When your CISO mentions “AI safety” within the subsequent board assembly, what precisely do they imply? Are they speaking about defending your AI techniques from assaults? Utilizing AI to catch hackers? Stopping staff from leaking information to an unapproved AI service? Guaranteeing your AI doesn’t produce dangerous outputs?
The reply is perhaps “the entire above”; and that’s exactly the issue.
AI turned deeply embedded in enterprise operations. Consequently, the intersection of “AI” and “safety” has turn out to be more and more advanced and complicated. The identical phrases are used to explain basically totally different domains with distinct goals, resulting in miscommunication that may derail safety methods, misallocate sources, and go away crucial gaps in safety. We want a shared understanding and shared language.
Jason Lish (Cisco’s Chief Data Safety Officer) and Larry Lidz (Cisco’s VP of Software program Safety) co-authored this paper with me to assist deal with this problem head-on. Collectively, we introduce a five-domain taxonomy designed to deliver readability to AI safety conversations throughout enterprise operations.
The Communication Problem
Take into account this state of affairs: your government workforce asks you to current the corporate’s “AI safety technique” on the subsequent board assembly. And not using a widespread framework, every stakeholder might stroll into that dialog with a really totally different interpretation of what’s being requested. Is the board asking about:
- Defending your AI fashions from adversarial assaults?
- Utilizing AI to boost your menace detection?
- Stopping information leakage to exterior AI providers?
- Offering guardrails for AI output security?
- Guaranteeing regulatory compliance for AI techniques?
- Defending towards AI-enabled or AI-generated cyber threats? This ambiguity results in very actual organizational issues, together with:
- Miscommunication in government and board discussions
- Misaligned vendor evaluations— evaluating apples to oranges
- Fragmented safety methods with harmful gaps
- Useful resource misallocation specializing in the improper goals
And not using a shared framework, organizations wrestle to precisely assess dangers, assign accountability, and implement complete, coherent AI safety methods.
The 5 Domains of AI Safety
We suggest a framework that organizes the AI-security panorama into 5 clear, deliberately distinct domains. Every addresses totally different considerations, includes totally different menace actors, requires totally different controls, and usually falls beneath totally different organizational possession. The domains are:
- Securing AI
- AI for Safety
- AI Governance
- AI Security
- Accountable AI
Every area addresses a definite class of dangerous and is designed for use along side the others to create a complete AI technique.
These 5 domains don’t exist in isolation; they reinforce and depend upon each other and should be deliberately aligned. Study extra about every area within the paperwhich is meant as a place to begin for trade dialogue, not a prescriptive guidelines. Organizations are inspired to adapt and lengthen the taxonomy to their particular contexts whereas preserving the core distinctions between domains.
Framework Alignment
Simply because the NIST Cybersecurity Framework offers a standard language to speak concerning the domains of cybersecurity whereas not eradicating the necessity for detailed cybersecurity framework similar to NIST SP 800-53 and ISO 27001, this taxonomy will not be meant to work in isolation of extra detailed frameworks, however slightly to offer widespread vocabulary throughout trade.
As such, the paper builds on Cisco’s Built-in AI Safety and Security Framework lately launched by my colleague Amy Chang. It additionally aligns with established trade frameworks, such because the Coalition for Safe AI (CoSAI) Threat Map, MITRE ATLASand others.
The intersection of AI and safety will not be a single downside to resolve, however a constellation of distinct threat domains; every requiring totally different experience, controls, and organizational possession. By aligning with these domains with organizational context, organizations can:
- Talk exactly about AI safety considerations with out ambiguity
- Assess threat comprehensively throughout all related domains
- Assign accountability clearly to the correct groups
- Make investments strategically slightly than reactively
