Skip to main content
close search
site logo
Dive Brief

Authorities pushing for secure AI development practices

The guidelines are part of a global effort to ensure AI is developed using security as a core component.

Published Nov. 29, 2023
David Jones's headshot
Reporter
CISA Director Jen Easterly
CISA Director Jen Easterly speaking at a forum hosted by the Center for Strategic and International Studies on Nov. 1, 2022.

Center for Strategic and International Studies

First published on

Cybersecurity Dive
This audio is auto-generated. Please let us know if you have feedback.

Dive Brief:

  • The Cybersecurity and Infrastructure Security Agency and the U.K. National Cyber Security Centre released joint guidance Sunday on how to ensure the rapidly growing business of artificial intelligence incorporates secure development practices. 
  • The agencies are emphasizing the use of secure by design practices, which would ensure AI is developed with security as a core element of any new applications or other technologies. The guidelines also emphasize the importance of security in operational practices and maintenance. 
  • The guidelines were developed alongside 21 other ministries and cybersecurity agencies around the world, including all members of the Group of Seven industrial economies.

Dive Insight:

The AI guidance is part of a larger effort to create security guardrails around the rapid evolution of AI technology. 

The Biden administration has taken a number of steps to make sure cybersecurity is a priority for key stakeholders amid rapidly evolving technologies based on AI. 

President Joe Biden issued an Executive Order in October designed to create safeguards around the use of AI. CISA earlier this month unveiled a Roadmap for Artificial Intelligence, part of a larger plan to prevent the malicious use of AI and to ensure the technology is used to enhance cybersecurity. 

“We are at an inflection point in the development of artificial intelligence, which may well be the most consequential technology of our time,” Department of Homeland Security Secretary Alejandro Mayorkas said in a statement. “Cybersecurity is key to building AI systems that are safe, secure and trustworthy.”

The guidelines are broken down into four key categories

  • Secure design, which incorporates risk and includes threat modeling.
  • Secure development, including supply chain security and asset and technical debt management.
  • Secure deployment, including the protection of infrastructure and developing incident management processes.
  • Secure operation and maintenance, which includes logging and monitoring as well as information sharing.

The release of the guidelines follows an AI Safety Summit hosted by U.K. officials earlier this month. 

“The guidelines for secure AI system development, jointly developed by CISA and NCSC, is a step towards framework harmonization and makes good on the executive order's commitment to engage with international allies and partners in developing a globally aligned framework for AI,” Alla Valente, senior analyst at Forrester, said via email.

Filed Under: IT Strategy, Security

Editors' picks

Company Announcements

View all | Post a press release
truCX Launches Groundbreaking Partner Portal, Empowering CX Consultants and Trusted Advisors w…
From truCX
October 30, 2024
Traceable Releases 2025 State of API Security Report: API Breaches Persist as Fraud, Bot Attac…
From Traceable AI
October 30, 2024
Cloudbeds unveils industry’s first ‘smart hospitality engine’, powered by causal and multimoda…
From Cloudbeds
October 23, 2024
DigiCert Welcomes Lakshmi Hanspal as New Chief Trust Officer
From DigiCert
October 24, 2024
Editors' picks
Latest in IT Strategy
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell