AIUC — Artificial Intelligence Underwriting Company
AIUC (Artificial Intelligence Underwriting Company) publishes and issues the AIUC-1 certification standard for enterprise AI agents, positioned by its publisher as “SOC 2 for AI agents.” AIUC operates a two-actor audit model: AIUC issues the certification based on technical evaluation, while an ANAB-accredited auditor (Schellman as of February 2026) performs independent evidence collection and reporting. This split differs from ISO 27001 and SOC 2, where the auditing body issues the report directly.1
AIUC co-published the OWASP ASI to AIUC-1 crosswalk (May 2026) with the OWASP GenAI Security Project’s Agentic Security Initiative. The document credits AIUC’s founding standard lead and an AIUC reviewer among its expert reviewers.2
Role in the wiki
| Use | Where |
|---|---|
| Publisher of the AIUC-1 standard | AIUC-1 AI Agent Certification Standard |
| Certification issuer (two-actor model) | AIUC-1 AI Agent Certification Standard |
| Co-publisher of the ASI crosswalk | OWASP ASI to AIUC-1 Crosswalk |
| Subject of standing assessment | AIUC-1 Critical Evaluation |
Relations
- AIUC-1 AI Agent Certification Standard — the standard AIUC publishes
- OWASP ASI to AIUC-1 Crosswalk — co-published with OWASP
- AIUC-1 Critical Evaluation — concentration and freshness caveats on AIUC as a single issuer
- OWASP — crosswalk co-publisher
Footnotes
-
Schellman accreditation as first ANAB-accredited AIUC-1 auditor, schellman.com; AIUC quarterly update detail, aiuc-1.com/research. ↩
-
AIUC-1: Crosswalks OWASP Top 10 For Agentic Applications, v1.0, May 2026, OWASP GenAI Security Project, acknowledgements. Archived at
.raw/papers/owasp-agentic-top10-aiuc1-crosswalk-2026-05.pdf. ↩