AI-CAIQ (STAR-for-AI) — evidence-generated self-assessment
AI-CAIQ (STAR-for-AI) — evidence-generated self-assessment — 50% covered.
2 requirements · 1 enforced · 0 designed · 0 advisory · 0 deferred.
Source: CSA AI Consensus Assessments Initiative Questionnaire (AI-CAIQ), the self-assessment companion to the AICM and the basis for CSA STAR-for-AI listings. AICM defines the controls; KYE™ operationalises them — so each AI-CAIQ answer KYE can satisfy is GENERATED from runtime evidence, never filled by hand. Questions outside KYE's execution scope are marked not-applicable-to-KYE, never fabricated. The per-question answer registry lives at ai-caiq.registry.json. · License: CSA AI-CAIQ is published by the Cloud Security Alliance; KYE paraphrases each question's intent and cites the AICM control identifier for mapping purposes only.
By category
| Category | Reqs | Enforced | Designed | Advisory | Deferred | Coverage |
|---|---|---|---|---|---|---|
| Questionnaire answers generated from replay-provable evidence | 1 | 1 | 0 | 0 | 0 | 100% |
| Out-of-scope questions marked not applicable | 1 | 0 | 0 | 0 | 0 | 0% |
Every requirement → the KYE™ artefact that enforces it
| ID | Title | Status | KYE™ enforcement |
|---|---|---|---|
ai-caiq.evidence-generated-answers |
Every answerable AI-CAIQ question is GENERATED from replay-provable runtime evidence, not filled by hand | enforced | audit_events: kye.evidence.pack.v1, kye.evidence.decision_map.v1, kye.replay.proof.v1engines: internal, internalconstitution_refs: constitution/13-RESILIENCE-LOOP.md |
ai-caiq.honest-not-applicable |
Questions outside KYE™'s execution scope are marked not-applicable-to-KYE™, never fabricated | out-of-scope | (no enforcement cited) |