---
type: "AIHallucinationFinding"
title: "Is the 2016 CPMI-IOSCO Cyber Resilience Guidance still the operative international standard for FMI…"
citation_id: "RLB-H-INT-BIS-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-Q022-Sonnet46"
finding_uid: "INT-BIS-CPMI-INT-001-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-v1-022--sonnet-46-websearch"
question_uid: "INT-BIS-CPMI-INT-001-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-v1-022"
regulation_id: "INT-BIS-CPMI-INT-001-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016"
regulation_slug: "CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016"
regulation_title: "Guidance on Cyber Resilience for Financial Market Infrastructures (CPMI-IOSCO 2016)"
regulator_short_code: "BIS-CPMI"
regulatory_body_id: "BIS-CPMI-INT-001"
jurisdiction_code: "INT"
j_level: "J1"
ai_subject: "claude-sonnet-4-6"
ai_subject_display: "Claude Sonnet 4.6 (web search on)"
ai_subject_version: "sonnet-46-websearch"
response_failure_mode: "outdated"
substrate_document_name: "p_19_GUIDELINE_d232__May_2026____2016_guidance_describe_TRM-Guidelines-18-January-2021.pdf"
substrate_document_path: "https://reglegbrief.com/substrate/INT/BIS-CPMI/CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016/_raw_manual_substrate/p_19_GUIDELINE_d232__May_2026____2016_guidance_describe_TRM-Guidelines-18-January-2021.pdf"
substrate_section_anchor: "d232 (May 2026) — 2016 guidance described as current when under active revision"
citation_issue_types: ["Contradictory"]
audiences: ["ai_labs"]
published_at: "2026-06-07T07:58:33.988143+00:00"
substrate_version: 1
methodology_version: "2.3"
license: "CC-BY-4.0"
resource: "https://reglegbrief.com/regulators/j1/int/bis-cpmi/CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016/ai-labs/finding/INT-BIS-CPMI-INT-001-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-v1-022--sonnet-46-websearch/"
tags: ["ai-hallucination", "outdated", "bis-cpmi", "cpmi-iosco-cyber-resilience-fmi-2016", "int"]
timestamp: "2026-06-16T00:00:00+00:00"
---

# AI Hallucination Finding: Is the 2016 CPMI-IOSCO Cyber Resilience Guidance still the operative international standard for FMI…

- **Citation ID.** `RLB-H-INT-BIS-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-Q022-Sonnet46`
- **Finding UID.** `INT-BIS-CPMI-INT-001-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-v1-022--sonnet-46-websearch`
- **Regulation.** [`CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016`](/okf/regulations/CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016.md) — Guidance on Cyber Resilience for Financial Market Infrastructures (CPMI-IOSCO 2016)
- **Regulator.** [`BIS-CPMI-INT-001`](/okf/bodies/BIS-CPMI-INT-001.md) — Bank for International Settlements — Committee on Payments and Market Infrastructures (CPMI)
- **AI subject.** Claude Sonnet 4.6 (web search on)
- **Failure mode.** [`outdated`](/okf/taxonomy/failure-modes.md)
- **Published.** 2026-06-07T07:58:33.988143+00:00

## Question put to the AI subject

Is the 2016 CPMI-IOSCO Cyber Resilience Guidance still the operative international standard for FMI cyber resilience, or has CPMI-IOSCO commenced a formal revision process?

## AI subject's verbatim answer

No formal revision or replacement of d146/FR07/2016 has been published by CPMI-IOSCO... A second Level 3 monitoring report (d228) has been referenced, suggesting ongoing monitoring rather than a revision cycle.

## Verbatim regulator text contradicting the answer

> BIS press release of 6 May 2026: CPMI-IOSCO published a consultative document (the May 2026 CPMI-IOSCO consultative document) for public comment on updated guidance. The 2016 guidance is under active revision as of May 2026.

_Source:_ [p_19_GUIDELINE_d232__May_2026____2016_guidance_describe_TRM-Guidelines-18-January-2021.pdf](https://reglegbrief.com/substrate/INT/BIS-CPMI/CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016/_raw_manual_substrate/p_19_GUIDELINE_d232__May_2026____2016_guidance_describe_TRM-Guidelines-18-January-2021.pdf)
_Section anchor:_ d232 (May 2026) — 2016 guidance described as current when under active revision

## Failure mode

**`outdated`** — Outdated — the AI cited or relied on a rule that has been superseded, amended, or rescinded by the regulator.

## Citation-issue types

- **Contradictory** — <https://www.bis.org/cpmi/publ/d146.htm>
- **Contradictory** — <https://www.bis.org/cpmi/publ/d212.htm>
- **Contradictory** — <https://www.bankofcanada.ca/wp-content/uploads/2021/10/expectations-cyber-resilience-financial-market-infrastructures.pdf>

## Related concepts

- Regulation: [CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016](/okf/regulations/CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016.md)
- Regulator: [BIS-CPMI-INT-001](/okf/bodies/BIS-CPMI-INT-001.md)
- Failure-mode taxonomy: [outdated](/okf/taxonomy/failure-modes.md)
- Methodology: [v2.3](/okf/methodology.md)
- Editorial standards: [right of reply](/okf/editorial-standards.md)

## Reproduction

Citation ID: `RLB-H-INT-BIS-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-Q022-Sonnet46`

Resource URL (HTML view of this finding):

<https://reglegbrief.com/regulators/j1/int/bis-cpmi/CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016/ai-labs/finding/INT-BIS-CPMI-INT-001-CPMI-IOSCO-CYBER-RESILIENCE-FMI-2016-v1-022--sonnet-46-websearch/>

This finding is reproducible against the substrate document linked above, using the same AI subject, the same methodology version, and the verbatim question text.