# Ayliea Docs

## Docs

- [Authentication](https://docs.ayliea.com/api-reference/authentication.md): Create and manage API keys to authenticate requests to the Ayliea REST API.
- [Discovery](https://docs.ayliea.com/api-reference/endpoints/discovery.md): Retrieve the latest AI platform discovery scan results and detected platforms.
- [Recommendations](https://docs.ayliea.com/api-reference/endpoints/recommendations.md): Retrieve prioritized remediation recommendations for your organization.
- [Scores](https://docs.ayliea.com/api-reference/endpoints/scores.md): Retrieve the latest completed assessment scores per framework for your organization.
- [Errors](https://docs.ayliea.com/api-reference/errors.md): HTTP status codes, error response format, and how to handle API errors.
- [API overview](https://docs.ayliea.com/api-reference/overview.md): Integrate Ayliea security posture data into your existing tools and workflows with the REST API.
- [Pagination](https://docs.ayliea.com/api-reference/pagination.md): Use limit and offset parameters to page through large result sets.
- [Rate limiting](https://docs.ayliea.com/api-reference/rate-limiting.md): Understand API rate limits, response headers, and how to handle throttled requests.
- [2026 Changelog](https://docs.ayliea.com/changelog/2026.md): All product updates and new features shipped in 2026.
- [AI Agent Security](https://docs.ayliea.com/frameworks/ai-agent-security.md): Controls for AI agents acting with delegated authority — least-privilege tool grants, blast-radius limits, prompt-injection defense, and full audit trails.
- [AI Security Assessment (AISS)](https://docs.ayliea.com/frameworks/ai-security.md): Score your AI surface against the open Ayliea AI Security Standard — 10 control domains, 56 sub-controls, 9 framework crosswalks, published under CC-BY-4.0.
- [CIS Controls v8.1](https://docs.ayliea.com/frameworks/cis-v8.md): A prioritized set of 18 security controls published by the Center for Internet Security, designed to give organizations a practical baseline for cyber defense.
- [HIPAA Security Rule](https://docs.ayliea.com/frameworks/hipaa.md): Assessment covering the HIPAA Security Rule requirements for protecting electronic protected health information, required for healthcare organizations and their business associates.
- [ISO/IEC 27001:2022](https://docs.ayliea.com/frameworks/iso-27001.md): The international standard for information security management systems (ISMS), widely required for enterprise vendor assessments and international business.
- [ISO/IEC 42001](https://docs.ayliea.com/frameworks/iso-42001.md): The international AI management system standard — governance, risk, lifecycle, and operations for organizations deploying AI responsibly.
- [NIST SP 800-53 Rev 5](https://docs.ayliea.com/frameworks/nist-800-53.md): The most comprehensive federal security control catalog, required for US federal agencies and widely adopted by federal contractors and regulated industries.
- [NIST AI RMF](https://docs.ayliea.com/frameworks/nist-ai-rmf.md): NIST's foundational risk-management framework for AI — Govern, Map, Measure, Manage — adopted across U.S. federal AI programs and increasingly across industry.
- [NIST AI 600-1 — Generative AI Profile](https://docs.ayliea.com/frameworks/nist-ai-rmf-gai-profile.md): NIST's Generative AI Profile addressing 12 GAI-specific risks layered on the AI RMF core — confabulation, CBRN risks, data privacy, value chain, and more.
- [NIST Cybersecurity Framework 2.0](https://docs.ayliea.com/frameworks/nist-csf.md): A risk-based framework published by NIST that organizes security capabilities into six core functions, suitable for organizations of any size or industry.
- [Compliance Frameworks](https://docs.ayliea.com/frameworks/overview.md): Assess your security and AI governance posture across 13 active frameworks — from CIS Controls and NIST 800-53 to NIST AI RMF and OWASP LLM Top 10.
- [OWASP LLM Top 10](https://docs.ayliea.com/frameworks/owasp-llm-top-10.md): The community-standard catalog of LLM application security risks — prompt injection, sensitive information disclosure, training data poisoning, and more.
- [PCI DSS v4.0](https://docs.ayliea.com/frameworks/pci-dss.md): Assessment against the Payment Card Industry Data Security Standard, required for any organization that processes, stores, or transmits payment card data.
- [SOC 2 Type II Security TSC](https://docs.ayliea.com/frameworks/soc-2.md): Assessment against the AICPA Trust Service Criteria for security, the baseline requirement for SaaS companies and cloud providers serving enterprise customers.
- [Creating Your Account](https://docs.ayliea.com/getting-started/creating-account.md): Sign up for Ayliea and set up your organization profile
- [Quickstart](https://docs.ayliea.com/getting-started/quickstart.md): Get up and running with Ayliea in 5 minutes
- [Your First Assessment](https://docs.ayliea.com/getting-started/your-first-assessment.md): Walk through selecting a framework and completing your first security assessment
- [Incident Tracking](https://docs.ayliea.com/governance/incidents.md): Report, investigate, and resolve AI-related incidents
- [AI Governance](https://docs.ayliea.com/governance/overview.md): Manage AI risk across your organization with a unified governance module
- [AI System Registry](https://docs.ayliea.com/governance/registry.md): Catalog and track your organization's AI deployments
- [Regulatory Timeline](https://docs.ayliea.com/governance/regulatory.md): Track AI regulation deadlines and compliance status
- [Risk Classification](https://docs.ayliea.com/governance/risk-classification.md): Classify AI systems against EU AI Act and NIST AI RMF frameworks
- [Vendor Assessments](https://docs.ayliea.com/governance/vendor-assessments.md): Assess your AI vendors' security posture with structured questionnaires
- [AWS CloudTrail Integration](https://docs.ayliea.com/integrations/aws-cloudtrail.md): Discover AI model usage across your AWS environment by connecting CloudTrail to Ayliea.
- [Discovery Integrations](https://docs.ayliea.com/integrations/cloud-discovery.md): How Ayliea discovers AI usage through network traffic analysis and cloud provider integrations.
- [GCP Cloud Logging Integration](https://docs.ayliea.com/integrations/gcp-cloud-logging.md): Discover AI model usage across your Google Cloud environment by connecting Cloud Logging to Ayliea.
- [Network Collector](https://docs.ayliea.com/integrations/network-collector.md): Deploy the Ayliea Collector to discover AI platform usage through DNS and TLS traffic analysis.
- [Introduction](https://docs.ayliea.com/introduction.md): Ayliea — the AI security platform built around the open AISS standard (CC-BY-4.0). Score your AI surface against 12 compliance frameworks with audit-grade transparency.
- [Assessments](https://docs.ayliea.com/product/assessments.md): How to start, resume, and complete security assessments
- [Dashboard](https://docs.ayliea.com/product/dashboard.md): Understanding your security posture dashboard
- [Organizations](https://docs.ayliea.com/product/organizations.md): Manage multi-seat access, invite team members, assign roles, and collaborate on assessments and remediation within your Ayliea organization.
- [Partner Tier](https://docs.ayliea.com/product/partner-tier.md): Operate Ayliea workspaces for many client organizations from one account — with per-client branding, partner-attributed audit trails, and centralized billing. Built for vCISOs, MSSPs, and security consultancies.
- [Recommendations](https://docs.ayliea.com/product/recommendations.md): How Ayliea generates, prioritizes, and tracks AI-powered remediation recommendations from your assessment results.
- [Reports](https://docs.ayliea.com/product/reports.md): Generate PDF posture reports combining your assessment results and network discovery data for auditors, executives, and internal reviews.
- [Scoring](https://docs.ayliea.com/product/scoring.md): How Ayliea calculates your security posture score

## Optional

- [Blog](https://ayliea.com/blog)