Changelog
This page documents the version history of the ARA Standard. Each entry records the additions, modifications, and removals made in that version along with the rationale for significant changes. The changelog serves as the authoritative record of the standard's evolution.
Version 1.0#
Public Review DraftInitial release of the ARA Standard establishing the foundational framework for autonomous system reliability certification.
Core Framework
Established the ARA Standard framework with 13 reliability domains, 3 certification levels, and 4 evaluation methods.
Domains 1-12
Defined 12 core reliability domains applicable to all autonomous systems: Autonomy Scope Definition, Decision Integrity, Tool and API Governance, Identity and Permission Containment, Failure Mode Containment, Behavioral Reliability Under Stress, Adversarial Robustness, Drift Detection and Stability, Monitoring and Telemetry, Escalation and Human Override, Auditability and Transparency, and Operational Governance Controls.
Domain 13
Defined the Physical Actuation Integrity extension domain for autonomous systems with physical actuator capabilities, including sensor-actuator feedback loops, command validation pipelines, and emergency stop mechanisms.
ACR Library
Published 52 representative Autonomous Compliance Requirements across all 13 domains with defined evaluation methods, risk weights, evidence requirements, and classification designations.
Certification Levels
Defined three certification levels: L1 (Supervised Operational Reliability), L2 (Bounded Autonomous Deployment), and L3 (High-Stakes Autonomous Certification) with distinct rigor, monitoring, and reassessment requirements.
Evaluation Methods
Established four evaluation methods: Automated Testing (AT), Human Simulation (HS), Evidence Inspection (EI), and Continuous Monitoring (CM). Each ACR is assigned a primary evaluation method.
Certification Lifecycle
Defined the 10-phase certification lifecycle from intake assessment through ongoing compliance monitoring, including formal evaluation procedures, decision criteria, and reassessment protocols.
Risk Weighting
Implemented a 1-10 risk weighting system for ACRs that influences the contribution of each control to the overall domain compliance score and prioritizes evaluation focus.
ACR Classification
Established Blocking and Conditional classification designations for ACRs. Blocking controls require full compliance for certification; Conditional controls may allow time-limited remediation.
Normative References
Referenced ISO/IEC 42001:2023, NIST AI RMF 1.0, ISO 22989:2022, IEC 61508, and OWASP LLM Top 10 as informative references.
Governance
Established the governance framework for the ARA Standard including the Technical Steering Committee, public comment process, and revision procedures.
Public Comment
Opened the public comment period for v1.0 Public Review Draft. Comments accepted through formal submission process.
Future versions of the ARA Standard will be documented here as they are released. Each revision follows the governance process defined by the Technical Steering Committee, including a public comment period before ratification. Subscribe to the ARAF updates page for notifications of new releases.