Epistemology of Designing Complex Systems: A Hierarchical Taxonomy of Computational Abstraction

The design of contemporary technological systems—particularly in artificial intelligence, deterministic compute platforms, and decision engines—has reached a level of sophistication that requires a radical move beyond traditional document-centric approaches toward rigorous management of abstraction layers. The increasing complexity of industrial systems and their operational scenarios makes it extremely difficult to control the people involved, the documentation, and the software tools used across a lifecycle that includes conception, design, production and post-sale. In this context, abstraction should not be seen as a distancing from reality but as the logical method of extracting the essential—to draw away (Latin abstrahere)—to make systems manageable and intelligible that would otherwise be opaque and intrinsically fragile.

This report outlines the hierarchy of technical artifacts and computational kernels necessary to build decision infrastructures that are robust, verifiable and scalable, turning simple compute sites into defendable technical assets with institutional credibility.

The Hierarchy of Architectural Artifacts

In complex technological systems there is a standardized hierarchy of technical documents, each serving to reduce ambiguity at a specific point in the design cycle. Each level incorporates, but is not determined by, the one below it, acting as a self-contained descriptive language that progressively increases operational precision. The canonical logical order moves from a high conceptual abstraction down toward physical execution, following a sequence from Vision to Executable Code.

Document	Main Function	Abstraction Level	Core Question
Whitepaper	Explain the thesis, the problem and the proposed solution	Conceptual / Strategic	Why should this solution exist?
Architecture Document	Describe the organization and the system structure	High-level / Systemic	How is the system organized as a whole?
Blueprint	Define the constructive and operational plan for modules	Technical / Implementational	How is the system built concretely?
Specification	Define precise parameters, formulas and data contracts	Very Technical / Detailed	What are the exact rules and formats?
Protocol	Establish communication rules between components	Technical / Interface	How do components communicate?
Implementation	Software code, models and real infrastructure	Operational / Executable	What is the machine behavior?

This hierarchy is fundamental in high-reliability compute projects to avoid regressions, uncoordinated creative interpretations by developers, and architectural deviations that could compromise the integrity of the final system. Skipping one of these levels makes the system fragile and hard to audit, especially in regulated contexts such as finance or defense.

The Whitepaper as a Strategic and Argumentative Foundation

A whitepaper is an analytical and argumentative document whose function is not purely operational but persuasive and clarifying. It acts as a bridge between abstract vision and engineering reality, describing a market or technological problem and justifying the theoretical logic of the proposed solution. A distinguishing feature of the whitepaper is its explanatory language, enriched with charts, studies and scientific references typical of industrial research.

In the Decision Intelligence domain, an effective whitepaper must go beyond presenting a feature: it must justify the underlying mathematical model, describe the technological context and outline the competitive advantages of the solution compared to existing paradigms. It defines the "Why" and the "What", establishing technical-scientific credibility before a single line of code is written.

The Architecture Description Document and ISO/IEC/IEEE 42010

The Architecture Document (AD) is the first level of structural formalization. Unlike the whitepaper, the AD's role is not to persuade but to organize module responsibilities and high-level data flows. The international reference standard is ISO/IEC/IEEE 42010, which defines architecture as "the fundamental organization of a system embodied in its components, their relationships to each other and to the environment, and the principles guiding its design and evolution."

An AD compliant with the standard must clearly distinguish between the architecture (the abstract concept) and the architecture description (the concrete artifact). It must identify stakeholders and their concerns—such as performance, security, maintainability and feasibility.

The Role of Viewpoints and Views

To ensure completeness and coherence, the architecture is decomposed into viewpoints and views. A view is a representation of the system from a specific perspective, while a viewpoint is the specification of conventions for building, interpreting, and using that view.

Architectural Element	Definition	Operational Function
Stakeholder	Individuals or organizations with an interest in the system	Provide requirements and acceptance criteria
Concern	A matter of relevance to a stakeholder (e.g., security)	Drive selection of mitigation strategies
Viewpoint	A set of modeling conventions (e.g., UML, SysML)	Standardize language across engineering teams
View	An instance of a viewpoint for the specific system	Allow granular analysis of a systemic aspect
Decision Rationale	Justification of architectural choices	Ensure traceability of critical choices and trade-offs

Using this standard improves communication between stakeholders, reducing ambiguities and ensuring every identified concern is addressed by at least one view. In complex systems, integrating business, data, application and technology views keeps intellectual control over the full product lifecycle.

The Blueprint: The Operational Translation of Architecture

The blueprint is the technical-operational document that translates architectural abstraction into a concrete construction plan. While the architecture defines "how the system is organized", the blueprint answers "how the system is built". Historically derived from engineering drawings, in modern software practice it defines concrete components, folder structures, execution pipelines and contracts between modules.

A blueprint acts as a single source of truth, highlighting gaps in data foundations, integration patterns and environment strategies. For a compute platform, a blueprint for a mortgage calculator would specify not only inputs (principal, rate, term) and outputs, but operational steps: input validation, application of the amortization formula and schedule generation. A blueprint executes nothing; it reduces ambiguity for developers and implementers.

The Logical Core: Theory and Rigor of the Computational Kernel

Entering the computational heart of high-reliability systems, a critical distinction emerges often confused in commercial software: the difference between a formula and a kernel. A formula is a simple mathematical relation; a kernel is a formalized computational unit with precise mathematical and engineering properties, isolated from the rest of the system to ensure verifiability and determinism.

Formally, a robust kernel can be modeled as a contracted function:

K = {I, C, A, R, O, V, T}

Where:

• I (Input Contract): The input schema with canonical names, types, units and permitted ranges.
• C (Constraints): Syntactic and semantic validation rules that define the method's domain of validity.
• A (Assumptions): Explicit model assumptions (e.g., monthly compounding, commercial rounding to 2 decimals).
• R (Rules): The logical core, which may be a closed-form formula, an iterative algorithm or a rules engine.
• O (Output Contract): The output schema, including the semantics of results and explainability payloads (formulas used, triggered brackets).
• V (Version Metadata): Metadata tying the kernel to a specific temporal or jurisdictional validity.
• T (Test Suite): Unit tests, golden tests and invariant tests ensuring correctness against the contract.

Fundamental Properties of a Professional Kernel

A professional kernel must satisfy three fundamental properties:

1. Determinism: Given the same input, the result must always be identical. This requires numerical discipline and the absence of dependencies on global state or uncontrolled timezones.
2. Referential Transparency: The kernel should be a pure transformation with no side effects (no disk writes, no internal network fetches). This allows replacing an expression with its computed value without changing program behavior.
3. Domain-Boundedness: Each kernel has an explicit validity domain. There are no universally valid formulas; the kernel must declare the boundaries where the computation makes mathematical and regulatory sense.

Taxonomy of Computational Kernels

In an organized repository, kernels are classified by computational typology to ease testing and maintenance.

Kernel Class	Execution Characteristic	Examples (Finance / AI)
Closed-form	Direct analytical formulas, deterministic and fast	Standard loan payment, simple interest, circle area
Iterative	Require numerical methods and convergence	IRR, solving implicit equations
Table-driven	Based on lookups or official datasets	Tax brackets, actuarial coefficients, mortality tables
Rule-based	Based on complex conditional logic	Eligibility engines, regulatory compliance rules
Composite	Composition of elemental kernels in a DAG	Net-from-gross calculations, affordability engines

Separating kernel from UI lets the platform evolve without breaking canonical logic, enabling cross-site consistency (the same calculation on API, internal tools and public sites).

The Execution Engine: Execution Machine and Isolation

The engine is the system responsible for executing kernels. It acts as an abstraction layer between developer code and underlying hardware, handling resource allocation, memory management and error control. The engine interprets instructions, validates input contracts and guarantees a secure execution environment, preventing vulnerabilities such as buffer overflows or unauthorized memory access.

Classic examples include the Java Virtual Machine (JVM) and the .NET Common Language Runtime (CLR), which use techniques like Just-In-Time compilation to translate bytecode into optimized machine instructions. In distributed or data-oriented compute architectures, the engine may manage dynamic task graphs, providing fault tolerance and transparent load distribution.

In mission-critical systems, the engine may operate within a Trusted Execution Environment (TEE), a secure processor enclave protecting code integrity and data confidentiality even against a potentially malicious OS.

The Orchestrator: Coordinating Dynamic Workflows

The orchestrator is the highest operational layer, coordinating multiple engines or modules inside complex pipelines. While the engine handles "how atomic computation is executed", the orchestrator answers "what is the system's operational sequence?"

A modern orchestrator differs from rigid automation systems by generating dynamic execution graphs at request-time, allowing topology changes without redeploying code.

Advanced Orchestration Patterns

1. Schema-Gated Orchestration: Nothing executes unless the whole action plan validates against machine-checkable specifications. This creates a hard boundary between conversational authority (interpreting user intent) and execution authority.
2. Magnetic Orchestration: A manager agent dynamically coordinates specialized agents, selecting actors based on context evolution and task progress.
3. Event-Driven Orchestration: Tasks are triggered by real-time events, enabling immediate responses to system state changes or external inputs.

Tools like Temporal, Kestra and Prefect offer different trade-offs between operational reliability, programming simplicity and support for resilient "time-traveling" workflows (pause and resume semantics).

Decision-Centric Architecture and Decision Intelligence

Decision Intelligence (DI) is the discipline that unifies data, analytics, AI, business rules and process automation to drive measurable outcomes. Gartner describes Decision Intelligence Platforms (DIP) as systems that explicitly model decisions, orchestrate their execution and monitor outcomes through feedback loops.

In a decision-centric architecture, decisions become managed assets with:

• A clear definition of the objective to optimize.
• Declared inputs and explicit context.
• Visible logic and flow (rules, models, orchestration).
• A scalable, auditable runtime path.

This approach moves organizations from reactive reporting to proactive operations, enabling what-if simulations to strengthen business resilience.

The Three Pillars of Decision Intelligence

Pillar	Function	Operational Advantage
Business Rules & Logic	Encode institutional knowledge into traceable rules	Remove ambiguity and human error
Machine Learning & AI	Integrate predictive and stochastic patterns	Improve decision accuracy on large data volumes
Process Automation	Connect decision to immediate action (RPA, BPM)	Reduce latency between insight and execution

DI platforms provide no-code/low-code environments where domain experts can set risk appetite and policies without direct IT intervention, accelerating time-to-market.

High Reliability and Numeric Rigor: The Floating-Point Problem

A critical vulnerability in professional calculators is naive use of binary floating-point arithmetic (IEEE 754). Although ubiquitous and hardware-optimized, this system has insurmountable limits for decimal precision required in financial and regulatory contexts.

The core issue is non-associativity of finite-precision floating-point arithmetic. The order of operations can change the final result due to rounding errors and catastrophic cancellation, where subtracting nearly equal numbers destroys significant digits.

Simple decimal numbers like 0.1 have no exact binary representation (they become repeating infinite sequences), causing unacceptable discrepancies in accounting—for example the classic case where 0.1 + 0.2 !== 0.3 in binary floating point.

Comparison of Arithmetic Systems for Kernel Design

Feature	Binary Floating-Point (IEEE 754)	Decimal Arithmetic / Fixed-Point
Base	2 (binary)	10 (decimal)
Representation of 0.1	Approximated (initial error)	Exact (zero error)
Precision	Relative (scales across orders)	Absolute (scaled for fixed decimals)
Ideal Applications	Physics, 3D graphics, big data	Finance, taxes, banking, e-commerce
Performance	Maximum (dedicated hardware)	Lower (often software emulation)

For a professional kernel repository, a discipline around floating point is mandatory: use decimal arithmetic (e.g., BigDecimal in Java or Decimal in Python) for all monetary and fiscal calculations, and explicitly define rounding policies (half-up, half-even, floor, truncate) at each critical logical point, not just at final rounding.

Model-Based Systems Engineering (MBSE) and the Digital Thread

Model-Based Systems Engineering (MBSE) is the shift from document-based design to interconnected digital models. Central to MBSE is the "Digital Thread": a data structure that runs through the entire lifecycle and ensures updates in one model propagate automatically to related models.

The STRATA Methodology

An advanced methodology for MBSE is STRATA (Strategic Layers), organizing information into progressively finer-grained layers and process pillars.

Layer	Requirements (Pillar 1)	Behavioral Arch. (Pillar 2)	Physical Arch. (Pillar 3)	V&V (Pillar 4)
L0: Context	Purpose and mission	Interactions with external environment	Connected external systems	Concept validation plans
L1: System	Complete system requirements	Integrated module behavior	Initial physical decomposition	System integration tests
L2: Subsystem	Subsystem requirements	Functions allocated to components	Specific HW/SW components	Unit tests and component checks

STRATA enables bidirectional traceability: a design change at layer N can be traced back to affected requirements at Layer 0. This guarantees consistency, completeness and correctness, turning design into an iterative, governed process.

Traceability and Formal Verification in Mission-Critical Systems

In systems where failure consequences are severe (aerospace, defense, financial infrastructure), conventional testing based on code coverage is insufficient. Formal verification uses mathematically rigorous techniques to prove an implementation conforms to its abstract specification.

A paradigmatic example is the seL4 microkernel—the first OS kernel to be fully formally verified. Verification proved fundamental security properties, such as partition isolation, ensuring a bug in one application cannot compromise the rest of the system. This level of reliability is achieved by minimizing privileged code and using proof assistants like Isabelle/HOL.

Requirements Traceability Matrix (RTM)

To ensure regulatory compliance (e.g., ISO 26262, FDA 21 CFR Part 11), an RTM links each requirement to:

• Design elements that realize it.
• Code modules that implement it.
• Test cases that verify it.

Bidirectional traceability ensures no implementation part is superfluous and every documented need is satisfied, producing an audit trail essential for institutional trust.

Logic Governance and Semantic Versioning (SemVer)

A professional system cannot tolerate silent bugs or regressions resulting from uncontrolled logic updates. Change governance requires classifying and versioning each kernel change following Semantic Versioning (SemVer):

1. MAJOR: Breaking changes that alter expected results for existing inputs (e.g., a tax rule change).
2. MINOR: Backwards-compatible feature additions (e.g., optional new bracket).
3. PATCH: Bug fixes that do not alter interfaces or domain logic (e.g., performance optimizations).

Behavior-altering changes must be accompanied by Golden Tests (comparisons against canonical result sets) and documentation explaining the reason for change.

Conclusions: The Infrastructure of Institutional Reliability

Transitioning from a brand that offers simple online tools to a trusted partner for complex systems inevitably requires adopting this hierarchy of abstractions. The whitepaper defines conceptual truth, the architecture organizes systemic intelligence, the blueprint plans technical execution, and the kernel repository governs mathematical precision.

Only by cleanly separating the logical core (Kernel) from the execution machine (Engine) and the flow coordinator (Orchestrator) can a system be resilient to technological, regulatory and market variations. In an era of stochastic model uncertainty, returning to deterministic rigor founded on solid abstractions is the only defensible competitive advantage and the basis for enduring technical-scientific credibility.

Adopting standards like IEEE 42010, MBSE methodologies and a strict decimal arithmetic discipline turns software design into true systems engineering: correct, traceable, explainable and governed results. This approach reduces operational risks and maintenance costs while instilling institutional trust, which is key for industrial scalability and success in high-criticality B2B markets.

Works cited

See the full reference list in the canonical Italian version (it.md).