In the wake of ChatGPT, every company is trying to figure out its AI strategy, work that quickly raises the question: What about security?
Some may feel overwhelmed at the prospect of securing new technology. The good news is policies and practices in place today provide excellent starting points.
Indeed, the way forward lies in extending the existing foundations of enterprise and cloud security. It's a journey that can be summarized in six steps:
Expand analysis of the threats
Broaden response mechanisms
Secure the data supply chain
Use AI to scale efforts
Be transparent
Create continuous improvements
AI security builds on protections enterprises already rely on. Take in the Expanded Horizon The first step is to get familiar with the new landscape.
Security now needs to cover the AI development lifecycle. This includes new attack surfaces like training data, models and the people and processes using them.
Extrapolate from the known types of threats to identify and anticipate emerging ones. For instance, an attacker might try to alter the behavior of an AI model by accessing data while it's training the model on a cloud service.
The security researchers and red teams who probed for vulnerabilities in the past will be great resources again. They'll need access to AI systems and data to identify and act on new threats as well as help building solid working relationships with data science staff.
Broaden Defenses Once a picture of the threats is clear, define ways to defend against them.
Monitor AI model performance closely. Assume it will drift, opening new attack surfaces, just as it can be assumed that traditional security defenses will be breached.
Also build on the PSIRT (product security incident response team) practices that should already be in place.
For example, NVIDIA released product security policies that encompass its AI portfolio. Several organizations - including the Open Worldwide Application Security Project - have released AI-tailored implementations of key security elements such as the common vulnerability enumeration method used to identify traditional IT threats.
Adapt and apply to AI models and workflows traditional defenses like:
Keeping network control and data planes separate
Removing any unsafe or personal identifying data
Using zero-trust security and authentication
Defining appropriate event logs, alerts and tests
Setting flow controls where appropriate
Extend Existing Safeguards Protect the datasets used to train AI models. They're valuable and vulnerable.
Once again, enterprises can leverage existing practices. Create secure data supply chains, similar to those created to secure channels for software. It's important to establish access control for training data, just like other internal data is secured.
Some gaps may need to be filled. Today, security specialists know how to use hash files of applications to ensure no one has altered their code. That process may be challenging to scale for petabyte-sized datasets used for AI training.
The good news is researchers see the need, and they're working on tools to address it.
Scale Security With AI AI is not only a new attack area to defend, it's also a new and powerful security tool.
Machine learning models can detect subtle changes no human can see in mountains of network traffic. That makes AI an ideal technology to prevent many of the most widely used attacks, like identity theft, phishing, malware and ransomware.
NVIDIA Morpheus, a cybersecurity framework, can build AI applications that create, read and update digital fingerprints that scan for many kinds of threats. In addition, generative AI and Morpheus can enable new ways to detect spear phishing attempts.
Machine learning is a powerful tool that spans many use cases in security. Security Loves Clarity Transparency is a key component of any security strategy. Let customers know about any new AI security policies and practices that have been put in place.
For example, NVIDIA publishes details about the AI models in NGC, its hub for accelerated software. Called model cards, they act like truth-in-lending statements, describing AIs, the data they were trained on and any constraints for their use.
NVIDIA uses an expanded set of fields in its model cards, so users are clear about the history and limits of a neural network before putting it into production. That helps advance security, establish trust and ensure models are robust.
Define Journeys, Not Destinations These six steps are just the start of a journey. Processes and policies like these need to evolve.
The emerging practice of confidential computing, for instance, is extending security across cloud services where AI models are often trained and run in production.
The industry is already beginning to see basic versions of code scanners for AI models. They're a sign of what's to come. Teams need to keep an eye on the horizon for best practices and tools as they arrive.
Along the way, the community needs to share what it learns. An excellent example of that occurred at the recent Generative Red Team Challenge.
In the end, it's about creating a collective defense. We're all making this journey to AI security together, one step at a time.
Most recent headlines
04/08/2024
Dalet, a leading technology and service provider for media-rich organizations, is excited to announce Santiago Solanas as its new Chief Executive Officer (CEO)....
03/06/2024
Dalet, a leading technology and service provider for media-rich organizations, a...
01/06/2024
Busy this week catching up from the Memorial Day holiday? Our TV Tech weekly wrap-up of all our coverage of new products, services and deployments will get you ...
01/06/2024
Young Sherlock, with Guy Ritchie directing and executive producing, is a go at Prime Video. Hero Fiennes Tiffin plays Sherlock. Prime Video calls it the origin...
01/06/2024
The Los Angeles Sparks-Indiana Fever game on Friday featuring the top two WNBA draft picks, Caitlin Clark and Cameron Brink, was the most watched WNBA game on I...
01/06/2024
Lionsgate, which increased its majority stake in 3 Arts Entertainment in January, said it named Brian Weinstein co-CEO of 3 Arts....
01/06/2024
Netflix is launching four video games based on unscripted series this year. They...
01/06/2024
ABC, CBS, NBC and Fox affiliates switched from their regular programming to carry live coverage of the verdicts in the porn star hush-money trial of former Pres...
31/05/2024
A U.S. Marine fires an FIM-92 Stinger missile during a training exercise in Yuma...
31/05/2024
NEW YORK The global body that sets technical standards for digital advertising h...
31/05/2024
In a new analysis of what services might make up a good bundle and what services might benefit the most from bundling, Antenna has released new data that highli...
31/05/2024
Global SVOD revenues will increase by $116.6 billion by 2031, a growth rate of 13.3% per year over the next eight years, according to a new report from MIDiA Re...
31/05/2024
WASHINGTON, D.C. The FCC Media Bureau has announced that effective August 1, 2024 the Commission's TVStudy software will incorporate the most recent U.S. Ce...
31/05/2024
NBCUniversal has announced that its FAST channel TNBC will be rebranding to NBC Comedy Vault on June 1 and that the free streaming service will officially launc...
31/05/2024
PARIS Ateme has announced that the Indonesian public broadcaster TVRI is making the transition to 4K UHD OTT streaming using Ateme technologies....
31/05/2024
The proposal had received support from James Cameron, Andy Serkis, Paul Greengrass, Richard Curtis, and Jeremy Irons
By Matthew Corrigan
Published: May 31, 2...
31/05/2024
According to multiple reports, the new bid from Skydance offers a better deal to Paramounts Class B shareholders, who were said to be unhappy with the companys ...
31/05/2024
The awards recognise women and companies who are stand-out performers, innovators and leaders in the broadcast media technology industry
By Matthew Corrigan
...
31/05/2024
NEW YORK The global body that sets technical standards for digital advertising has expanded the reach of its measurement software development kit to include Sam...
31/05/2024
The rise of digital platforms is fundamentally changing the broadcast newsroom and its investment in technology according to Jon Roberts, director of technology...
31/05/2024
In a new analysis of what services might make up a good bundle and what services might benefit the most from bundling, Antenna has released new data that highli...
31/05/2024
WASHINGTON, D.C. Fifty state broadcasters associations, including the District of Columbia and the Commonwealth of Puerto Rico, have sent a letter to Congressio...
31/05/2024
EVS has announced the appointment of Richard Katz as senior vice president of operations for the North and Latin American (NALA) region. This appointment is par...
31/05/2024
CommScope has announced that it was selected by Casa Systems, Inc. as the highest to acquire Casa's cable business assets and that the two companies have en...
31/05/2024
Robert De Niro won't be receiving the Service to America Leadership Award from the NAB Leadership Foundation after all....
31/05/2024
Viant Technology said it formed an integration with Google Cloud's BigQuery data clean rooms...
31/05/2024
The CW said it will broadcast the 2024 Snoop Dogg Arizona Bowl presented by Gin & Juice by Dre and Snoop Last year, The CW aired the game when it was called Bar...
31/05/2024
Allen Media Group said it made a deal with Amazon's Fire TV Channel that will make content from several of Allen's outlet available via Fire TV and Echo...
31/05/2024
Robert De Niro, announced as the winner of the NAB's Leadership Foundation's Service to America Leadership Award on May 28, will not get the award. The ...
31/05/2024
Comcast Technology Solutions was selected by AccuWeather to create, manage and distribute linear and over-the-top video channels....
31/05/2024
Connected TV is becoming a bigger deal for consumers and advertisers, according to a new report from TVision....
31/05/2024
By Craig Anderton
Let's get right to what this sounds like. It's not quite feedback or tape reverse, it's well, listen to what it does in this blue...
31/05/2024
31 May 2024
VEON discloses April YTD trading update at its AGM Amsterdam, 31 May 2024 07:00 CEST -
VEON April YTD 2024 Highlights
Total revenue of USD 1,278 ...
31/05/2024
31 May 2024
VEON Announces Its New Board, Names Founder Augie Fabela as Chairman Amsterdam, 31 May 2024, 16.00 CET: VEON Ltd. (NASDAQ: VEON, Euronext Amsterdam...
31/05/2024
May 31st, 2024
TRIBECA FESTIVAL AND OPEN AI ANNOUNCE SORA SHORTS'
Five Commissioned Short Films Created Using Sora Debut at 2024 Tribeca Festival
New ...
31/05/2024
In-Venue Technology Wrap-Up: How 4K, IP, and More are Changing the Game Pres Gam...
31/05/2024
UEFA Champions League Final 2024: The host broadcast facts and figures for Real ...
31/05/2024
UEFA Europa Conference League Final 2024: Bringing the broadcast to global TV sc...
31/05/2024
Willow Offers Free 2024 ICC T20 Cricket World Cup Preview via DirecTV, Verizon, ...
31/05/2024
Women's College World Series: ESPN Brings Live Drone, Two-Point Cabled, and ...
31/05/2024
SVG College Summit Brings Video-Production Industry Together in Atlanta in the M...
31/05/2024
UEFA Champions League Final 2024: CBS Sports' UCL Today Studio Show Is Pitch...
31/05/2024
Back to All News
Master of the House' Unveils a Scandalous Tale of Power and Greed on July 18
Entertainment
31 May 2024
GlobalThailand
Link copied to ...
31/05/2024
Back to All News
JEEtu Bhaiya is Back: Kota Factory' Season 3 Arrives on Netflix June 20
Entertainment
31 May 2024
GlobalIndia
Link copied to clipboar...
31/05/2024
Facebook
Twitter
LinkedIn
With around 9,000 employees, Ground Transportation Systems is a global leader in Rail Signaling and Train Control Systems, Telec...
31/05/2024
RT 2FM is the home of music this summer, entertaining listeners across the day and night, with the best music, chat and interviews providing the soundtrack to ...
31/05/2024
After the 2008 financial crisis and increased risk-management regulations that f...
31/05/2024
RT Supporting the Arts: What's On this June
Watch our promo: RT Supporting the Arts | What's on YouTube
This June, RT is delighted to support Lim...
30/05/2024
When to Upgrade Software or Firmware This post is from our blog and news archive. The information may be out of date. Please contact us for further information ...
In the wake of ChatGPT, every company is trying to figure out its AI strategy, work that quickly raises the question: What about security?
