責任とガバナンス · Updated 2026-04-26

Guidelines and Companion Guide on Securing AI Systems

Governance Issued 2024-10 Cyber Security Agency of Singapore (CSA)

Core Point

Best practices for AI system security across the full lifecycle — filling a gap in AI security governance.

Detailed Note

Issued by CSA in October 2024, the guidelines cover the full AI system lifecycle: threat modelling at the planning and design stage, data and model security during development, security testing at deployment, and monitoring and incident response in operations. Particular focus is given to AI-specific risks such as adversarial attacks, data poisoning, model theft and supply-chain security. A 2025 companion paper, "Securing Agentic AI", extends the framework to agentic AI use cases.

Position in the Legal Framework

原則からツールから執行への漸進的パス——FEAT → Veritas → MindForge → AI Risk Management Guidelines。

View National AI Levers

Related Legal Cards

裁判所生成型 AI 使用ガイドライン

弁護士と当事者は AI で準備された法律文書に対する最終的な責任を負い、AI の使用状況を開示する必要があります。

AI Risk Management Guidelines for Banks

金融業の AI モデルリスク管理に関する正式な規制期待書――世界初の銀行業 AI に特化した規制文書。

PDPA × AI 境界

AI データ使用の法的境界を画定する――合法的利益例外(Business Improvement Exception)により AI 訓練に余地が生まれます。