Generative AI Compliance Best Practice

ID: pack:aliyun:generative-ai-compliance-best-practice

Description

This compliance pack aims to help you comprehensively detect and manage potential compliance risks in security and stability aspects of Bailian, PAI platform, and their dependent core products (such as ACK, ACR, OSS, NAS, KMS, SLS, MaxCompute, etc.).

Included Rules

• rule:aliyun:cr-repository-immutablity-enable
• rule:aliyun:ecs-disk-auto-snapshot-policy
• rule:aliyun:ecs-disk-encrypted
• rule:aliyun:kms-key-delete-protection-enabled
• rule:aliyun:kms-key-rotation-enabled
• rule:aliyun:kms-secret-rotation-enabled
• rule:aliyun:maxcompute-project-encryption-enabled
• rule:aliyun:maxcompute-project-ip-whitelist-enabled
• rule:aliyun:nas-filesystem-encrypt-type-check
• rule:aliyun:nas-filesystem-mount-target-access-group-check
• rule:aliyun:oss-bucket-only-https-enabled
• rule:aliyun:oss-default-encryption-kms
• rule:aliyun:pai-eas-instances-multi-zone