Evidence Bundle

An Evidence Bundle is an audit package: a structured set of artifacts that supports explainability and traceability for AI governance. It is not a product feature but a deliverable format for auditors and compliance.

Root required structure (normative)

The root layout of an Evidence Bundle is defined normatively in Evidence Bundle root structure (v0.1). At the bundle root the following MUST be present:

manifest.json — bundle manifest (bundle_id, bundle_version, object_index, payload_index, hash_chain, signing).
objects/ — directory for enumerated objects (listed in manifest).
payloads/ — directory for payload files (e.g. root EV JSON, Evidence Pack files).
signatures/ — directory for digital signatures; v0.1 MUST contain at least one signature that references the manifest (existence and target; verification is a future extension).
hashes/ — directory for hash chain or integrity records as required by the manifest.

Integrity (manifest, sha256 for indexed files, signature presence) is normative and enforced by the Validator. Custody (storage, access control, retention) is implementation-defined and not specified by the standard.

Bundle structure and naming

Bundle root naming: use a consistent pattern such as {org}_{system}_{period}_{version} (e.g. acme_ai-usage_2026-Q1_v1).
Required files: at least one Evidence (EV) set aligned with the Evidence Pack Template (EP), a Dictionary, a short Summary (executive summary of the bundle), and a Change Log (or reference to it) for changes to the bundle or its contents.
Optional attachments: logs, review records, exception approvals, renewal records; keep naming consistent and referrable from the main EV/Dictionary.

Table of contents (TOC)

Section	Artifact	Required?	Purpose	Minimum fields	Validation
Evidence	EV records (JSON/array)	Yes	Record of what happened; link to request/review/exception/renewal	id, timestamp, source, summary; optional lifecycle refs	Validator, aimo-ev.schema.json
Dictionary	dictionary.json	Yes	Keys/labels/descriptions for codes and dimensions	entries (key, label, description)	aimo-dictionary.schema.json
Summary	summary (doc or field)	Yes	One-page overview for auditors	scope, period, key decisions, exceptions	—
Change log	change_log or reference	Yes	Audit trail of bundle/content changes	id, timestamp, actor, change description, references	—
Request	request record(s)	If applicable	Application/request for use	id, timestamp, actor/role, scope, rationale	—
Review/Approval	review record(s)	If applicable	Review and approval outcome	id, timestamp, actor/role, decision, references	—
Exception	exception record(s)	If applicable	Exception with compensating controls and expiry	id, timestamp, scope, expiry, compensating controls, renewal ref	—
Renewal	renewal record(s)	If applicable	Re-evaluation and renewal	id, timestamp, actor/role, decision, references to prior exception/EV	—

Normative relationship: EV records (index) and Evidence Pack (payload)

To avoid double-build and audit ambiguity, the following is normative:

EV records (JSON) are the index/ledger: machine-verifiable traceability. They record what happened (request, review, exception, renewal, change) and MUST carry stable IDs and cross-references.
Evidence Pack files (EP-01..EP-07 documents and manifest) are the payload: the human- and tool-readable evidence that the index points to.
Linkage: EV records SHOULD reference payload via evidence_file_ids (e.g. EP-01, EP-02) and/or cryptographic hashes. The Validator checks referential integrity when these references are present (e.g. every referenced file_id exists in the Evidence Pack manifest and optional hash matches).
Minimum submission set for audit: EV JSON (root/records) + Dictionary + Summary + Change Log + Evidence Pack (manifest + files, e.g. as a zip). All of these together form the conformance surface.

Implementers maintain a single source of truth: the EV index references the pack; the pack does not redefine the meaning of taxonomy EV codes (Request Record, Review/Approval, etc.). See Evidence Pack Template for EP-01..EP-07 document types.

Traceability

Stable IDs: every record (EV, request, review, exception, renewal, change log entry) MUST have a stable, unique identifier.
Cross-references: link Request → Review → Exception (if any) → Renewal and link EV items to these via reference fields (e.g. request_id, review_id, exception_id, renewal_id).
Linkage: ensure auditors can follow a chain from an AI use (or exception) to the request, approval, any exception and its compensating controls and expiry, and renewal.

How auditors use this

Auditors use the Evidence Bundle to verify that AI use is requested, reviewed, and approved; that exceptions are time-bound and have compensating controls and renewal; and that changes are logged. The TOC and traceability rules let them locate required artifacts and follow IDs and references across request, review, exception, renewal, and EV records. The Summary gives a quick overview; the Change Log supports change control and accountability.

See Minimum Evidence Requirements for MUST-level fields and lifecycle groups.

Operational guidance

!!! info "Integrity (normative) vs Custody (implementation)" - Integrity is normative in v0.1: the bundle MUST have manifest.json, object_index/payload_index with sha256, and at least one signature in signatures/ that references the manifest. The Validator rejects bundles that do not satisfy these requirements. - Custody (access control, retention, WORM) is implementation-defined. Adopters should document access roles, retention policy, and audit trail; see Minimum Evidence Requirements > Integrity & Access.

Audit journey

From this page, the typical audit journey continues:

Next: Minimum Evidence Requirements — MUST-level checklist by lifecycle
One-page summary: Evidence Bundle Coverage Map (template) — scope, evidence types, controls mapping, exclusions, integrity (informative)
Then: Coverage Map — mapping to external frameworks
Validate: Validator — run structural checks
Download: Releases — get release assets and verify checksums