Appendix B. Sample Ownership Matrix#
The key-release authority administers reference values, attestation policy, and model-key release policy. The role is held by the model provider, enterprise security team, platform operator, or managed CVM provider and is named in the ownership matrix for the deployment.
Table 12: Sample Ownership Matrix
Activity |
Accountable |
Responsible |
Consulted |
|---|---|---|---|
Validated configuration profile |
OEM or integrator |
Platform operator |
Model provider, enterprise data owner, CVM platform provider, NVIDIA |
Hardware, firmware, and GPU CC enablement |
OEM or integrator |
Platform operator |
NVIDIA, CVM platform provider |
Host OS, CVM launch stack, and guest-image deployment |
Platform operator |
Platform operator or OEM/integrator |
CVM platform provider, NVIDIA, key-release authority |
Guest image, model artifact encryption, and measurements |
Model provider |
Model provider or ISV |
Platform operator, CVM platform provider, key-release authority |
Key-release policy and reference values |
Model provider or named key-release authority |
Key-release authority |
Enterprise data owner, platform operator, CVM platform provider |
Inference gateway, auth, and logging/monitoring controls |
Enterprise data owner |
ISV or platform operator |
Model provider, security team |
Failure-mode runbook and support escalation |
Platform operator |
OEM or integrator |
Model provider, CVM platform provider, NVIDIA, key-release authority |
Firmware, driver, launch-stack, guest-image, and policy lifecycle |
Platform operator |
Platform operator or OEM/integrator |
Model provider, CVM platform provider, NVIDIA, key-release authority |