Interactive tools

Tools

Assessment wizards and system instructions for operationalizing the CoSAI AI Shared Responsibility Framework. All tools run in your browser. No data leaves your device.

Assessment Wizards

10 tools
Accountability Decision Record

Turn the framework into the artifact you keep. Name one accountable party per layer for a specific deployment, flag residual gaps, and export a signed one-page record to PDF.

Regulation Discovery

Identify which regulations apply to your planned AI system. Answer four questions about jurisdiction, risk tier, and deployment context to get a layer-mapped regulatory profile.

Controls Assessment (AICM)

Five-layer security controls assessment aligned to the CSA AI Controls Matrix v1.0.3. Covers OWASP LLM Top 10, EU AI Act risk tiers, and generates a gap report with PDF export.

Security Controls Assessment

CCI-level security posture assessment across all five CoSAI SRF layers. Focused on defensive controls, threat coverage, and OWASP LLM vulnerability mitigations.

AI Policy Pyramid

Build your AI governance document hierarchy across the five CoSAI layers: principles, policies, standards, guidelines, and operational baselines. Export as PDF or JSON.

Layer Integration Matrix

Cross-layer integration and handoff reference. Shows how controls, data flows, and accountability transfer across the L1 through L5 boundaries for a given deployment.

Framework Stress Test

Apply adversarial scenarios to the CoSAI SRF to find gaps, ambiguous boundaries, and accountability edge cases. Useful for pre-deployment review and tabletop exercises.

Vendor Risk Assessment

Map the AI vendor landscape to the SRF. Seven supplier categories with layer mapping, accountability splits, attestation baselines, and the evidence to demand. Includes a how-to guide and a downloadable VRA workpaper.

Incident Response Playbooks

Day-2 response for when a boundary fails. Seven AI incident scenarios mapped to the SRF layer that broke, with who leads per operating model, vendor asks, and evidence to preserve.

Red Team Scoping Tool

Scope an AI red team engagement. Resolves testable, authorization-required, and out-of-scope layers by operating model, pre-assigns finding ownership, and exports a signed scoping record.

System Instructions

1 tool