PMS4U Technical NotesTN-001

Who Verifies the Verifier?

Runtime authority, constitutional admissibility, and the case for a governance model that exists independently of the verifier.

Identifier
TN-001
Title
Who Verifies the Verifier?
Series
PMS4U Technical Notes
Track
Runtime Authority
Status
Published draft
Canonical route
/research/technical-notes/tn-001
Core Thesis

Admissibility cannot be self-certified by the runtime.

If runtime authority must itself remain continuously admissible, then the runtime verifier cannot be the only source of the conditions that make its decision legitimate.

01

Abstract

Runtime authority is often treated as a technical verifier: a service, policy engine, guardrail, approval workflow, or access layer that decides whether execution may proceed. That is not enough for consequence-bearing AI systems.

If runtime authority must remain continuously admissible, then admissibility cannot be a property of the runtime layer alone. The verifier cannot be the only source of its own legitimacy. A separate constitutional model must define delegated authority, governing constraints, evidence obligations, and consequence ownership before runtime verification begins.

02

Problem

Most systems answer the wrong question. They ask whether an actor has permission, whether a workflow step is available, or whether a token can call an endpoint. These checks can be correct and still fail to establish whether a specific execution is legitimate now.

The execution may be technically allowed while the underlying authority has expired, drifted, been delegated incorrectly, lost evidentiary support, or become inadmissible because the consequence has changed.

03

Architectural Gap

A runtime verifier can enforce policy, but it should not be the sole author of the policy conditions that make its own decision legitimate. When the verifier defines, interprets, and enforces its own authority boundary, governance collapses into self-attestation.

This becomes dangerous in AI-assisted systems because agents can draft, recommend, route, escalate, approve, or trigger workflows faster than humans can reconstruct the authority chain after the fact.

04

Constitutional Model

The constitutional model is an independent layer that defines the conditions under which execution authority can exist. It is not the runtime, not the UI, not the workflow, and not the model output. It is the governing structure that the runtime must consult before it permits consequence.

It defines delegated authority, permitted transitions, constraint boundaries, evidence requirements, escalation duties, and the accountable owner of the consequence.

05

Runtime Authority

Runtime authority is the operational check performed immediately before execution. Its role is to verify that constitutional conditions still survive in the live context: actor, state, evidence, transition, authority level, and consequence.

The runtime authority does not merely ask whether the request is possible. It asks whether the requested mutation is admissible at the moment it would create consequence.

06

Implications

Governance architectures become more explainable when the constitutional model and runtime verifier are separated. Auditors can inspect the governing conditions independently from the service that enforced them.

Enterprise AI systems become more portable when authority is expressed as a reference architecture rather than embedded inside a single product, workflow engine, or agent implementation.

07

Open Questions

How should constitutional models be versioned when authority rules change?

When should a runtime authority interrupt execution instead of denying it?

What evidence is sufficient to prove that authority was valid immediately before execution?

How should consequence ownership be represented across human, agent, and system actors?

Reference Model

Separation of authority layers

01

Constitutional Model

Defines the authority conditions before the runtime decides.

02

Runtime Authority

Checks whether those conditions still survive in the live execution context.

03

Admissibility Gate

Returns allow, deny, defer, interrupt, or observe before mutation.

04

Evidence Spine

Preserves receipt, state, authority context, and replayable trace.

Publication Use

How this note should be cited

LinkedIn ending

Read the Technical Note: PMS4U TN-001, “Who Verifies the Verifier?”

Corpus link

PMS4U Research / Technical Notes / TN-001. Future notes should link forward and backward to build a connected body of work.