Tracebit

Data gathering in process

Cloud canary resources and detection platform deploying realistic decoy infrastructure to detect attackers in cloud environments.

HQUK

Est2023

Size1-10

EU AI ActMinimal Risk

tracebit.com

Score

27.6 / 100

Evidence

2 items

Early-stage safety posture - basic practices exist but significant gaps remain.

Weaknesses:Governance Maturity, Technical Safety, Risk Assessment, Regulatory Readiness, External Engagement

Focus Areas

cloud securitythreat detectiondeception technologyintrusion detection

Safety Profile

Security Assessment

Security-relevant indicators for vendor evaluation

Security Posture

TS-01dim: 42

Red Teaming & Pre-deployment Testing

Adversarial testing before deployment

TS-05dim: 42

Robustness & Adversarial Resilience

Resistance to adversarial attacks

RA-01dim: 35

Sector-Specific Risk Assessment

Risk analysis for deployment context

RA-03dim: 35

Dual-Use & Misuse Risk

Dangerous capability awareness

RA-07dim: 35

Incident History & Track Record

Past incidents and response quality

EE-04dim: 15

Vulnerability Disclosure Program

Bug bounty or CVE reporting process

Incident History

Tracebit incident records sourced from AIAAIC Repository and public reporting.

Integration: AIAAIC, OECD AI Incidents Monitor

Third-Party Audits

External audit reports, SOC 2 attestations, and ISO certifications verified where published.

Sources: Company filings, registry lookups

CVE & Disclosures

Known vulnerabilities and security advisories from NVD, GitHub Security Advisories, and vendor pages.

Sources: NVD, GHSA, vendor disclosure pages

Dimension Breakdown

Governance Maturitymedium

Published policies, corporate structure, safety mandate, whistleblowing, executive commitment.

Technical Safetymedium

Benchmarks, adversarial robustness, fine-tuning safety, watermarking, model cards, research output.

1 evidence items

TS-04

Risk Assessmentlow

Dangerous capability evaluations, thresholds, external testing, bug bounty, halt conditions.

1 evidence items

RA-01

Regulatory Readinesslow

ISO 42001, EU AI Act compliance, GPAI obligations, international commitments, incident reporting.

External Engagementmedium

Survey participation, research support, transparency, behavior specs, open-source contributions.

Social Impact & Safety Profile

Emerging

Tracebit provides cloud security and threat detection solutions. Their work is AI-adjacent with no published social impact policies specific to AI systems or their societal effects.

cloud securitythreat detection

Need a detailed report for Tracebit?

Subscribe to express interest in indicator-level evidence, peer benchmarking, and regulatory gap analysis - or reach out to request a full company overview brief.

Subscribe for Updates Request a Brief

Scoring methodology v0.1 - View full rubric