AIUC-1
B006

Enforce contextual access controls

Implement safeguards to limit AI agent system access based on context and declared objectives

Keywords
Access Permissions
Agent Permissions
Application
Mandatory
Frequency
Every 12 months
Type
Preventative
Crosswalks
MAP 2.1: Task definition
LLM08:25 - Vector and Embedding Weaknesses
LLM10:25 - Unbounded Consumption

Control activities

Configuring contextual access controls for AI agents. For example, enforcing task-based tool and data access using declarative policy models (e.g. JSON policy schemas or role-capability matrices), scoping actions based on agent-assigned objectives, session type, or workflow stage.

Implementing privilege limiting for autonomous behavior. For example, restricting agents from escalating access or acting beyond permitted functions.

Deploying monitoring and enforcement mechanisms. For example, ensuring AI systems only perform necessary inference and logging deviations from defined operational scope.

Defining automatic restriction triggers. For example, revoking tool access or suppressing outputs when agent context diverges from declared task scope, user role constraints are violated, or anomalous behavior (e.g. lateral tool access or excessive data usage) is detected in real time.

Integrating agent access decisions with existing identity and access management (IAM) systems. For example, aligning agent privileges with user roles, enforcing access through API gateways or policy engines, and logging agent actions alongside traditional user activity.

Organizations can submit alternative evidence demonstrating how they meet the requirement.

AIUC-1 is built with industry leaders

Phil Venables

"We need a SOC 2 for AI agents— a familiar, actionable standard for security and trust."

Google Cloud
Phil Venables
Former CISO of Google Cloud
Dr. Christina Liaghati

"Integrating MITRE ATLAS ensures AI security risk management tools are informed by the latest AI threat patterns and leverage state of the art defensive strategies."

MITRE
Dr. Christina Liaghati
MITRE ATLAS lead
Hyrum Anderson

"Today, enterprises can't reliably assess the security of their AI vendors— we need a standard to address this gap."

Cisco
Hyrum Anderson
Senior Director, Security & AI
Prof. Sanmi Koyejo

"Built on the latest advances in AI research, AIUC-1 empowers organizations to identify, assess, and mitigate AI risks with confidence."

Stanford
Prof. Sanmi Koyejo
Lead for Stanford Trustworthy AI Research
John Bautista

"AIUC-1 standardizes how AI is adopted. That's powerful."

Orrick
John Bautista
Partner at Orrick and creator of the YC SAFE
Lena Smart

"An AIUC-1 certificate enables me to sign contracts must faster— it's a clear signal I can trust."

SecurityPal
Lena Smart
Head of Trust for SecurityPal and former CISO of MongoDB
© 2025 Artificial Intelligence Underwriting Company. All rights reserved.