The current phase of enterprise AI deployment faces a structural failure: organisations are acquiring agentic capability without the infrastructure to govern it. The result is expected to reproduce the error of the first wave of AI deployment: decentralised intelligence without a federation layer leading to a 95% project failure rate. This paper formalises the Three-Ring Architecture as the governing infrastructure of the on-platform organisation. Ring 1 is the existing production architecture; Ring 2 is the M2 federation layer built on strategies-based agentic AI; Ring 3 is the LLM-based frontier intelligence layer. Ring 2 constitutes, in the technically exact sense, the operating system of the agentic enterprise - performing at the organisational level what a computing OS performs at the device level: resource abstraction, process coordination, permission enforcement, and a stable platform for compounding intelligence. A central contribution is the formal distinction between Ring 2 and Ring 3 risk profiles. Strategies-based agents operate within a deterministic framework: their consequences are traceable, their permissions enforceable, their deviations recoverable. LLM-based agents introduce a categorically distinct risk: a non-deterministic actor whose deviations propagate through complex organisational systems without retrospective traceability. Ring 2 is not a useful addition - it is a necessary condition of control and compliance. A further consequence: every improvement in LLM capability is a structural tailwind for this architecture. More capable non-deterministic actors produce larger consequences when they deviate. The governance requirement scales with capability. The architecture has been validated across a decade of deployment in financial services, government, procurement, and compliance among other sectors.

翻译：当前企业级人工智能部署面临结构性失效：组织正在获取智能体能力，却缺乏相应的治理基础设施。这一现状预计将重蹈第一波AI部署的覆辙——缺乏联邦层的分散智能导致95%的项目失败率。本文正式提出三层环架构作为平台型组织的治理基础设施：环1为现有生产架构，环2是基于策略型智能体AI的M2联邦层，环3是基于大语言模型的前沿智能层。环2在严格技术意义上构成了智能体型企业的操作系统——在组织层面执行计算操作系统在设备层面的功能：资源抽象、进程协调、权限实施，以及复合型智能的稳定平台。核心贡献在于对环2与环3风险特征的正式区分：基于策略的智能体在确定性框架内运作——其后果可追溯、权限可执行、偏差可恢复；而基于大语言模型的智能体引发本质不同的风险——非确定性行为者通过复杂组织系统传播偏差且无法追溯。环2并非锦上添花，而是实现控制与合规的必要条件。另一重要推论为：大语言模型能力的每次提升都将结构性强化该架构——能力更强的非确定性行为者偏离时会产生更严重的后果，治理需求与能力呈正比增长。该架构已在金融服务、政府、采购和合规等多个领域历经十年部署验证。