@prefix air-2024: .
@prefix aiuc1: .
@prefix coe-ai-convention: .
@prefix csa-agentic-profile: .
@prefix dcterms: .
@prefix dpv-ai: .
@prefix eticas: .
@prefix eticas-ont: .
@prefix eu-ai-act: .
@prefix ibm-atlas: .
@prefix iso-42001: .
@prefix mit: .
@prefix nist-600: .
@prefix nist-rmf: .
@prefix oecd: .
@prefix owasp-agentic-top10: .
@prefix skos: .
@prefix tc260: .
mit:domain-1 skos:prefLabel "Discrimination & Toxicity"@en .
mit:domain-3 skos:prefLabel "Misinformation"@en .
mit:subdomain-1.1 skos:prefLabel "Unfair discrimination & misrepresentation"@en .
mit:subdomain-1.3 skos:prefLabel "Unequal performance across groups"@en .
mit:subdomain-6.6 skos:prefLabel "Environmental harm"@en .
mit:subdomain-7.3 skos:prefLabel "Lack of capability or robustness"@en .
air-2024:L1-LegalRightsRelated skos:prefLabel "Legal & Rights-Related Risks (3.1.D)"@en .
air-2024:L2-DiscriminationBias skos:prefLabel "Discrimination & Bias (Discriminatory Activities)"@en .
air-2024:L2-Manipulation skos:prefLabel "Societal Risks → Manipulation, Deception, Political Usage"@en .
air-2024:L2-Privacy skos:prefLabel "Legal & Rights → Privacy (Unauthorized Privacy Violations × Sensitive Data types)"@en .
aiuc1:A skos:prefLabel "Data & Privacy domain"@en .
aiuc1:A.5 skos:prefLabel "Implement customer data policies"@en .
aiuc1:B.1 skos:prefLabel "Third-party testing of adversarial robustness"@en .
aiuc1:C.3-C.4-C.6 skos:prefLabel "C.3 + C.4 + C.6 — safeguards to prevent harmful and vulnerable outputs"@en .
aiuc1:C.5 skos:prefLabel "Prevent customer-defined high-risk outputs"@en .
aiuc1:C.8 skos:prefLabel "Monitor AI risk categories"@en .
aiuc1:D skos:prefLabel "Reliability domain"@en .
aiuc1:D.1 skos:prefLabel "Prevent hallucinated outputs"@en .
aiuc1:E skos:prefLabel "Accountability domain"@en .
aiuc1:E.4 skos:prefLabel "Assign accountability"@en .
aiuc1:F skos:prefLabel "Society domain (cyber misuse + catastrophic misuse)"@en .
coe-ai-convention:article-10 skos:prefLabel "Article 10 — Equality and non-discrimination"@en .
coe-ai-convention:article-11 skos:prefLabel "Article 11 — Privacy and personal data protection"@en .
coe-ai-convention:article-12 skos:prefLabel "Article 12 — Reliability, safe innovation (security dimension)"@en .
coe-ai-convention:article-4b skos:prefLabel "Article 4(b) — Reliability (general obligation)"@en .
coe-ai-convention:article-8 skos:prefLabel "Article 8 — Accountability and responsibility"@en .
coe-ai-convention:article-9 skos:prefLabel "Article 9 — Transparency and oversight"@en .
csa-agentic-profile:AG-MP.2-AG-MP.3-AG-GV.2 skos:prefLabel "AG-MP.3 (Multi-Agent Topology Risk) + AG-MP.2 (Agent Action-Consequence Analysis) + AG-GV.2 (Delegation Accountability)"@en .
ibm-atlas:agentic-explainability-robustness-efficiency skos:prefLabel "New and amplified risks of agentic AI — Explainability, Robustness, Computational Inefficiency"@en .
ibm-atlas:environmental-impact skos:prefLabel "Non-technical → Societal impact → Environmental impact"@en .
ibm-atlas:explainability-transparency skos:prefLabel "Output → Explainability + Non-technical → Transparency"@en .
ibm-atlas:governance-non-technical skos:prefLabel "Non-technical → Governance dimension"@en .
ibm-atlas:harmful-output-misuse skos:prefLabel "Output → Harmful output + Non-technical → Misuse"@en .
ibm-atlas:input-output-privacy skos:prefLabel "Input → Data privacy + Output → Privacy violations"@en .
ibm-atlas:output-bias skos:prefLabel "Output bias (Fairness dimension)"@en .
ibm-atlas:output-explainability skos:prefLabel "Output → Explainability"@en .
ibm-atlas:output-fairness-and-training-data skos:prefLabel "Output → Fairness + Training data → Accuracy + Fairness"@en .
ibm-atlas:robustness-adversarial skos:prefLabel "Inference → Robustness → Adversarial robustness"@en .
ibm-atlas:security-misuse skos:prefLabel "Inference → Adversarial robustness + Non-technical → Misuse"@en .
ibm-atlas:security-non-technical skos:prefLabel "Non-technical → Misuse + Inference → Security"@en .
ibm-atlas:societal-impact-drift skos:prefLabel "Output → Drift + Non-technical → Societal impact"@en .
ibm-atlas:toxicity-harmful-output skos:prefLabel "Output → Toxicity / Harmful output"@en .
iso-42001:A.2 skos:prefLabel "A.2 Policies + A.3 Internal organization"@en .
iso-42001:A.3 skos:prefLabel "A.3 Internal organization (roles & responsibilities)"@en .
iso-42001:A.6.2.4 skos:prefLabel "AI system verification and validation"@en .
iso-42001:A.6.2.5 skos:prefLabel "AI system deployment (secure deployment)"@en .
iso-42001:A.6.2.6 skos:prefLabel "AI system operation and monitoring"@en .
iso-42001:A.6.2.8 skos:prefLabel "AI system documentation (system documentation maintained throughout lifecycle)"@en .
iso-42001:A.7.4 skos:prefLabel "A.7.4 — Data for AI systems"@en .
iso-42001:A.8 skos:prefLabel "A.8 Information for interested parties + A.6.2.8 documentation"@en .
iso-42001:A.8.2 skos:prefLabel "Information for users / affected parties"@en .
iso-42001:A.9 skos:prefLabel "A.9 Use of AI systems + clause 10 (improvement / nonconformity)"@en .
nist-600:4 skos:prefLabel "Data Privacy"@en .
nist-600:8 skos:prefLabel "Information Integrity"@en .
nist-600:9 skos:prefLabel "Information Security"@en .
nist-600:dangerous-content skos:prefLabel "Dangerous, Violent or Hateful Content + CBRN + Obscene/Abusive"@en .
nist-600:data-privacy skos:prefLabel "Data Privacy"@en .
nist-600:environmental skos:prefLabel "Environmental Impacts"@en .
nist-600:information-security skos:prefLabel "Information Security"@en .
nist-rmf:accountable-transparent skos:prefLabel "Accountable & Transparent"@en .
nist-rmf:explainable skos:prefLabel "Explainable & Interpretable"@en .
nist-rmf:explainable-interpretable skos:prefLabel "Explainable & Interpretable"@en .
nist-rmf:fair skos:prefLabel "Fair with Harmful Bias Managed + Map 5.1 + Measure 2.11"@en .
nist-rmf:harmful-bias skos:prefLabel "Harmful bias (representational dimension)"@en .
nist-rmf:manage-2.3 skos:prefLabel "Manage 2.3 — allocation harms and disparate performance"@en .
nist-rmf:privacy-enhanced skos:prefLabel "Privacy-Enhanced"@en .
nist-rmf:safe skos:prefLabel "Safe (trustworthy characteristic)"@en .
nist-rmf:systemic-bias skos:prefLabel "Systemic bias under harmful bias"@en .
oecd:principle-1.1 skos:prefLabel "Inclusive growth, sustainable development & environmental sustainability"@en .
oecd:principle-1.4 skos:prefLabel "Robustness, security & safety"@en .
oecd:robustness skos:prefLabel "Robustness, security & safety"@en .
owasp-agentic-top10:ASI01-ASI02-ASI03 skos:prefLabel "ASI01 (Agent Goal Hijack) + ASI02 (Tool Misuse and Exploitation) + ASI03 (Identity and Privilege Abuse)"@en .
tc260:3.1.1b-3.3.2a skos:prefLabel "§3.1.1(b) Model and algorithm risks (bias/discrimination) + §3.3.2(a) Ethical risks (systemic social discrimination)"@en .
tc260:3.1.2a-3.1.2d skos:prefLabel "§3.1.2(a) Data risks — collection without consent + §3.1.2(d) Data risks — PII leaks"@en .
tc260:3.2.2a skos:prefLabel "§3.2.2(a) Information content risks — malicious manipulation generating illegal/harmful content"@en .
tc260:3.3.1b skos:prefLabel "§3.3.1(b) Social and Environmental Risks — energy, electricity, land, and water consumption from AI computing"@en .
eticas:agentic-actions-tool-use a skos:Concept ;
skos:broader eticas:agentic-ai ;
skos:definition "Risks from the agent taking real-world actions through external tools, APIs, and services, including being granted excessive permissions, executing unnecessary or out-of-scope actions, bypassing human oversight, or consuming disproportionate resources."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Autonomous Actions and Tool Use"@en .
eticas:agentic-multi-agent-integrity a skos:Concept ;
skos:broader eticas:agentic-ai ;
skos:definition "Risks from systems composed of multiple agents — including trust exploitation, cascading failures, goal misalignment between agents, and insufficient traceability across the pipeline."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Multi-agent Integrity"@en .
eticas:bias-dynamic-systemic-bias a skos:Concept ;
skos:broader eticas:bias-fairness ;
skos:closeMatch ibm-atlas:societal-impact-drift,
iso-42001:A.6.2.6,
nist-rmf:systemic-bias,
oecd:principle-1.5,
dpv-ai:AutomationBias,
eu-ai-act:article-72,
eu-ai-act:article-9 ;
skos:definition "Risks related to how bias is amplified or perpetuated over time through interaction between AI systems and the social systems they operate in."@en ;
skos:inScheme eticas:scheme ;
skos:narrowMatch nist-600:harmful-bias ;
skos:prefLabel "Dynamic & Systemic bias"@en ;
skos:relatedMatch mit:subdomain-6.5,
aiuc1:C.8 .
eticas:bias-outcome-disparities a skos:Concept ;
skos:broadMatch nist-600:harmful-bias,
dpv-ai:DataBias ;
skos:broader eticas:bias-fairness ;
skos:closeMatch air-2024:L2-DiscriminationBias,
iso-42001:A.5.2,
nist-rmf:manage-2.3,
eu-ai-act:annex-iii ;
skos:definition "Risks related to unequal treatment, allocation, or performance outcomes across demographic and protected groups. These are observable differences in what the system does to or for different groups."@en ;
skos:exactMatch mit:subdomain-1.3,
ibm-atlas:output-bias ;
skos:inScheme eticas:scheme ;
skos:narrowMatch aiuc1:C.5 ;
skos:prefLabel "Outcome disparities"@en .
eticas:bias-representational-harm a skos:Concept ;
skos:broader eticas:bias-fairness ;
skos:closeMatch mit:subdomain-1.1 ;
skos:definition "Risks related to how the system represents groups in its outputs — through stereotypes, toxic content, skewed representation, or homogenization. These are harms in the form of meaning and content rather than allocation of resources or opportunities."@en ;
skos:inScheme eticas:scheme ;
skos:narrowMatch ibm-atlas:toxicity-harmful-output,
nist-600:harmful-bias,
nist-rmf:harmful-bias,
dpv-ai:NonRepresentativeSamplingBias ;
skos:prefLabel "Representational harm"@en .
eticas:environmental-impact a skos:Concept ;
skos:altLabel "Environmental sustainability"@en,
"Sustainability"@en ;
skos:closeMatch tc260:3.3.1b ;
skos:definition "The risk that an AI system's development, deployment, or use causes negative environmental effects, such as excessive energy or water consumption, carbon emissions, or unsustainable use of hardware and resources. This includes hidden impacts across the system's lifecycle, from model training to long-term operation."@en ;
skos:exactMatch mit:subdomain-6.6,
ibm-atlas:environmental-impact,
nist-600:environmental,
oecd:principle-1.1 ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Environmental Impact"@en ;
skos:relatedMatch iso-42001:A.5.2,
eu-ai-act:article-95 ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "in-processing",
"post-processing",
"pre-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "technical soundness" ;
eticas-ont:scope "ALL" .
eticas:governance-accountability a skos:Concept ;
skos:broadMatch nist-rmf:govern-function ;
skos:broader eticas:governance ;
skos:closeMatch aiuc1:E.4,
iso-42001:A.3,
oecd:principle-1.5 ;
skos:definition "Risks from unclear allocation of responsibility, weak human oversight, and inadequate attribution mechanisms for AI system decisions and their adverse impacts."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Accountability"@en .
eticas:governance-compliance a skos:Concept ;
skos:broader eticas:governance ;
skos:closeMatch aiuc1:E.10,
iso-42001:A.9,
nist-rmf:govern-1,
dpv-ai:RiskManagement,
eu-ai-act:article-17 ;
skos:definition "Risks from gaps in organisational processes for ongoing oversight, compliance, and lifecycle management of AI systems — including regulatory compliance, change management, data governance, monitoring and evaluation, remediation of failures, and incident response."@en ;
skos:inScheme eticas:scheme ;
skos:narrowMatch nist-600:value-chain ;
skos:prefLabel "Compliance & process"@en .
eticas:governance-documentation a skos:Concept ;
skos:broader eticas:governance ;
skos:closeMatch aiuc1:E.10,
iso-42001:A.6.2.8,
nist-rmf:govern-1,
eu-ai-act:article-11 ;
skos:definition "Risks from incomplete, inaccessible, or absent documentation and audit trails."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Documentation & auditability"@en .
eticas:privacy-collection-use a skos:Concept ;
skos:broader eticas:privacy-confidentiality ;
skos:closeMatch dpv-ai:PersonalDataCollection ;
skos:definition "Risks from how personal data is collected, processed, and repurposed."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Data collection & use"@en ;
skos:relatedMatch eu-ai-act:article-5 .
eticas:privacy-data-protection a skos:Concept ;
skos:broader eticas:privacy-confidentiality ;
skos:closeMatch aiuc1:A.5,
iso-42001:A.7.5,
nist-600:4 ;
skos:definition "Risks related to safeguards for stored and processed personal data."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Data protection"@en .
eticas:privacy-model-level a skos:Concept ;
skos:broader eticas:privacy-confidentiality ;
skos:closeMatch mit:subdomain-2.1,
dpv-ai:MembershipInferenceAttack ;
skos:definition "Risks from AI models leaking or exposing private information through their outputs or structure."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Model-level privacy"@en .
eticas:reliability-output-quality a skos:Concept ;
skos:broader eticas:reliability ;
skos:closeMatch aiuc1:D.1,
ibm-atlas:output-robustness,
nist-600:2,
nist-rmf:valid-reliable ;
skos:definition "Risks including hallucinations, output inconsistency, model drift, and out-of-distribution failures that undermine the dependability and trustworthiness of system outputs."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Output Integrity and Robustness"@en .
eticas:security-ai-attacks a skos:Concept ;
skos:broader eticas:security-misuse ;
skos:closeMatch mit:subdomain-2.2,
aiuc1:B.1,
ibm-atlas:robustness-adversarial,
nist-rmf:secure-resilient,
dpv-ai:SecurityAttack,
eu-ai-act:article-15-5 ;
skos:definition "The risks that arise from adversarial inputs, injected instructions, bypassed safety controls, or corrupted training data."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Adversarial Threats & Attacks"@en .
eticas:security-harmful-misuse a skos:Concept ;
skos:broader eticas:security-misuse ;
skos:closeMatch mit:domain-4,
air-2024:L2-Manipulation,
aiuc1:F,
ibm-atlas:harmful-output-misuse,
nist-600:dangerous-content,
nist-rmf:safe,
eu-ai-act:article-5-1a ;
skos:definition "Risks from deliberate misuse of the AI system to generate harmful content, manipulate users, or operate beyond its intended purpose. These risks involve explicit malicious intent (human or otherwise) — distinguishing them from unintentional system failures (which belong under Reliability)."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Harmful & Malicious Misuse"@en .
eticas:security-system a skos:Concept ;
skos:broader eticas:security-misuse ;
skos:closeMatch aiuc1:B,
ibm-atlas:security-non-technical,
iso-42001:A.6.2.5,
nist-600:9 ;
skos:definition "The risks that arise from unauthorised access, vulnerable third-party components, or over-disclosure of technical details that enable targeting. Unlike Governance risks, this includes whether the system and its environment can be technically compromised."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Infrastructure & System security"@en .
eticas:transparency-communication a skos:Concept ;
skos:broader eticas:transparency-explainability ;
skos:closeMatch aiuc1:E.16,
iso-42001:A.8.2,
nist-600:information-integrity,
oecd:principle-1.3,
eu-ai-act:article-13 ;
skos:definition "Risks from inadequate communication about system capabilities, limitations, and AI involvement."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Communication & disclosure"@en .
eticas:transparency-explainability-group a skos:Concept ;
skos:broader eticas:transparency-explainability ;
skos:closeMatch mit:subdomain-7.4,
ibm-atlas:output-explainability,
nist-rmf:explainable,
dpv-ai:ExplainabilityRisk ;
skos:definition "Risks from stakeholders being unable to understand why the system produces specific outputs."@en ;
skos:inScheme eticas:scheme ;
skos:prefLabel "Explainability"@en .
dpv-ai:AIBias skos:prefLabel "AI Bias"@en .
dpv-ai:AutomationBias skos:prefLabel "Automation Bias"@en .
dpv-ai:DataBias skos:prefLabel "Data Bias"@en .
dpv-ai:ExplainabilityRisk skos:prefLabel "Explainability Risk"@en .
dpv-ai:Governance skos:prefLabel "dpv:OrganisationalMeasure (DPV core)"@en .
dpv-ai:MembershipInferenceAttack skos:prefLabel "Membership Inference Attack"@en .
dpv-ai:NonRepresentativeSamplingBias skos:prefLabel "Non-Representative Sampling Bias"@en .
dpv-ai:PersonalDataCollection skos:prefLabel "Personal Data Handling"@en .
dpv-ai:PersonalDataHandling skos:prefLabel "Personal Data Handling (DPV core)"@en .
dpv-ai:RiskManagement skos:prefLabel "Risk Management"@en .
dpv-ai:TransparencyRisk skos:prefLabel "ai:TransparencyRisk + ai:ExplainabilityRisk (DPV AI extension)"@en .
eu-ai-act:annex-iii skos:prefLabel "Annex III high-risk uses (employment, education, essential services)"@en .
eu-ai-act:article-10-5-annex-iii skos:prefLabel "Article 10(5) + Article 6(2) + Annex III — bias-relevant data governance and high-risk classification"@en .
eu-ai-act:article-10-5-recital-47 skos:prefLabel "Article 10(5) — special categories of personal data + Recital 47 (fundamental rights including privacy)"@en .
eu-ai-act:article-11 skos:prefLabel "Article 11 — Technical documentation"@en .
eu-ai-act:article-15 skos:prefLabel "Article 15 — accuracy, robustness and cybersecurity"@en .
eu-ai-act:article-5 skos:prefLabel "Article 5 — Prohibited AI practices (emotion recognition, biometric categorization)"@en .
eu-ai-act:article-5-1a skos:prefLabel "Article 5(1)(a) — prohibited manipulative practices"@en .
eu-ai-act:article-72 skos:prefLabel "Article 72 — post-market monitoring"@en .
eu-ai-act:article-9 skos:prefLabel "Article 9 — risk management throughout lifecycle"@en .
eu-ai-act:article-95 skos:prefLabel "Article 95 — Codes of conduct for sustainability + Recital 139"@en .
mit:domain-4 skos:prefLabel "Malicious Actors"@en,
"Malicious Actors & Misuse"@en .
mit:subdomain-2.1 skos:prefLabel "Compromise of privacy by obtaining, leaking or correctly inferring sensitive information"@en,
"Compromise of privacy by obtaining, leaking or inferring sensitive information"@en .
mit:subdomain-2.2 skos:prefLabel "AI system security vulnerabilities and attacks"@en .
mit:subdomain-6.5 skos:prefLabel "Governance failure"@en .
mit:subdomain-7.4 skos:prefLabel "Lack of transparency or interpretability"@en .
air-2024:L1-SystemOperational skos:prefLabel "System & Operational Risks (L1)"@en,
"System & Operational Risks (Security + Operational Misuses)"@en .
aiuc1:B skos:prefLabel "Security domain"@en,
"Security domain (and Society domain F for misuse)"@en .
aiuc1:E.10 skos:prefLabel "Document regulatory compliance"@en,
"Document regulatory compliance + E.12 Quality management system"@en .
aiuc1:E.16 skos:prefLabel "Implement AI disclosure mechanisms"@en,
"Implement AI disclosure mechanisms + E.17 transparency policy"@en .
ibm-atlas:output-robustness skos:prefLabel "Output → Robustness"@en,
"Output → Robustness + Inference → Accuracy"@en .
iso-42001:A.5.2 skos:prefLabel "AI system impact assessment"@en,
"AI system impact assessment + Annex C objectives"@en .
iso-42001:A.7.5 skos:prefLabel "Privacy considerations for AI systems"@en .
nist-600:2 skos:prefLabel "Confabulation"@en .
nist-600:information-integrity skos:prefLabel "Information Integrity (provenance disclosure)"@en,
"Information Integrity (provenance) + Value Chain"@en .
nist-600:value-chain skos:prefLabel "Value Chain & Component Integration"@en,
"Value Chain and Component Integration"@en .
nist-rmf:govern-1 skos:prefLabel "GOVERN 1 — Policies, processes, procedures"@en,
"GOVERN 1 — documented policies and processes"@en .
nist-rmf:govern-function skos:prefLabel "GOVERN function"@en,
"GOVERN function (entire)"@en .
nist-rmf:secure-resilient skos:prefLabel "Secure & Resilient"@en,
"Secure & Resilient (adversarial ML)"@en .
nist-rmf:valid-reliable skos:prefLabel "Valid & Reliable"@en .
oecd:principle-1.2 skos:prefLabel "Human rights, rule of law, fairness & privacy"@en .
oecd:principle-1.3 skos:prefLabel "Transparency & explainability"@en,
"Transparency and explainability"@en .
eticas:reliability a skos:Concept ;
skos:altLabel "Validity and Reliability"@en ;
skos:broadMatch mit:domain-3,
air-2024:L1-SystemOperational,
coe-ai-convention:article-4b,
oecd:robustness ;
skos:closeMatch mit:subdomain-7.3,
ibm-atlas:output-robustness,
iso-42001:A.6.2.4,
nist-600:2,
nist-600:8,
nist-rmf:valid-reliable,
eu-ai-act:article-15 ;
skos:definition "Risks arising from an AI systems failure to perform dependably — whether through degraded output integrity and robustness (e.g., hallucinations, model drift), or through inability to maintain function under adverse or changing conditions (e.g., infrastructure failure, connectivity loss)."@en ;
skos:exactMatch aiuc1:D ;
skos:inScheme eticas:scheme ;
skos:narrower eticas:reliability-output-quality ;
skos:prefLabel "Reliability"@en ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "in-processing",
"post-processing",
"pre-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "technical soundness" ;
eticas-ont:scope "ALL" .
dpv-ai:SecurityAttack skos:prefLabel "Security Attack"@en .
eu-ai-act:article-13 skos:prefLabel "Article 13 — Transparency and provision of information"@en,
"Article 13 — Transparency and provision of information to deployers"@en .
eu-ai-act:article-15-5 skos:prefLabel "Article 15(5) — cybersecurity (Recital 76 enumerates poisoning, evasion, confidentiality attacks)"@en,
"Article 15(5) — cybersecurity (resilience against attacks)"@en .
eu-ai-act:article-17 skos:prefLabel "Article 17 — Quality management system + Article 9 — Risk management"@en .
oecd:principle-1.5 skos:prefLabel "Accountability"@en,
"Accountability — lifecycle bias monitoring"@en .
eticas:agentic-ai a skos:Concept ;
skos:altLabel "AI Agents"@en,
"Agentic risks"@en ;
skos:closeMatch csa-agentic-profile:AG-MP.2-AG-MP.3-AG-GV.2,
ibm-atlas:agentic-explainability-robustness-efficiency,
owasp-agentic-top10:ASI01-ASI02-ASI03 ;
skos:definition "Risks arising from AI systems that autonomously plan, reason, and act across multiple steps using tools, memory, and external services, beyond single-inference interactions. These risks are distinct from standard LLM risks because the agent takes real-world actions, operates across time, and interacts with external systems and other agents."@en ;
skos:inScheme eticas:scheme ;
skos:narrower eticas:agentic-actions-tool-use,
eticas:agentic-multi-agent-integrity ;
skos:note "Initial scope deliberately limited to primary enterprise risks of agentic deployment. Adversarial threats specific to agents (e.g., memory poisoning) are not yet included — they sit closer to security and will be revisited as the category matures. Loss of meaningful human control over agentic systems is currently covered under Autonomy & Agency / System autonomy and may be promoted or cross-referenced here in a future iteration. Some overlap with Autonomy & Agency / System autonomy is acknowledged and will be reconciled in a future minor version."@en ;
skos:prefLabel "Agentic AI"@en ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "post-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "technical soundness" ;
eticas-ont:scope "LLM" .
eticas:transparency-explainability a skos:Concept ;
skos:altLabel "Explainability & Transparency"@en,
"Transparency and Explainability"@en ;
skos:closeMatch mit:subdomain-7.4,
aiuc1:E.16,
coe-ai-convention:article-9,
nist-rmf:explainable-interpretable,
oecd:principle-1.3,
eu-ai-act:article-13 ;
skos:definition "The risk that stakeholders cannot understand how an AI system works, what it does, or why it produces specific outputs. Lack of transparency undermines informed consent, impedes oversight, and erodes trust."@en ;
skos:exactMatch ibm-atlas:explainability-transparency,
iso-42001:A.8,
dpv-ai:TransparencyRisk ;
skos:inScheme eticas:scheme ;
skos:narrower eticas:transparency-communication,
eticas:transparency-explainability-group ;
skos:note "In the RAIA Guide, this category is assessed only at the Post-Processing stage."@en ;
skos:prefLabel "Transparency & Explainability"@en ;
skos:relatedMatch nist-600:information-integrity ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "post-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "governance & compliance" ;
eticas-ont:scope "ALL" .
nist-600:harmful-bias skos:prefLabel "Harmful Bias & Homogenization"@en,
"Harmful Bias & Homogenization (representational dimension)"@en,
"Harmful Bias & Homogenization (systemic dimension)"@en,
"§2.6 Harmful Bias and Homogenization"@en .
eticas:bias-fairness a skos:Concept ;
skos:altLabel "Algorithmic fairness"@en,
"Bias & Discrimination"@en,
"Fairness"@en ;
skos:broadMatch air-2024:L1-LegalRightsRelated,
oecd:principle-1.2 ;
skos:closeMatch mit:domain-1,
coe-ai-convention:article-10,
ibm-atlas:output-fairness-and-training-data,
nist-600:harmful-bias,
nist-rmf:fair,
tc260:3.1.1b-3.3.2a,
dpv-ai:AIBias,
eu-ai-act:article-10-5-annex-iii ;
skos:definition "The risk that an AI system produces outcomes that systematically advantage or disadvantage individuals or groups based on protected or sensitive attributes, leading to unequal treatment, reduced accuracy, or unjust impacts. This includes biases introduced through data, model design, or deployment context, and covers both measurable disparities and perceived unfairness in decision-making."@en ;
skos:inScheme eticas:scheme ;
skos:narrowMatch iso-42001:A.7.4 ;
skos:narrower eticas:bias-dynamic-systemic-bias,
eticas:bias-outcome-disparities,
eticas:bias-representational-harm ;
skos:prefLabel "Bias & Fairness"@en ;
skos:relatedMatch aiuc1:C.3-C.4-C.6 ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "in-processing",
"post-processing",
"pre-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "rights & ethics" ;
eticas-ont:scope "ALL" .
eticas:governance a skos:Concept ;
skos:altLabel "Accountability"@en,
"Governance & Accountability"@en ;
skos:closeMatch mit:subdomain-6.5,
aiuc1:E,
coe-ai-convention:article-8,
nist-rmf:accountable-transparent,
nist-rmf:govern-function,
oecd:principle-1.5,
dpv-ai:Governance,
eu-ai-act:article-17 ;
skos:definition "The risk that an AI system lacks adequate structures, policies, or accountability mechanisms to oversee its design, deployment, and use. Weak governance can lead to unclear responsibilities, poor documentation, limited auditability, and failure to align with legal, ethical, or organizational standards."@en ;
skos:exactMatch ibm-atlas:governance-non-technical,
iso-42001:A.2 ;
skos:inScheme eticas:scheme ;
skos:narrower eticas:governance-accountability,
eticas:governance-compliance,
eticas:governance-documentation ;
skos:prefLabel "Governance"@en ;
skos:relatedMatch nist-600:value-chain ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "in-processing",
"post-processing",
"pre-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "governance & compliance" ;
eticas-ont:scope "ALL" .
eticas:privacy-confidentiality a skos:Concept ;
skos:altLabel "Data Privacy"@en,
"Privacy"@en ;
skos:broadMatch air-2024:L2-Privacy,
oecd:principle-1.2,
dpv-ai:PersonalDataHandling ;
skos:closeMatch mit:subdomain-2.1,
coe-ai-convention:article-11,
ibm-atlas:input-output-privacy,
iso-42001:A.7.5,
nist-600:data-privacy,
nist-rmf:privacy-enhanced,
tc260:3.1.2a-3.1.2d,
eu-ai-act:article-10-5-recital-47 ;
skos:definition "The risk that an AI system collects, processes, or infers personal information in ways that infringe on individuals' rights to control their data (privacy), or that sensitive information is exposed, accessed, or shared without authorization (confidentiality). This includes risks from data leakage, re-identification, unauthorized use, or insufficient safeguards."@en ;
skos:exactMatch aiuc1:A ;
skos:inScheme eticas:scheme ;
skos:narrower eticas:privacy-collection-use,
eticas:privacy-data-protection,
eticas:privacy-model-level ;
skos:prefLabel "Privacy & Confidentiality"@en ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "in-processing",
"post-processing",
"pre-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "rights & ethics" ;
eticas-ont:scope "ALL" .
eticas:security-misuse a skos:Concept ;
skos:altLabel "Safety"@en,
"Safety, Security & Misuse"@en,
"Security"@en ;
skos:broadMatch coe-ai-convention:article-12,
oecd:principle-1.4,
dpv-ai:SecurityAttack ;
skos:closeMatch mit:domain-4,
mit:subdomain-2.2,
air-2024:L1-SystemOperational,
aiuc1:B,
ibm-atlas:security-misuse,
nist-600:information-security,
nist-rmf:secure-resilient,
tc260:3.2.2a,
eu-ai-act:article-15-5 ;
skos:definition "The risk that an AI system is exposed to AI-specific vulnerabilities, attacks, or misuse that compromise its integrity, availability, or confidentiality. This covers risks beyond traditional IT security, including adversarial inputs, prompt injection, model extraction, jailbreaking, and supply-chain risks specific to AI components. It is intended to complement, not replace, standard IT security assessments."@en ;
skos:inScheme eticas:scheme ;
skos:narrower eticas:security-ai-attacks,
eticas:security-harmful-misuse,
eticas:security-system ;
skos:prefLabel "Security & Misuse"@en ;
skos:topConceptOf eticas:scheme ;
eticas-ont:lifecycleStage "in-processing",
"post-processing",
"pre-processing" ;
eticas-ont:maturity "established" ;
eticas-ont:perspective "technical soundness" ;
eticas-ont:scope "ALL" .
eticas:scheme a skos:ConceptScheme ;
dcterms:description "A unified AI risk taxonomy for use across Eticas audit methodologies, assessment frameworks, and reporting outputs."@en ;
dcterms:language "en" ;
dcterms:license ;
dcterms:publisher "Eticas" ;
skos:hasTopConcept eticas:agentic-ai,
eticas:bias-fairness,
eticas:environmental-impact,
eticas:governance,
eticas:privacy-confidentiality,
eticas:reliability,
eticas:security-misuse,
eticas:transparency-explainability ;
skos:prefLabel "Eticas AI Risk Taxonomy"@en .