>_ FRAMEWORKS, DEFINITIONS & ARCHITECTURAL RELATIONSHIPS
The Framework Index is the reference system behind Rack2Cloud architecture research. Each framework defines a repeatable architecture pattern, operational boundary, governance model, failure condition, or decision structure used throughout the site.
Frameworks are organized by pillar and linked through documented architectural relationships rather than topic similarity.
90 named frameworks — 89 independently documented, 1 patched into #85 (see review queue). 71 identifiers remain reserved for future publication.
Five domain pillars. The canonical authority model for rack2cloud architecture doctrine.
Explore →Full tool inventory — diagnostic calculators and analyzers across all pillars.
Explore →Architecture assessments and readiness reviews for migration, cost, recovery, and zero-trust.
Explore →Field-tested failure runbooks for enterprise infrastructure recovery scenarios.
Explore →Authoritative reference specifications for rack2cloud architecture patterns.
Explore →Architecture frameworks mapped by operational domain, control boundary, and documented relationship.
Explore →| Framework | Pillar | Connections |
|---|---|---|
| Migration Survivability Test | Virtualization | 6 |
| Recovery Authority Fragmentation | Data Protection | 6 |
| Recovery Design Boundary | Data Protection | 6 |
| Recoverability Gap | Data Protection | 6 |
| Capacity Illusion Index | AI Infrastructure | 5 |
| Effective GPU Yield | AI Infrastructure | 5 |
| Phantom Scarcity | AI Infrastructure | 5 |
The set of always-on infrastructure layers (serving, routing, caching, observability) that inference workloads permanently occupy once they reach…
The gradual, unbudgeted expansion of the steady-state inference footprint as models, contexts, and integrations accumulate.
The accumulated performance and cost penalty incurred when AI placement decisions defer latency until it must be bought back through architecture…
The failure mode in which an operation reports success by system metrics while the underlying objective was not actually met.
The absence of any owner with enforceable authority over AI runtime behavior as AI control planes emerge as shadow IT.
The fraction of purchased GPU capacity that produces useful work after scheduling, fragmentation, and idle losses.
A measure of how much apparent GPU capacity is illusory — provisioned and visible but not practically allocatable.
The condition in which GPU jobs queue despite idle hardware because fragmentation and scheduling make capacity unallocatable.
The simultaneous presence of job queues and idle GPUs in the same cluster.
The capacity permanently lost to allocation fragmentation across GPUs and nodes.
The economic efficiency lost when GPU infrastructure runs below its achievable workload density.
The load level at which interactive inference latency degrades far enough to break the user interaction model.
The nonlinear relationship between inference load and latency/throughput as a serving stack approaches saturation.
The compounding growth of queued token work under load — small arrival increases amplify into large queue and latency growth.
The appearance of healthy aggregate throughput while per-request latency and interactivity have already collapsed.
The shift of effective infrastructure authority into the network layer as the network becomes the AI control plane.
The delta between provisioned compute capacity and the compute that actually executes useful work.
The practical upper bound on workload density imposed by contention, scheduling, and failure-domain constraints before nominal capacity is reached.
The pattern of investing in AI capability faster than in the governance required to operate it, inverting the required order of investment.
The workload and architecture line beyond which accelerated compute is structurally required rather than optional.
The boundary defining where AI execution must be local to data and fabric for the architecture to function.
The line at which data pipeline and storage availability constrains AI training and inference execution.
The infrastructure maturity threshold required before autonomous operations can be safely delegated to machines.
The boundary defining which systems hold authority to execute workloads within AI runtime and cluster orchestration.
The line between operational states the observability layer can actually see and those structurally invisible to it.
The point at which AI observability stops being passive telemetry and becomes an enforcement and governance layer.
The chain of components that must all survive for distributed inference service to continue through failures.
The architectural line separating AI systems designed to survive component and dependency failure from those that merely assume availability.
The amount of orchestration, governance, retrieval, policy evaluation, and control-plane work required to produce a unit of AI execution. Compute…
The formal boundary within which an agentic system may delegate execution authority — constrained by explicit scope, identity, ownership, and…
The gap that opens when operational dependency on a service advances faster than the assurance mechanisms — SLA, behavioral commitments, policy…
The AI Evidence Artifact Layer is the architectural layer responsible for producing portable, attributable, verifiable execution evidence that…
The elasticity lost when workloads move from cloud burst capacity to fixed owned capacity — a delta repatriation economics must explicitly price.
The cloud services (identity, DNS, data services, tooling) that remain in use after repatriation and keep the organization partially cloud-dependent.
The risk that capacity purchased for repatriated peak demand sits idle, stranding capital when demand shifts or forecasts miss.
The tendency to keep workloads where they already run because sunk cost and operational familiarity bias the economics against movement.
The period over which repatriation's operational investments (staff, tooling, facilities) must amortize before the move nets positive.
A model defining where sovereignty control must actually be enforced — control plane, data plane, jurisdiction — before sovereignty architecture…
The total set of interfaces (consoles, CLIs, APIs, browsers) through which infrastructure can be changed and which therefore must be governed.
The portion of governance capability that does not transfer when moving between operating models, such as public cloud to private cloud.
The period after an operating-model change during which operations stabilize into a repeatable norm — and during which operational risk is elevated.
The period during which a cloud exit remains executable at acceptable cost — a window that closes as dependency accumulates.
The point at which sovereign or jurisdictional policy must translate into enforceable control-plane configuration — where most sovereign AI designs…
The accumulation of operational authority by a single vendor or platform control plane until alternatives become impractical.
The line between cloud dependencies an organization has explicitly mapped and those it discovers only at failure or exit time.
The boundary defining who and what holds authority to move workloads and data between environments.
The point at which architecture choices multiply egress volume and cost beyond linear expectations.
The point at which incremental cloud cost optimization is exhausted and only workload refactoring produces further savings — at step-function cost.
The point at which accumulated economic factors (egress, licensing, commitments) constrain architectural movement like gravity.
The requirement that every sovereignty claim — jurisdictional, key-custody, operational, supply-chain — be backed by a verifiable chain of…
The point at which control-plane authority must be explicitly owned; where ownership of enforcement authority is undefined, multiple systems can…
The point at which authority defined through ownership models, policies, and governance structures must translate into executable operational…
The point at which authority transitions from being operationally effective to being organizationally legitimate. Below the boundary: authority can…
The point at which systems must continue operating despite the loss, compromise, unavailability, or removal of the authorities that normally govern…
The point at which a decision affects multiple cloud environments and no single authority can execute, govern, or recover that decision without…
The point at which an economic evaluation mechanism has already filtered the set of architectural options an architect will be shown, before any…
The condition in which a multi-hypervisor or VMware-coexistence estate splits operational authority across multiple management planes, leaving no…
The line separating storage architectures that survive component, node, and site failure with defined behavior from those whose survival is assumed.
The performance range within which a system remains viable during degraded and failure conditions, not just steady state.
The forward window within which platform lifecycle decisions (upgrades, support, licensing) remain governed; beyond it, lifecycle debt accumulates…
The delta between the governance, authority, policy enforcement, and operational context implicitly provided by a source platform and the explicit…
The point at which a platform accumulates enough operational authority, behavioral assumptions, and integration gravity that its true dependency…
The property of a migrated environment that determines whether it can absorb its first real production incident using only the operating model,…
A classification of where IaC drift originates (console changes, emergency fixes, automation side effects) so drift is designed for detection rather…
The distance between documented multi-cloud failover designs and failovers that could plausibly execute under real failure conditions.
The line between operational knowledge captured in systems (recoverable) and knowledge held only in people or ephemeral runtime (lost) —…
The point at which declared infrastructure intent and enforced infrastructure behavior diverge because ownership of reconciliation was never…
A six-level progression model describing the maturity states through which infrastructure automation evolves: Level 0 Manual Infrastructure → Level…
The principle that every automation system eventually costs more to maintain than it saves unless governance scales with complexity. The curve…
The principle that infrastructure state accumulates faster than architecture evolves. State, once created, exerts gravitational pull on every…
The Infrastructure Evidence Gap is the structural absence of a chain-of-custody record linking an infrastructure change's approved intent to its…
The structural absence of a defined path back from an authorized configuration exception to a governed, IaC-tracked state. Four variables govern…
The bounded set of failure conditions an architecture is explicitly designed to survive; outside the envelope, behavior is undefined rather than…
The distance between having data replicated cross-region and being able to actually recover service from it.
The interval during which replication faithfully propagates corruption or ransomware to all copies before detection.
The failure to account for the dependencies (identity, DNS, configuration, services) a replicated workload needs to actually run in the recovery…
The complete set of state — beyond data — that must exist for a recovered workload to function; the true recovery target.
The line between DR tests that validate actual recovery and tests that validate only the test procedure.
The structural condition in which recovery fails because the recovery system's own dependencies sit inside the failure blast radius.
The progression by which undocumented recovery dependencies compound in complexity until the recovery plan can no longer be executed in sequence…
Recovery authority becomes fragmented when the people, systems, credentials, approvals, and operational knowledge required to execute recovery do not…
The line between systems whose recovery characteristics have been intentionally designed and systems whose recovery behavior is only discovered…
The Recovery Execution Boundary is the point at which a designed recovery topology encounters the operational capabilities and authority model of the…
The recoverability gap is the distance between a recovery plan validated under clean-failure scenarios and a recovery architecture that survives…
The point at which recovery isolation continues to function after identity, management-plane, and control-plane compromise. Architectures cross the…
The period between successful data recovery and verified operational recovery. The larger the gap, the greater the difference between protection…
A recovery process is deterministic when the same failure condition produces the same recovery outcome within a bounded variance envelope.…
The point at which identity — not network topology, VLANs, or perimeter control — becomes the boundary that actually determines whether a change,…
Both frameworks are named in the same anchor post — Persistent Inference Residency Stack is the steady-state footprint; Inference Residency Creep is its unbudgeted growth.
Both frameworks are named in the same anchor post — Persistent Inference Residency Stack is the steady-state footprint; Inference Residency Creep is its unbudgeted growth.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Both are named in the same Repatriation Economics anchor post as distinct cost variables in the same calculation.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Co-resident in the same Repatriation Economics anchor post.
Both named in the same AI Placement Latency/Cost post — Latency Debt is the accrued cost; False Completion is the metric failure that hides it.
Both named in the same AI Placement Latency/Cost post — Latency Debt is the accrued cost; False Completion is the metric failure that hides it.
Both named in the same Private Cloud Operating Model post — Governance Portability Gap is what doesn't transfer; Operational Normalization Window is the stabilization period after the move.
Both named in the same Private Cloud Operating Model post — Governance Portability Gap is what doesn't transfer; Operational Normalization Window is the stabilization period after the move.
Co-resident in the GPU Utilization Analyzer — Effective GPU Yield and Capacity Illusion Index are paired output metrics.
Co-resident in the GPU Utilization Analyzer — low yield and Phantom Scarcity describe the same underlying allocation failure.
Co-resident in the GPU Utilization Analyzer — yield loss and the Queue-Idle Paradox are the same symptom measured two ways.
Co-resident in the GPU Utilization Analyzer — Fragmentation Tax is the primary cause of reduced Effective GPU Yield.
Co-resident in the GPU Utilization Analyzer — Economic Density Loss is the dollar expression of reduced yield.
Co-resident in the GPU Utilization Analyzer — Effective GPU Yield and Capacity Illusion Index are paired output metrics.
Co-resident in the GPU Utilization Analyzer — Capacity Illusion Index quantifies Phantom Scarcity.
Co-resident in the GPU Utilization Analyzer as paired capacity-illusion metrics.
Co-resident in the GPU Utilization Analyzer — fragmentation is the mechanism behind the capacity illusion.
Co-resident in the GPU Utilization Analyzer as paired capacity/economic metrics.
Co-resident in the GPU Utilization Analyzer — low yield and Phantom Scarcity describe the same underlying allocation failure.
Co-resident in the GPU Utilization Analyzer — Capacity Illusion Index quantifies Phantom Scarcity.
Co-resident in the GPU Utilization Analyzer — Phantom Scarcity and the Queue-Idle Paradox describe the same allocation failure from different angles.
Co-resident in the GPU Utilization Analyzer — Fragmentation Tax is the direct cause of Phantom Scarcity.
Co-resident in the GPU Utilization Analyzer as paired scarcity/loss metrics.
Co-resident in the GPU Utilization Analyzer — yield loss and the Queue-Idle Paradox are the same symptom measured two ways.
Co-resident in the GPU Utilization Analyzer as paired capacity-illusion metrics.
Co-resident in the GPU Utilization Analyzer — Phantom Scarcity and the Queue-Idle Paradox describe the same allocation failure from different angles.
Co-resident in the GPU Utilization Analyzer — fragmentation produces the Queue-Idle Paradox.
Co-resident in the GPU Utilization Analyzer as paired paradox/loss metrics.
Co-resident in the GPU Utilization Analyzer — Fragmentation Tax is the primary cause of reduced Effective GPU Yield.
Co-resident in the GPU Utilization Analyzer — fragmentation is the mechanism behind the capacity illusion.
Co-resident in the GPU Utilization Analyzer — Fragmentation Tax is the direct cause of Phantom Scarcity.
Co-resident in the GPU Utilization Analyzer — fragmentation produces the Queue-Idle Paradox.
Co-resident in the GPU Utilization Analyzer — Fragmentation Tax is the mechanism; Economic Density Loss is its cost.
Co-resident in the GPU Utilization Analyzer — Economic Density Loss is the dollar expression of reduced yield.
Co-resident in the GPU Utilization Analyzer as paired capacity/economic metrics.
Co-resident in the GPU Utilization Analyzer as paired scarcity/loss metrics.
Co-resident in the GPU Utilization Analyzer as paired paradox/loss metrics.
Co-resident in the GPU Utilization Analyzer — Fragmentation Tax is the mechanism; Economic Density Loss is its cost.
Co-resident in the AI Inference Saturation Analyzer — the Interaction Collapse Point sits on the Inference Saturation Curve.
Co-resident in the Saturation Analyzer — Token Queue Amplification is the mechanism driving toward Interaction Collapse.
Co-resident in the Saturation Analyzer — Throughput Illusion masks the approach to Interaction Collapse.
Co-resident in the AI Inference Saturation Analyzer — the Interaction Collapse Point sits on the Inference Saturation Curve.
Co-resident in the Saturation Analyzer — queue amplification is the mechanism shaping the saturation curve.
Co-resident in the Saturation Analyzer as paired curve/illusion metrics.
Co-resident in the Saturation Analyzer — Token Queue Amplification is the mechanism driving toward Interaction Collapse.
Co-resident in the Saturation Analyzer — queue amplification is the mechanism shaping the saturation curve.
Co-resident in the Saturation Analyzer — queue amplification is masked by the throughput illusion until it isn't.
Co-resident in the Saturation Analyzer — Throughput Illusion masks the approach to Interaction Collapse.
Co-resident in the Saturation Analyzer as paired curve/illusion metrics.
Co-resident in the Saturation Analyzer — queue amplification is masked by the throughput illusion until it isn't.
Co-resident in the Cross-Region Replication post — the Replication-Recovery Gap is the structural condition; Corruption Propagation Window is its time-bound failure mode.
Co-resident in the Cross-Region Replication post — Dependency Recovery Blindness is a specific instance of the Replication-Recovery Gap.
Co-resident in the Cross-Region Replication post — Recovery State is the target the Replication-Recovery Gap fails to close.
Co-resident in the Cross-Region Replication post — the Replication-Recovery Gap is the structural condition; Corruption Propagation Window is its time-bound failure mode.
Co-resident in the Cross-Region Replication post as paired failure-window/blindness conditions.
Co-resident in the Cross-Region Replication post — corruption propagation is a threat to reaching Recovery State.
Co-resident in the Cross-Region Replication post — Dependency Recovery Blindness is a specific instance of the Replication-Recovery Gap.
Co-resident in the Cross-Region Replication post as paired failure-window/blindness conditions.
Co-resident in the Cross-Region Replication post — Dependency Recovery Blindness is precisely what keeps Recovery State out of reach.
Co-resident in the Cross-Region Replication post — Recovery State is the target the Replication-Recovery Gap fails to close.
Co-resident in the Cross-Region Replication post — corruption propagation is a threat to reaching Recovery State.
Co-resident in the Cross-Region Replication post — Dependency Recovery Blindness is precisely what keeps Recovery State out of reach.
Co-resident in the Modern Virtualization Compute Architecture LP page — the Provisioned-to-Executed Gap is bounded above by the Density Ceiling.
Co-resident in the Modern Virtualization Compute Architecture LP page — the Provisioned-to-Executed Gap is bounded above by the Density Ceiling.
Coordination Density is the upstream cause; Policy Intent Drift is a named downstream consequence of rising coordination overhead.
Coordination Density is the upstream cause; Sovereignty Evidence Chain is a named downstream consequence of rising coordination overhead.
Coordination Density is the upstream cause; Control Plane Ownership Boundary is a named downstream consequence of rising coordination overhead.
Coordination Density is the upstream cause; Policy Intent Drift is a named downstream consequence of rising coordination overhead.
Coordination Density is the upstream cause; Sovereignty Evidence Chain is a named downstream consequence of rising coordination overhead.
Coordination Density is the upstream cause; Control Plane Ownership Boundary is a named downstream consequence of rising coordination overhead.
Policy Intent Drift traces its reconciliation-ownership failure directly back to rising coordination/orchestration overhead.
Downstream siblings of #132 — both trace rising coordination overhead to a boundary failure, one in infrastructure execution, one in sovereignty evidence.
Same-parent siblings: #135 addresses ownership authority at the strategic/organizational layer; #133 applies the identical boundary question to infrastructure execution and reconciliation.
Policy Intent Drift traces its reconciliation-ownership failure directly back to rising coordination/orchestration overhead.
Downstream siblings of #132 — both trace rising coordination overhead to a boundary failure, one in infrastructure execution, one in sovereignty evidence.
Same-parent siblings: #135 addresses ownership authority at the strategic/organizational layer; #133 applies the identical boundary question to infrastructure execution and reconciliation.
Sovereignty Evidence Chain is the direct successor to Operational Memory Boundary — sovereignty is a provenance question ('how do you know') applied to control-plane authority.
Coordination Density is an amplifier, not a prerequisite: rising coordination density raises the stakes of an unevidenced sovereignty link, but the Evidence Chain holds even at low coordination density.
Sovereignty Evidence Chain is the direct successor to Operational Memory Boundary — sovereignty is a provenance question ('how do you know') applied to control-plane authority.
Coordination Density is an amplifier, not a prerequisite: rising coordination density raises the stakes of an unevidenced sovereignty link, but the Evidence Chain holds even at low coordination density.
Control Plane Ownership Boundary traces its authority-ambiguity failure back to rising coordination/orchestration overhead, the same root #133 and #134 share.
Control Plane Ownership Boundary traces its authority-ambiguity failure back to rising coordination/orchestration overhead, the same root #133 and #134 share.
Recovery Dependency Spiral is the operational mechanism (dependency cascade during plan execution) beneath the structural collapse condition Recovery Dependency Collapse describes.
Operating Model Transfer Gap pairs with Lifecycle Governance Horizon — governance debt accumulates before migration, then fails to transfer during it.
Pairs with Control Plane Capture — authority accumulation is the pattern that makes the operating-model gap invisible until incident time.
Pairs with Control Plane Capture — authority accumulation is the pattern that makes the operating-model gap invisible until incident time.
Automation Debt Curve is the economic consequence of the maturity position Infrastructure Automation Ladder measures — Ladder is where you are, Debt Curve is what staying there costs.
Cross-pillar reuse: agentic tool-chain authority failures follow the same structural pattern as Shadow Control Plane in infrastructure.
Execution without ownership (#85) is the precondition Agentic Authority Boundary names more precisely for agentic delegation.
Forward dependency: evidence-grade execution records connect to Operational Memory Boundary — Authority Chain Opacity is the agentic expression of the same memory gap.
Higher coordination density amplifies the blast radius of agentic authority boundary failures.
Cross-pillar reuse: agentic tool-chain authority failures follow the same structural pattern as Shadow Control Plane in infrastructure.
Forward dependency: evidence-grade execution records connect to Operational Memory Boundary — Authority Chain Opacity is the agentic expression of the same memory gap.
Behavioral dependency failures require AI Observability Governance instrumentation to actually detect them.
Forward dependency: 'what changed when a workflow breaks' is an Operational Memory Boundary question applied to vendor behavior.
Authority gap in agentic deployments connects directly to the assurance gap the vendor lacks a contractual mechanism to close.
Forward dependency: 'what changed when a workflow breaks' is an Operational Memory Boundary question applied to vendor behavior.
Doctrine chain: Lifecycle Governance Horizon (governance debt accumulates) precedes Dependency Visibility Boundary in the VMware exit sequence.
Doctrine chain: Operating Model Transfer Gap (governance doesn't migrate) precedes Dependency Visibility Boundary (can't see what you depend on).
Forward dependency: unmapped recovery dependencies surface as Recovery Dependency Collapse once visibility is lost.
Forward dependency: unmapped recovery dependencies surface as Recovery Dependency Collapse once visibility is lost.
Series opener: Lifecycle Governance Horizon starts the VMware Exit Architecture doctrine chain that Migration Survivability Test closes.
Series middle: Operating Model Transfer Gap identifies what fails to transfer; Migration Survivability Test measures whether the gap survives a real incident.
Series middle: Dependency Visibility Boundary identifies what can't be seen; Migration Survivability Test is where the blind spot gets tested for real.
Forward dependency: the recovery primitive failure exposed by the first incident on the new platform is Recovery Dependency Collapse in migration form.
Institutional knowledge that never transferred during migration surfaces as Operational Memory Boundary failure under incident pressure.
Authority gaps surface when an incident spans old and new platform simultaneously — the personnel-authority half of the same series closer.
Forward dependency: the recovery primitive failure exposed by the first incident on the new platform is Recovery Dependency Collapse in migration form.
Institutional knowledge that never transferred during migration surfaces as Operational Memory Boundary failure under incident pressure.
Authority gaps surface when an incident spans old and new platform simultaneously — the personnel-authority half of the same series closer.
Pairs with Recovery Dependency Collapse on blast-radius design — both are D1-adjacent design questions.
Pairs with Recovery Authority Fragmentation on authority-ownership design — both are D1-adjacent design questions.
Direct successor: D2 Recovery Platform Architecture assumes the Recovery Design Boundary #146 validates has already been crossed.
Distinguishes from Recovery Authority Fragmentation: #144 is a human/organizational authority failure; #147's failure state is a platform/control-plane failure. The two compound in practice.
Forward dependency: D4 Ransomware Survival Architecture assumes D1 backup validation from Recovery Design Boundary is already complete.
Forward dependency: D4 assumes D2 platform-authority validation from Recovery Execution Boundary is already complete.
Distinguishes from Recovery Authority Fragmentation: #144 evaluates personnel-centric authority against general DR scenarios; #148 evaluates infrastructure authority under ransomware-class compromise specifically. The two compound in practice.
Doctrinal chain second link: Sovereignty Evidence Chain establishes jurisdictional proof; AI Evidence Artifact Layer is the AI-execution-proof instance of the same evidence principle.
Distinguishes from Observability Authority Boundary: #121 is observability becoming an enforcement layer; #149 is whether observability produces artifacts that satisfy external proof at all. An org can cross #121 and still fail #149.
Doctrinal chain first link: Operational Memory Boundary states the memory requirement that AI Evidence Artifact Layer must satisfy at execution time.
Doctrinal chain second link: Sovereignty Evidence Chain establishes jurisdictional proof; AI Evidence Artifact Layer is the AI-execution-proof instance of the same evidence principle.
Doctrinal chain first link: Operational Memory Boundary states the memory requirement that AI Evidence Artifact Layer must satisfy at execution time.
Direct successor: D3 Cyber Vault Architecture assumes the execution layer Recovery Execution Boundary validates is already trustworthy.
Distinguishes from Recoverability Gap: #148 evaluates full adversarial survival across five ransomware threat types (D4); #150 evaluates whether the isolation mechanism itself survives credential/management-plane compromise. The two compound.
Upstream dependency: policy state must be governed (Policy Intent Drift) before it can be snapshotted into an evidence artifact.
Upstream dependency: authorization identity requires a defined ownership model (Control Plane Ownership Boundary) before evidence can attribute it.
Doctrinal parallel: #149 addresses execution proof in AI runtime systems; #151 addresses the identical architectural principle in IaC pipeline systems.
Upstream dependency: authorization identity requires a defined ownership model (Control Plane Ownership Boundary) before evidence can attribute it.
Doctrinal parallel: #149 addresses execution proof in AI runtime systems; #151 addresses the identical architectural principle in IaC pipeline systems.
Direct successor: #135 identifies where authority resides; Operational Authority Boundary evaluates whether that authority actually reaches the execution plane.
Direct successor: #146 defines the designed/assumed line; Restore Design Gap names and measures the gap when only data recovery (layer 1) is designed and layers 2–5 are assumed.
Pairs with Recovery Dependency Collapse (blast radius — what fails together) as a D1-adjacent Data Protection design concern.
Pairs with Recovery Authority Fragmentation (who owns recovery authority) as a D1-adjacent design concern.
Direct successor: #152 evaluates whether authority reaches the execution plane; Governance Legitimacy Boundary evaluates whether that authority is organizationally legitimate.
Cross-pillar reference (not redefinition) — same treatment CS4 gave #132: Sovereignty Evidence Chain is cited by Governance Legitimacy Boundary without being restated.
AIGA builds directly on Governance Investment Inversion (D1 domain) as one of its four anchor frameworks.
AIGA builds directly on Autonomous Operations Readiness (D4 domain) as one of its four anchor frameworks.
AIGA builds directly on Observability Authority Boundary (D6 domain) as one of its four anchor frameworks.
AIGA builds directly on Runtime Authority Vacuum (D5 domain) as one of its four anchor frameworks.
Direct successor: #154 evaluates whether authority is organizationally legitimate under normal conditions; Authority Survivability Boundary evaluates whether the architecture survives when that authority disappears entirely.
Supporting framework: Cross-Cloud Ownership Boundary addresses multi-cloud authority-span scenarios as one input into survivability, not as the CS7 stage anchor itself.
Feeds CS7 Strategic Resilience as Cluster 04 (Cross-Cloud Survivability) — sole placement, not a redefinition of the stage anchor.
Third in the D1–D3 progression: #146 asks whether a recovery path is designed at all; Deterministic Recovery Model asks whether that path produces a repeatable outcome.
Third in the D1–D3 progression: #147 asks whether the platform can execute the path under failure; Deterministic Recovery Model asks whether execution is repeatable.
Pairs with Recovery Authority Fragmentation on the Authority variable — personnel/credential lens on the same determinism question.
Pairs with Recoverability Gap — adversarial compromise is a variance amplifier across all four determinism variables simultaneously.
Differentiates from Restore Design Gap: #153 describes the undesigned space between technical and operational recovery; #158's Validation variable prescribes the invariant that closes that space.
Lineage origin: Drift Origin Model established that drift has traceable origins — the first link in the four-framework configuration-governance chain #159 closes.
Lineage middle: Policy Intent Drift showed declared and enforced policy diverge even in automated systems — the second link #159 collides with at incident time.
Lineage middle: Infrastructure Evidence Gap established a pipeline can execute successfully while losing the authorization chain — the third link #159 collides with at incident time.
Closing framework of the Evidence Gap series: Recoverability Gap (Part 1) established the evidence-gap pattern in recovery that Identity Boundary Inversion generalizes.
Referenced without redefinition by Governance Legitimacy Boundary (CS6) — same treatment CS6 gave #134.
Referenced without redefinition by Governance Legitimacy Boundary (CS6) — same treatment CS6 gave #134.
Explicitly differentiated: #131 asks whether economics constrains architectural outcomes already on the table; #161 asks whether an economic mechanism already decided which outcomes would be on the table at all.