{"id":25596,"date":"2024-12-18T06:01:02","date_gmt":"2024-12-18T14:01:02","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2024\/12\/18\/news-19325\/"},"modified":"2024-12-18T06:01:02","modified_gmt":"2024-12-18T14:01:02","slug":"news-19325","status":"publish","type":"post","link":"https:\/\/www.palada.net\/index.php\/2024\/12\/18\/news-19325\/","title":{"rendered":"Agile Business, agile security: How AI and Zero Trust work together"},"content":{"rendered":"

Credit to Author: Mark Simos| Date: Mon, 16 Dec 2024 17:00:00 +0000<\/strong><\/p>\n

Traditional security approaches don\u2019t work for AI.<\/strong> Generative AI technology is already transforming our world and has immense positive potential for cybersecurity and business processes, but traditional security models and controls aren\u2019t enough to manage the security risks associated with this new technology.\u202f  <\/p>\n

We recently published a new whitepaper<\/a> that examines the security challenges and opportunities from generative AI, what security must do to adapt to manage risk related to it, how a Zero Trust approach is essential to effectively secure this AI technology (and underlying data), and how different roles across your organization must work together for effective AI security.  <\/p>\n

\n
\n
\n
\t\t\t\t\t\"\"\t\t\t\t<\/div>\n
\n
\n

AI security and Zero Trust<\/h2>\n
\n

Agile security for agile businesses.<\/p>\n<\/p><\/div>\n

\t\t\t\t\t\t\t \t\t\t\t\t\t\t\tRead the whitepaper<\/span> \t\t\t\t\t\t\t\t<\/span> \t\t\t\t\t\t\t<\/a> \t\t\t\t\t\t<\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<\/p><\/div>\n

Navigating AI\u2019s unique challenges\u202f <\/h2>\n

AI presents new types of problems that require different thinking and different solutions.<\/p>\n

Generative AI is dynamic<\/h3>\n

At the most fundamental level, generative AI is non-deterministic computing, which means that it doesn\u2019t provide the exact same output each time you run it. For example, asking an image generation model to \u201cdraw a picture of a kitten in a security guard uniform\u201d repeatedly is unlikely to generate the exact same picture twice (though they will all be similar). Static security controls assume that vulnerabilities (in the broader definition) and their exploitation so they will look exactly the same each time will not be particularly effective at detecting and blocking attacks on AI. You need controls made for AI.\u00a0<\/p>\n

Generative AI is data-centric<\/h3>\n

Generative AI is fundamentally a data analysis and data generation technology, making the security and governance of your data incredibly important to the security of your AI applications and the reliability and trustworthiness of their outputs.  <\/p>\n

You need to have an asset-centric and data-centric security approach that can handle dynamic changes to secure AI and the data it relies on. This means you need a Zero Trust approach to effectively secure AI<\/strong>.  <\/p>\n

Zero Trust<\/a> is simply modern security without the false assumption that a network security perimeter is enough to secure assets in it (including data). This drives a mindset shift that changes how you look at security strategy, architecture, controls, and more. Zero Trust focuses security protecting business assets inside and outside the classic network perimeter across the \u2018hybrid of everything\u2019 environments (including multiplatform, multicloud, on-premises, operational technology, Internet of Things, and more).\u00a0<\/p>\n

Cyberattackers are using generative AI against you<\/h3>\n

Another complication is that AI relies on vast amounts of data to train models, making your data a prime target for cyberattackers and elevating the importance of protecting your data. Cybercriminals are also using AI now to refine attack techniques and process the data they steal from organizations. Organizations must recognize that these threats are already happening and urgently adapt their security strategies to effectively protect their data, AI applications, business assets, and people.\u202f\u00a0<\/p>\n

By applying Zero Trust principles, organizations can reduce the risk related to AI while rapidly embracing the opportunities that this technology offers.<\/p>\n

Key strategies to help manage AI security risks\u202f <\/h2>\n

These strategies from the whitepaper illustrate how to manage the risks associated with AI. \u00a0<\/p>\n