ChatGPT vs Claude — AI Pair Programming for Makers, May 2026
swiftwand swiftwand.ai
AIF-C01 Domains 4 and 5 Complete Guide: Responsible AI, Security and Governance (28%)
swiftwand
Domains 4 and 5 are the governance side of AIF-C01. Domain 4, Guidelines for Responsible AI, and Domain 5, Security, Compliance, and Governance for AI Solutions, are each weighted 14% — 28% combined, the same total as Domain 3. If you already hold CLF-C02, much of Domain 5 (IAM, encryption, CloudTrail) is familiar, which makes these two domains a reliable place to bank points.
目次
- The shape of Domains 4 and 5
- The six characteristics of responsible AI
- Detecting and monitoring bias — Clarify, Model Monitor, A2I
- Dataset quality — bias is born in the data
- Legal risk and responsible model selection
- Transparency and explainability — Model Cards and trade-offs
- Securing AI systems — IAM, encryption, Macie, PrivateLink
- Compliance standards and the governance model
- AWS services that support governance — a six-piece set
- Domains 4 and 5 for makers and small teams — governance is not just for enterprises
- Summary — the scoring strategy for Domains 4 and 5
- References
忍者AdMax
The shape of Domains 4 and 5
Domain 4 asks you to explain responsible-AI practices and recognize the trade-offs and legal risks of AI systems. Domain 5 asks you to secure AI systems and apply compliance and governance to them. Together they test whether you can deploy AI safely, fairly, and within the rules.
The six characteristics of responsible AI
- Fairness — avoid discriminatory outcomes across groups.
- Explainability — be able to explain how a decision was reached.
- Robustness — perform reliably under varied and adversarial conditions.
- Privacy and security — protect the data the system uses.
- Governance — define policies, ownership, and oversight.
- Transparency — disclose capabilities, limits, and appropriate use.
Detecting and monitoring bias — Clarify, Model Monitor, A2I
Three services map to bias and oversight. SageMaker Clarify detects bias in data and models and explains feature importance. SageMaker Model Monitor watches deployed models for drift and degradation. Amazon Augmented AI (A2I) routes low-confidence predictions to human reviewers. Match the service to the task: Clarify for detection and explanation, Model Monitor for ongoing drift, A2I for human-in-the-loop review.
Dataset quality — bias is born in the data
Most model bias originates in the training data: under-representation, historical skew, or mislabeling. The responsible-AI answer is usually upstream — fix the dataset, balance the classes, and document provenance — rather than patching the model after the fact.
Legal risk and responsible model selection
Legal exposure includes intellectual-property concerns in generated content, privacy obligations for personal data, and licensing terms on models and datasets. Responsible selection means checking a model’s license, training-data disclosures, and intended-use limits before adopting it.
Transparency and explainability — Model Cards and trade-offs
Amazon SageMaker Model Cards document a model’s purpose, training data, performance, and limitations — the practical artifact of transparency. Be ready for the central trade-off: the most accurate models (deep neural networks) are often the least interpretable, while simpler models are easier to explain but may be less accurate. The right balance depends on how high the stakes of the decision are.
Securing AI systems — IAM, encryption, Macie, PrivateLink
- IAM — least-privilege access to models, data, and endpoints.
- Encryption — KMS-managed keys for data at rest and TLS in transit.
- Amazon Macie — discovers and protects sensitive data such as PII in S3.
- AWS PrivateLink — keeps traffic to services like Bedrock on the private AWS network.
Compliance standards and the governance model
The exam expects awareness of compliance frameworks (such as GDPR, HIPAA, SOC, and ISO) and of AWS shared responsibility applied to AI: AWS secures the infrastructure, you secure your data, access, and use of the models. Governance is the policy layer that ties responsible-AI principles to concrete controls and accountability.
AWS services that support governance — a six-piece set
| Service | Governance role |
|---|---|
| AWS CloudTrail | Audit log of API activity |
| AWS Config | Tracks resource configuration and compliance |
| Amazon CloudWatch | Metrics, logs, and alarms |
| AWS IAM | Identity and access control |
| AWS Audit Manager | Continuous compliance evidence |
| Bedrock Guardrails | Content filtering and safety policies for generative AI |
Domains 4 and 5 for makers and small teams — governance is not just for enterprises
A solo maker shipping an AI feature still needs the basics: do not feed customer PII into a model that trains on it, restrict who can call your endpoints, keep an audit trail, and be transparent with users about what the AI does and where it can fail. Treated as lightweight habits rather than heavy process, these controls protect a small business as much as a large one.
Summary — the scoring strategy for Domains 4 and 5
The two governance domains (28% combined) reward clear mappings: the six responsible-AI characteristics, Clarify/Model Monitor/A2I for bias and oversight, the security four (IAM, encryption, Macie, PrivateLink), and the governance service set. For CLF-C02 holders, this is efficient, high-confidence ground to secure.
References
- AIF-C01 Exam Guide — Domain 4: Guidelines for Responsible AI
- AIF-C01 Exam Guide — Domain 5: Security, Compliance, and Governance
ブラウザだけでできる本格的なAI画像生成【ConoHa AI Canvas】
ABOUT ME
AIを使って、毎日の生活をもっと快適にするアイデアや将来像を発信しています。
初心者にもわかりやすく、すぐに取り入れられる実践的な情報をお届けします。 Sharing ideas and visions for a better daily life with AI.
Practical tips that anyone can start using right away.
