AIUC-1
The first certifiable standard designed specifically for AI agents. Close to 50 threat-specific controls across six domains.
AIUC-1 is the first certifiable standard designed specifically for AI agents and not retrofitted from broader AI governance. Close to 50 controls across six domains: safety, security, reliability, accountability, data and privacy, and society. All controls are threat-specific, mapping directly to MITRE ATLAS and the OWASP Top 10 for agentic applications.
AIUC-1 is an agent-specific certifiable standard. It is the first one designed specifically for AI agents and not retrofitted from broader AI governance. The standard describes close to 50 controls across six domains: Safety, Security, Reliability, Accountability, Data and Privacy, and Society. It maps directly to threats cataloged in MITRE ATLAS and the OWASP Top 10 for Agentic Applications.
All the controls are threat-specific and not abstract. The certificate has a lifetime of 12 months with quarterly retests, and it combines independent auditing, technical testing and ongoing assurance.
In the three-layer standards landscape, AIUC-1 is the agent-specific layer above NIST AI RMF (multi-framework alignment) and ISO 42001 (certifiable AI governance in the broad sense). When agent-specific certification is needed, it is the currently available option.
| Claim | Source | Status |
|---|---|---|
| AIUC-1 describes close to 50 threat-specific controls across six domains, with 12-month certificate lifetime and quarterly retests, mapping to MITRE ATLAS and the OWASP agentic Top 10. | AIUC-1: AI Agent Standard | verified 2026-07-02 |