-specific evaluation criteria and contract terms in solicitations" }, "source": "FAR/DFARS; GSA contract vehicle taxonomy; OMB M-24-18", "source_url": "https://www.acquisition.gov/" }, { "enum_name": "AIContractRiskTier", "label": "AI Contract Risk Tier", "otel_attribute": "government.procurement.ai_contract_risk_tier", "opa_policy_path": "data.government.procurement.ai_contract_risk_tier", "rego_input_key": "government_procurement_ai_contract_risk_tier", "stability": "proposed", "description": "Risk tier classification for an AI procurement based on the sensitivity of use case, data access, and potential impact on mission operations or public rights. Drives pre-award assessment depth and post-award monitoring frequency.", "permitted_values": [ "tier_1_low_risk", "tier_2_moderate_risk", "tier_3_high_risk_rights_impacting", "tier_4_critical_national_security" ], "value_labels": { "tier_1_low_risk": "Tier 1 — Low Risk", "tier_2_moderate_risk": "Tier 2 — Moderate Risk", "tier_3_high_risk_rights_impacting": "Tier 3 — High Risk Rights Impacting", "tier_4_critical_national_security": "Tier 4 — Critical National Security" }, "code_definitions": { "tier_1_low_risk": "AI for internal productivity, non-sensitive administrative tasks, no PII, no public impact. Minimal additional procurement requirements beyond standard IT.", "tier_2_moderate_risk": "AI accessing federal data, assisting with government processes, limited public impact. FedRAMP Moderate or equivalent required. Standard OMB M-24-10 governance.", "tier_3_high_risk_rights_impacting": "AI used in rights-impacting or safety-impacting determinations per OMB M-24-10. FedRAMP High, bias audit, independent assessment, OMB M-24-10 minimum practices required before award and deployment.", "tier_4_critical_national_security": "AI in national security, classified, or critical infrastructure contexts. Additional EO 14110 safety evaluations, ODNI/DoD AI governance requirements, DFARS CUI/CDI protections, and potential NSC review." }, "ordered": true, "value_ordinals": { "tier_1_low_risk": 1, "tier_2_moderate_risk": 2, "tier_3_high_risk_rights_impacting": 3, "tier_4_critical_national_security": 4 }, "regulatory_mappings": { "omb_m_24_10": "OMB M-24-10 — Tier 3 and 4 acquisitions require completed minimum risk practices before deployment", "eo_14110": "EO 14110 — Tier 4 AI systems must complete safety evaluations per Section 4 before deployment in national security contexts" }, "source": "OMB M-24-10; EO 14110; DoD AI Acquisition Guidance (2023); OMB M-24-18", "source_url": "https://www.whitehouse.gov/wp-content/uploads/2024/03/M-24-10-Advancing-Governance-Innovation-and-Risk-Management.pdf" } ] }, { "subdomain": "FOIA, Records Management & Open Government", "description": "Covers AI-assisted Freedom of Information Act (FOIA) processing, federal records management, and open data governance enumerations.", "relevant_standards": [ "Freedom of Information Act (5 USC § 552) — FOIA request processing requirements", "Presidential Records Act / Federal Records Act — Records retention and management", "OMB M-23-07 — Update to Transition to Electronic Records", "NARA Bulletin 2023-01 — Guidance on Managing Electronic Records", "DATA Act (2014) — Federal spending data transparency", "Open, Public, Electronic and Necessary Government Data Act (OPEN Government Data Act 2018)" ], "categories": [ { "enum_name": "FOIARequestProcessingStatus", "label": "FOIA Request Processing Status", "otel_attribute": "government.foia.processing_status", "opa_policy_path": "data.government.foia.processing_status", "rego_input_key": "government_foia_processing_status", "stability": "stable", "description": "Status of a FOIA request as it is processed by an AI-assisted FOIA workflow. AI FOIA agents may triage, search, and recommend redactions but a human FOIA officer must make final disclosure and exemption determinations.", "permitted_values": [ "received", "acknowledged", "perfected", "search_in_progress", "ai_review_in_progress", "human_review_required", "redaction_in_progress", "response_draft_ready", "released_full", "released_partial", "denied_in_full", "referred_to_agency", "closed_no_records", "appealed_by_requester", "litigation_hold" ], "value_labels": { "received": "Received", "acknowledged": "Acknowledged", "perfected": "Perfected", "search_in_progress": "Search in Progress", "ai_review_in_progress": "AI Review in Progress", "human_review_required": "Human Review Required", "redaction_in_progress": "Redaction in Progress", "response_draft_ready": "Response Draft Ready", "released_full": "Released Full", "released_partial": "Released Partial", "denied_in_full": "Denied in Full", "referred_to_agency": "Referred to Agency", "closed_no_records": "Closed No Records", "appealed_by_requester": "Appealed by Requester", "litigation_hold": "Litigation Hold" }, "regulatory_mappings": { "foia_5_usc_552": "FOIA 5 USC § 552(a)(6) — 20 working day response deadline; complex requests may qualify for extension", "doj_foia_guidance": "DOJ FOIA guidelines — AI-assisted redaction tools must be reviewed by a human FOIA officer before response is issued; AI cannot autonomously determine FOIA exemption applicability" }, "use_case": "AI FOIA triage agent classifies requests, conducts keyword search, and marks sensitive passages for redaction review. OPA policy enforces that 'denied_in_full' and 'released_partial' determinations always require human FOIA officer sign-off before communication to the requester.", "source": "FOIA 5 USC § 552; DOJ FOIA processing guidance; agency FOIA regulations", "source_url": "https://www.justice.gov/oip/freedom-information-act-5-usc-552" }, { "enum_name": "FOIAExemptionCategory", "label": "FOIA Exemption Category", "otel_attribute": "government.foia.exemption_category", "opa_policy_path": "data.government.foia.exemption_category", "rego_input_key": "government_foia_exemption_category", "stability": "stable", "description": "FOIA exemption category under 5 USC § 552(b). AI FOIA review agents may flag candidate exemptions but a human officer must confirm each exemption before withholding records. Each exemption requires specific legal justification.", "permitted_values": [ "exemption_1_classified_national_security", "exemption_2_internal_personnel_rules", "exemption_3_statute_prohibited", "exemption_4_trade_secrets", "exemption_5_deliberative_process_privilege", "exemption_5_attorney_client_privilege", "exemption_5_work_product", "exemption_6_personal_privacy", "exemption_7a_law_enforcement_interference", "exemption_7b_fair_trial_rights", "exemption_7c_unwarranted_privacy", "exemption_7d_confidential_source", "exemption_7e_law_enforcement_techniques", "exemption_7f_endangerment", "exemption_8_financial_institutions", "exemption_9_geological_data" ], "value_labels": { "exemption_1_classified_national_security": "Exemption 1 Classified National Security", "exemption_2_internal_personnel_rules": "Exemption 2 Internal Personnel Rules", "exemption_3_statute_prohibited": "Exemption 3 Statute Prohibited", "exemption_4_trade_secrets": "Exemption 4 Trade Secrets", "exemption_5_deliberative_process_privilege": "Exemption 5 Deliberative Process Privilege", "exemption_5_attorney_client_privilege": "Exemption 5 Attorney Client Privilege", "exemption_5_work_product": "Exemption 5 Work Product", "exemption_6_personal_privacy": "Exemption 6 Personal Privacy", "exemption_7a_law_enforcement_interference": "Exemption 7a Law Enforcement Interference", "exemption_7b_fair_trial_rights": "Exemption 7b Fair Trial Rights", "exemption_7c_unwarranted_privacy": "Exemption 7c Unwarranted Privacy", "exemption_7d_confidential_source": "Exemption 7d Confidential Source", "exemption_7e_law_enforcement_techniques": "Exemption 7e Law Enforcement Techniques", "exemption_7f_endangerment": "Exemption 7f Endangerment", "exemption_8_financial_institutions": "Exemption 8 Financial Institutions", "exemption_9_geological_data": "Exemption 9 Geological Data" }, "use_case": "AI FOIA review agent scans responsive documents and recommends applicable exemptions for human FOIA officer review. 'Exemption_1_classified_national_security' recommendations trigger mandatory ISCAP referral if the classification is disputed.", "source": "FOIA 5 USC § 552(b) — Nine exemption categories (Exemption 7 has six sub-categories)", "source_url": "https://www.justice.gov/oip/freedom-information-act-5-usc-552" } ] }, { "subdomain": "Cybersecurity & Zero Trust (Federal)", "description": "Covers OMB M-22-09 Zero Trust, CISA CDM, and EO 14028 cybersecurity enumerations for AI agents deployed in federal cybersecurity monitoring, threat detection, and incident response.", "relevant_standards": [ "OMB M-22-09 — Moving the US Government Toward Zero Trust Cybersecurity Principles", "CISA Zero Trust Maturity Model v2.0 (2023)", "EO 14028 — Improving the Nation's Cybersecurity (2021)", "CISA CDM — Continuous Diagnostics and Mitigation programme", "OMB M-21-31 — Log retention requirements for federal agencies", "NIST SP 800-207 — Zero Trust Architecture" ], "categories": [ { "enum_name": "ZeroTrustMaturityLevel", "label": "Zero Trust Maturity Level", "otel_attribute": "government.zero_trust.maturity_level", "opa_policy_path": "data.government.zero_trust.maturity_level", "rego_input_key": "government_zero_trust_maturity_level", "stability": "stable", "description": "CISA Zero Trust Maturity Model v2.0 maturity level for a federal agency or system pillar (Identity, Devices, Networks, Applications, Data). AI security agents report on ZT maturity to drive CDM dashboard updates.", "permitted_values": [ "traditional", "initial", "advanced", "optimal" ], "value_labels": { "traditional": "Traditional", "initial": "Initial", "advanced": "Advanced", "optimal": "Optimal" }, "code_definitions": { "traditional": "Legacy perimeter-based security; limited integration of ZT principles; pre-EO 14028 posture", "initial": "Some ZT capabilities deployed; automated attribute assignment begun; inventory partly complete; gaps remain", "advanced": "Cross-pillar integration; automation of identity and device validation; enterprise-wide visibility approaching complete", "optimal": "Fully automated ZT operations; AI-driven continuous validation; dynamic policy enforcement across all pillars; CDM data feeds complete and current" }, "ordered": true, "value_ordinals": { "traditional": 1, "initial": 2, "advanced": 3, "optimal": 4 }, "regulatory_mappings": { "omb_m_22_09": "OMB M-22-09 — Agencies must achieve specific ZT milestones by end of FY2024; annual reporting to OMB/CISA required", "eo_14028": "EO 14028 Section 3 — Federal agencies required to advance toward ZT architecture; CISA ZTM is the reference framework" }, "source": "CISA Zero Trust Maturity Model v2.0 (2023) — Maturity stages", "source_url": "https://www.cisa.gov/zero-trust-maturity-model" }, { "enum_name": "FederalIncidentSeverityCategory", "label": "Federal Incident Severity Category", "otel_attribute": "government.cybersecurity.incident_severity_category", "opa_policy_path": "data.government.cybersecurity.incident_severity_category", "rego_input_key": "government_cybersecurity_incident_severity_category", "stability": "stable", "description": "US-CERT / CISA federal incident severity schema. AI cybersecurity agents must classify all detected incidents using this schema for FISMA reporting, US-CERT notification, and OMB M-21-31 log retention determination.", "permitted_values": [ "category_0_exercise", "category_1_unauthorized_access", "category_2_denial_of_service", "category_3_malicious_code", "category_4_improper_usage", "category_5_scans_probes", "category_6_investigation" ], "value_labels": { "category_0_exercise": "Category 0 Exercise", "category_1_unauthorized_access": "Category 1 Unauthorized Access", "category_2_denial_of_service": "Category 2 Denial of Service", "category_3_malicious_code": "Category 3 Malicious Code", "category_4_improper_usage": "Category 4 Improper Usage", "category_5_scans_probes": "Category 5 Scans Probes", "category_6_investigation": "Category 6 Investigation" }, "regulatory_mappings": { "fisma": "FISMA — All Category 1–3 incidents must be reported to US-CERT within 1 hour of discovery", "omb_m_21_31": "OMB M-21-31 — Log retention: Category 1 and 2 incidents require EL3 logging (12-month retention plus 18-month cold storage)", "eo_14028_sec6": "EO 14028 Section 6 — Federal agencies must share cyber incident information with CISA; AI threat detection agents are key data sources" }, "source": "CISA / US-CERT Federal Incident Notification Guidelines — Incident Category Descriptions", "source_url": "https://www.cisa.gov/federal-incident-notification-guidelines" } ] } ], "opa_rego_policy_patterns": { "description": "Government & Public Sector-specific OPA Rego policy patterns referencing enum values from this file and from 00_core_sdk_and_governance.json. Illustrative patterns, not production policies.", "patterns": [ { "pattern_id": "government.block_rights_impacting_ai_without_omb_m2410_practices", "pattern_name": "block_rights_impacting_ai_without_omb_m2410_practices", "enforcement_effect": "deny", "description": "Block any federal AI system classified as rights-impacting or safety-impacting from processing public data unless all required OMB M-24-10 Section 5 minimum risk practices have been completed. Implements the OMB M-24-10 Section 5(c) pause-or-halt obligation in automated enforcement.", "applicable_enums": [ "AIAccountabilityUseCase", "AIMinimumRiskPracticeStatus", "AIUseCaseInventoryStage" ], "regulatory_basis": "OMB M-24-10 Section 5(b) and 5(c) — Minimum risk practices required for rights-impacting and safety-impacting AI; Section 5(c) — Failure to complete requires agency to pause or halt use", "rego_sketch": "package government.ai_accountability\n\nrights_impacting_use_cases := {\n \"benefits_eligibility_determination\",\n \"law_enforcement_predictive_policing\",\n \"law_enforcement_facial_recognition\",\n \"parole_sentencing_risk_scoring\",\n \"immigration_adjudication\",\n \"immigration_border_risk_screening\",\n \"child_welfare_risk_scoring\"\n}\n\nblocking_practice_statuses := {\n \"not_started\",\n \"in_progress\",\n \"overdue_paused\"\n}\n\ndeny[msg] {\n input.government_ai_accountability_use_case in rights_impacting_use_cases\n input.government_ai_accountability_min_risk_practice_status in blocking_practice_statuses\n msg := sprintf(\"OMB M-24-10 Section 5(c): AI use case '%v' is rights-impacting. Minimum risk practice status is '%v'. Agency must pause or halt use until all required practices are completed.\", [input.government_ai_accountability_use_case, input.government_ai_accountability_min_risk_practice_status])\n}\n\ndeny[msg] {\n input.government_ai_accountability_use_case in rights_impacting_use_cases\n input.government_ai_accountability_inventory_stage == \"identified_not_yet_assessed\"\n msg := \"OMB M-24-10 Section 3: AI system has not been assessed for the agency use case inventory. Rights-impacting AI must complete inventory assessment before processing public data.\"\n}" }, { "pattern_id": "government.block_autonomous_adverse_benefits_determination", "pattern_name": "block_autonomous_adverse_benefits_determination", "enforcement_effect": "deny", "description": "Block any AI benefits processing agent from autonomously issuing an adverse determination (denial, termination, fraud referral) without human caseworker review and documented notice to the claimant. Implements OMB M-24-10 human alternatives requirement and APA due process for AI-assisted agency decisions.", "applicable_enums": [ "BenefitsEligibilityDecisionType", "AIAccountabilityUseCase", "AIMinimumRiskPracticeStatus" ], "regulatory_basis": "OMB M-24-10 Section 5(b)(ii) — Human alternative and timely human review required for rights-impacting AI; APA § 706 — Arbitrary and capricious standard; EU AI Act Annex III para 5(a) and Article 14; GDPR Article 22", "rego_sketch": "package government.benefits\n\nadverse_decisions := {\n \"initial_eligibility_denied\",\n \"recertification_denied\",\n \"benefit_suspension\",\n \"benefit_termination\",\n \"overpayment_determination\",\n \"fraud_referral\"\n}\n\ndeny[msg] {\n input.government_benefits_eligibility_decision_type in adverse_decisions\n not input.human_caseworker_reviewed == true\n msg := sprintf(\"OMB M-24-10 / APA due process: Adverse benefits determination '%v' requires human caseworker review before issuance. AI may recommend but cannot autonomously issue adverse determinations.\", [input.government_benefits_eligibility_decision_type])\n}\n\ndeny[msg] {\n input.government_benefits_eligibility_decision_type in adverse_decisions\n not input.claimant_notice_prepared == true\n msg := \"APA Due Process: Written notice of adverse determination, stating reasons, evidence basis, and right of appeal, must be prepared before the decision is communicated to the claimant.\"\n}" }, { "pattern_id": "government.enforce_fedramp_authorization_before_federal_data_routing", "pattern_name": "enforce_fedramp_authorization_before_federal_data_routing", "enforcement_effect": "deny", "description": "Block any agentic AI workflow from routing federal data classified at Low impact or above to a cloud-based AI service that does not hold a current FedRAMP authorisation. Revoked authorisations trigger immediate halt and CISO notification.", "applicable_enums": [ "FedRAMPAuthorizationStatus", "FISMAImpactLevel", "RMFLifecyclePhase" ], "regulatory_basis": "FedRAMP Act (2022) — Cloud services processing federal data require FedRAMP authorisation; FISMA — Federal information systems must have ATO before processing federal data; OMB M-24-10 Section 4.2", "rego_sketch": "package government.fedramp\n\nauthorized_statuses := {\n \"authorized_agency\",\n \"authorized_jab\",\n \"authorized_with_conditions\"\n}\n\nfederal_impact_levels := {\"low\", \"moderate\", \"high\"}\n\ndeny[msg] {\n input.government_fisma_impact_level in federal_impact_levels\n not input.government_fedramp_authorization_status in authorized_statuses\n msg := sprintf(\"FedRAMP / FISMA: Cloud AI service '%v' does not hold a current FedRAMP authorisation (status: '%v'). Federal data at impact level '%v' cannot be routed to this service.\", [input.service_id, input.government_fedramp_authorization_status, input.government_fisma_impact_level])\n}\n\ndeny[msg] {\n input.government_fedramp_authorization_status == \"revoked\"\n msg := sprintf(\"FedRAMP REVOKED: Service '%v' FedRAMP authorisation has been revoked. All federal data routing to this service must cease immediately. CISO notification required.\", [input.service_id])\n}" }, { "pattern_id": "government.block_law_enforcement_ai_without_bias_audit", "pattern_name": "block_law_enforcement_ai_without_bias_audit", "enforcement_effect": "deny", "description": "Block deployment of any law enforcement AI tool where an independent bias audit has not been completed or where disparate impact exceeds the defined threshold. Implements OMB M-24-10 Section 5 and EU AI Act Article 9 bias testing requirements for the highest-risk public sector AI applications.", "applicable_enums": [ "LawEnforcementAIToolType", "BiasAuditOutcome", "AIAccountabilityUseCase" ], "regulatory_basis": "OMB M-24-10 Section 5(b)(iv) — Independent bias assessment required for rights-impacting AI; EU AI Act Article 9 — Risk management for high-risk AI includes bias and discriminatory impact testing; Title VI Civil Rights Act — Federal programmes must not discriminate", "rego_sketch": "package government.law_enforcement\n\nhigh_bias_risk_tools := {\n \"facial_recognition_identification\",\n \"recidivism_risk_scoring\",\n \"bail_risk_assessment\",\n \"predictive_policing_hotspot\",\n \"gang_membership_identification\"\n}\n\nblocking_audit_outcomes := {\n \"audit_not_yet_conducted\",\n \"disparate_impact_identified_exceeds_threshold\",\n \"audit_in_progress\",\n \"audit_methodology_under_review\"\n}\n\ndeny[msg] {\n input.government_law_enforcement_ai_tool_type in high_bias_risk_tools\n input.government_ai_accountability_bias_audit_outcome in blocking_audit_outcomes\n msg := sprintf(\"OMB M-24-10 / EU AI Act Art 9: Law enforcement AI tool '%v' cannot be deployed — bias audit status is '%v'. Independent audit with demographic disaggregated results required before operational use.\", [input.government_law_enforcement_ai_tool_type, input.government_ai_accountability_bias_audit_outcome])\n}" }, { "pattern_id": "government.enforce_foia_human_review_for_exemption_claims", "pattern_name": "enforce_foia_human_review_for_exemption_claims", "enforcement_effect": "require_hitl_approval", "description": "Block any AI FOIA processing agent from finalising a partial or full denial response without a human FOIA officer reviewing and confirming each claimed exemption. AI may identify and flag candidate exemptions but cannot autonomously withhold responsive records.", "applicable_enums": [ "FOIARequestProcessingStatus", "FOIAExemptionCategory" ], "regulatory_basis": "FOIA 5 USC § 552(b) — Exemptions must be claimed by the agency; DOJ FOIA Guidelines — Agency responsibility for exemption determinations; OMB M-24-10 — Human review required for decisions affecting rights of requesters", "rego_sketch": "package government.foia\n\ndisclosure_limiting_statuses := {\"released_partial\", \"denied_in_full\"}\n\ndeny[msg] {\n input.government_foia_processing_status in disclosure_limiting_statuses\n not input.foia_officer_hitl_reviewed == true\n msg := sprintf(\"FOIA 5 USC 552(b): FOIA response with status '%v' requires human FOIA officer review and sign-off of all claimed exemptions. AI cannot autonomously withhold responsive records.\", [input.government_foia_processing_status])\n}\n\ndeny[msg] {\n input.government_foia_exemption_category == \"exemption_1_classified_national_security\"\n not input.original_classification_authority_consulted == true\n msg := \"FOIA Exemption 1: Classification-based withholding requires consultation with the Original Classification Authority (OCA) or derivative classification review before records are withheld.\"\n}" } ] }, "agent_registry_fields": { "description": "Recommended fields for registering a government or public sector agentic AI system in the GRC portal. Supplements the core agent identity schema from 00_core_sdk_and_governance.json.", "fields": [ { "field": "omb_m2410_use_case_classification", "type": "enum", "enum_ref": "AIAccountabilityUseCase", "description": "OMB M-24-10 use case classification for this AI system. Determines whether rights-impacting or safety-impacting minimum risk practices apply. Required for the annual agency AI use case inventory submission.", "required_when": "All federal agency AI systems; also required for AI systems operated by federal contractors on behalf of agencies" }, { "field": "fedramp_authorization_status", "type": "enum", "enum_ref": "FedRAMPAuthorizationStatus", "description": "Current FedRAMP authorisation status of the cloud component or SaaS platform underlying this AI agent. Must be 'authorized_agency' or 'authorized_jab' before federal data can be processed.", "required_when": "All AI agents deployed in or connected to cloud services processing federal data" }, { "field": "fisma_impact_level", "type": "enum", "enum_ref": "FISMAImpactLevel", "description": "FIPS 199 security impact categorisation of the information system hosting this AI agent. Drives the NIST SP 800-53 Rev 5 control baseline and FedRAMP authorisation level required.", "required_when": "All federal AI systems and AI systems operated by federal contractors" }, { "field": "rmf_lifecycle_phase", "type": "enum", "enum_ref": "RMFLifecyclePhase", "description": "Current NIST SP 800-37 RMF phase for this AI system. AI systems must reach 'authorize' phase before processing federal data in production.", "required_when": "All federal AI systems undergoing or maintaining FISMA authorisation" }, { "field": "chief_ai_officer_designated", "type": "boolean", "description": "True if the agency has designated a Chief AI Officer (CAIO) per OMB M-24-10 Section 4.1 and this AI system has been registered with the CAIO office for governance oversight.", "required_when": "All federal agency AI systems; required for OMB M-24-10 annual inventory completeness" }, { "field": "ato_expiration_date", "type": "string", "description": "Expiration date of the Authority to Operate (ATO) for this AI system. AI compliance agents monitor ATO expiration and trigger re-authorisation workflows 90 days before expiration.", "required_when": "All federal AI systems with a time-limited ATO" }, { "field": "cjis_compliance_required", "type": "boolean", "description": "True if this AI system accesses or processes Criminal Justice Information (CJI) as defined by the FBI CJIS Security Policy v5.9. Triggers additional security requirements including personnel screening and advanced authentication.", "required_when": "Law enforcement AI agents with access to NCIC, NICS, or other CJIS systems" }, { "field": "cui_category", "type": "string", "description": "Controlled Unclassified Information (CUI) category handled by this AI system per the CUI Registry. Drives NIST SP 800-171 Rev 3 compliance requirements for non-federal systems and DFARS obligations for defence contractors. Use values such as none, cui_basic, cui_specified, cui_law_enforcement_sensitive, cui_privacy, or cui_export_controlled.", "required_when": "AI agents processing CUI at federal or non-federal contractor facilities" } ] } }