aws2 Documentation

Family guides explain each AWS2-* control family in plain language for readers who need more context than the formal standard draft provides.

Non-normative guidance

Family guides do not create new requirements. They explain purpose, level intent, control detail, evidence examples, and external mapping context for the current working draft.

Family	Guide	Formal standard
`AWS2-SCP`	AWS2-SCP: Scope, Inventory, And Ownership	Candidate requirements
`AWS2-DEL`	AWS2-DEL: Delegation, Authority, And Identity	Candidate requirements
`AWS2-WSB`	AWS2-WSB: Workspace And Execution Boundaries	Candidate requirements
`AWS2-RUN`	AWS2-RUN: Runtime Policy, Approvals, And Action Control	Candidate requirements
`AWS2-SRC`	AWS2-SRC: Skill, Tool, And Connector Source Trust	Candidate requirements
`AWS2-CTX`	AWS2-CTX: Context, Memory, And Instruction Boundary Control	Candidate requirements
`AWS2-SEC`	AWS2-SEC: Secrets, Credentials, And Sensitive Data Handling	Candidate requirements
`AWS2-LOG`	AWS2-LOG: Logs, Receipts, And Traceability	Candidate requirements
`AWS2-VAL`	AWS2-VAL: Validation, Testing, And Review	Candidate requirements
`AWS2-GOV`	AWS2-GOV: Governance, Exceptions, And Change Management	Candidate requirements

How to use these guides

Start with the guide when you need purpose, level intent, control rationale, and evidence examples.
Use the formal standard draft when you need candidate requirement text, levels, and normative wording.
Treat levels as cumulative: Level 2 builds on Level 1, and Level 3 builds on both.
Use external mapping notes as context, not as a replacement for the formal standard draft.