Q29 — AWS AIF-C01 Ch.2
Question 29 of 100 | ← Chapter 2
A company is using the Generative AI Security Scope Matrix to assess its solution’s security accountability. It has already defined several solution scopes based on this matrix. Which solution scope enables the company to assume the greatest degree of security accountability?
- A. Using a third-party enterprise application embedded with generative AI functionality.
- B. Building an application using an existing third-party generative AI foundation model (FM).
- C. Optimizing an existing third-party generative AI foundation model (FM) by fine-tuning it with business-specific data.
- D. Building and training a generative AI model from scratch using customer-owned, domain-specific data. ✓
Correct Answer: D. Building and training a generative AI model from scratch using customer-owned, domain-specific data.
Explanation
In the Generative AI Security Scope Matrix, scope numbers reflect organizational ownership over the AI model and its data—ranging from minimal (Scope 1) to maximal (Scope 5). Scope 5—building and training a generative AI model entirely from scratch using customer-owned, domain-specific data—represents full ownership of both model and data. Consequently, this scope entails the highest degree of security accountability.