AI Product Security Assessment - Badge Catalog

AIPSA Badge Catalog

Five badge families for AI Product Security: practitioner credentials, consultant marks, program maturity badges, evidence marks, and lab domain badges, each earned through a defined process.

Take the Assessment Verify a Credential How to earn

Badge families

Credential levels

Assessment domains

Public verification

Ready

What the catalog contains

Practitioner credentialsConsultant marksProgram maturity badgesEvidence marksLab domain badges

Badge families

The catalog is broader than practitioner credentials.

The system includes individual credentials, consultant marks, organizational badges, scoped evidence marks, and lab completion badges. Each family has its own purpose and claim boundaries.

4 marks

Practitioner Credentials

Individual knowledge credentials issued after a scoped AIPSA-aligned assessment.

AIPSA AssociateAIPSA PractitionerAIPSA AdvancedAIPSA Distinguished

2 marks

Consultant Credentials

Issued to practitioners authorized to conduct or support AIPSA-aligned assessment work.

AIPSA ConsultantAIPSA Assessment Lead

3 marks

Program Badges

Organizational maturity badges issued after scorecard assessment.

AIPSA Program: ManagedAIPSA Program: MeasuredAIPSA Program: Adaptive

4 marks

Evidence Marks

Scoped process badges issued after adversarial testing or evidence review.

AIPSA AssessedAIPSA TestedAIPSA Evidence PackAIPSA Verified Controls

5 marks

Lab Badges

Domain completion badges earned through AIPSA Labs scenario tracks.

Prompt InjectionRAG AuthorizationAgentic PermissionsDetection EngineeringGovernance Evidence

Practitioner credentials

Four levels benchmark individual knowledge across every AI Product Security domain.

These are the primary shareable credentials in the catalog. Each card uses a fixed badge stage so the medallion stays crisp, balanced, and comparable.

Score 70–7914 domainsCredential

AIPSA Associate

Demonstrates foundational knowledge across AI Product Security domains.

Recommended for Practitioners getting started

Domain coverage

14 domains

Recommended for

Practitioners getting started

View credential details Verify a credential

Score 80–8914 domainsCredential

AIPSA Practitioner

Proficient understanding of AI Product Security and practical application.

Recommended for Security engineers, analysts, builders

Domain coverage

14 domains

Recommended for

Security engineers, analysts, builders

View credential details Verify a credential

Score 90–9414 domainsCredential

AIPSA Advanced

Advanced knowledge and ability to design, assess, and improve AI security controls.

Recommended for Security leads, senior engineers, architects

Domain coverage

14 domains

Recommended for

Security leads, senior engineers, architects

View credential details Verify a credential

Score 95–10014 domainsCredential

AIPSA Distinguished

Expert-level mastery across domains and leadership in AI Product Security.

Recommended for Leaders, advisors, consultants, researchers

Domain coverage

14 domains

Recommended for

Leaders, advisors, consultants, researchers

View credential details Verify a credential

Assessment coverage

All 14 AI Product Security domains are visible and comparable.

The domains are grouped for readability, but every individual domain stays visible so the catalog does not hide the actual assessment scope.

Domain group

Inventory & Architecture

What AI systems exist, how they're connected, who controls them, and where the trust boundaries are.

InventoryArchitecture & Trust BoundariesModel & Provider Risk

Domain group

Adversarial Testing

Whether adversarial inputs, manipulation, and prompt injection are modeled, tested, and measured over time.

Threat ModelingPrompt InjectionEvaluation & Regression Testing

Domain group

RAG & Data Authorization

Whether retrieval systems enforce proper authorization, and whether data exposure is controlled end to end.

RAG AuthorizationData Exposure & PrivacyAI Supply Chain

Domain group

Agentic Permissions

Whether agentic systems are constrained to the actions they need, with proper guardrails on tool use.

Agentic PermissionsTool AuthorizationWorkflow Boundaries

Domain group

Detection & Incident Response

Whether AI systems produce actionable telemetry, and whether teams can detect and respond to AI-specific incidents.

Logging & TelemetryDetection EngineeringIncident Response

Domain group

Governance Evidence

Whether AI security is documented, auditable, and integrated into delivery — not just asserted.

Governance EvidenceCustomer TrustSecure AI SDLC

How it works

Structured like an assessment. Issued like a credential.

Take the assessment, calculate the score, issue the level, and verify the credential publicly. The process is designed to be easy to understand and easy to share.

Take the assessment

A structured exam covering all 14 AIPSA domains. Approximately 60–90 minutes.

control step

Score is calculated

Domain-weighted scoring across knowledge and applied reasoning questions.

control step

Credential issued

Score determines your level. Credential includes a verifiable ID and expiry date.

control step

Verify & share

Every credential is publicly verifiable /aipsa/verify.

control step

Next step

Ready to get certified?

Start with the AIPSA training assessment to see where you stand across every AI Product Security domain.

Start the Assessment Verify a Credential How to earn

AIPSA credentials confirm completion of a scoped assessment, certification, lab path, or evidence review. They do not certify that any product, organization, or system is free of vulnerabilities.