Security News > 2023 > April > Security Risks of AI
As a first step, our report recommends the inclusion of AI security concerns within the cybersecurity programs of developers and users.
Many AI products are deployed without institutions fully understanding the security risks they pose.
Organizations building or deploying AI models should incorporate AI concerns into their cybersecurity functions using a risk management framework that addresses security throughout the AI system life cycle.
It will be necessary to grapple with the ways in which AI vulnerabilities are different from traditional cybersecurity bugs, but the starting point is to assume that AI security is a subset of cybersecurity and to begin applying vulnerability management practices to AI-based features.
Assessing AI vulnerabilities requires technical expertise that is distinct from the skill set of cybersecurity practitioners, and organizations should be cautioned against repurposing existing security teams without additional training and resources.
We also note that AI security researchers and practitioners should consult with those addressing AI bias.
News URL
https://www.schneier.com/blog/archives/2023/04/security-risks-of-ai.html
Related news
- AI and Security - A New Puzzle to Figure Out (source)
- Google Chrome's AI-powered security feature rolls out to everyone (source)
- CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks (source)
- Innovation vs. security: Managing shadow AI risks (source)
- AI threats and workforce shortages put pressure on security leaders (source)
- How AI and automation are reshaping security leadership (source)
- Enterprises walk a tightrope between AI innovation and security (source)
- AI agents swarm Microsoft Security Copilot (source)
- How AI agents could undermine computing infrastructure security (source)
- AI-Powered SaaS Security: Keeping Pace with an Expanding Attack Surface (source)