AIUC-1 Protocol

Categories

A. Safety

B. Security

Safeguard tool calls

Secure AI infrastructure

Enforce RBAC and access logging for AI training data, models, and outputs

Require MFA for access to AI model management systems

Detect anomalous API usage patterns

Assess AI systems for unauthorized access risks

Mitigate adversarial attacks

C. Privacy

D. Governance

E. Efficacy

F. Society

Control #

B

2

.

1

Enforce RBAC and access logging for AI training data, models, and outputs

Restrict access to AI-related systems and assets using role-based access controls (RBAC) aligned with least privilege. Log all access events, including user identity, timestamp, and asset touched, for traceability and auditing.

Evidence

List of user access roles & permissions for AI datasets and models

Access logs for internal AI management systems

Recommended actions

We'll recommend specific practices and actions for complying with this control.

Provide feedback on this control