Runtime Governance and Execution Control Plane for AI Systems
Everything you need to understand, evaluate, and implement the RIO Protocol. All documentation is open source and available on GitHub.
By Brian K. Rasmussen
Complete technical whitepaper covering the governed execution model, protocol design, threat model, and enterprise applications.
By Brian K. Rasmussen
Original whitepaper establishing the foundational concepts of runtime intelligence orchestration.
The v2 receipt system introduces cryptographic hashing, post-execution verification, risk scoring, and hash-chain ledger entries. Below is a side-by-side comparison of what changed between v1 and v2.
| Field / Feature | v1 Receipt | v2 Receipt |
|---|---|---|
| Protocol Version | Not specified | protocol_version: "v2" |
| Receipt ID | receipt_id (UUID) | receipt_id (UUID) — unchanged |
| Intent Hash | Not present | intent_hash (SHA-256 of intent payload) |
| Action Hash | Not present | action_hash (SHA-256 of action + params) |
| Verification Hash | Not present | verification_hash (SHA-256 of verification result) |
| Verification Status | Not present | verification_status: verified | failed | skipped |
| Risk Score | Not present | risk_score (0–100 numeric) |
| Risk Category | Not present | risk_category: LOW | MEDIUM | HIGH |
| Timestamps | requested_at, decided_at, executed_at | Same fields — ISO 8601 format enforced |
| Signature | hash (SHA-256 of payload) | signature (RSA-PSS 2048-bit, base64) |
| Hash Field | hash (receipt integrity) | receipt_hash (SHA-256 of canonical payload) |
| Ledger Entry | block_index, current_hash, previous_hash | Same + previous_ledger_hash for chain verification |
| Denial Receipts | Basic denial record | Full v2 denial receipt with signature + ledger entry |
| Tamper Detection | Hash comparison only | RSA-PSS signature + hash chain + independent verification |
| Test Coverage | 47 tests across 12 suites | 57 tests across 14 suites (10 new v2 tests) |
Upgrade path: v2 is backward-compatible. During transition, the pipeline generates both v1 and v2 receipts. Existing integrations continue to work with v1 fields while new consumers can use the enhanced v2 fields for stronger verification.
Comprehensive documentation covering every aspect of the RIO system, from high-level overview to implementation details.
15 formal protocol specifications defining the behavior of every pipeline stage. Implementation-independent — any language or platform can implement RIO by satisfying these specs.
Tools and documentation for independently verifying the integrity of the system, its ledger, and its receipts.
The full implementation, example integrations, and demo scripts.