Architecture
An AARM system consists of six components working together:Components
Action Mediation Layer
Intercepts tool invocations and normalizes to canonical schema
Policy Engine
Evaluates actions and enforces decisions
Approval Service
Human-in-the-loop for high-risk actions
Receipt Generator
Cryptographically signed audit records
Data Flow
Component Responsibilities
| Component | Input | Output | Required |
|---|---|---|---|
| Action Mediation | Protocol request | AARM Action | Yes |
| Policy Decision Point | Action | Decision | Yes |
| Policy Enforcement Point | Action + Decision | Enforced result | Yes |
| Approval Service | Action | Approval result | Yes |
| Receipt Generator | Action + Decision + Result | Signed receipt | Yes |
| Telemetry Exporter | Receipt | SIEM events | Recommended |