Gulf News

المملكة: 42 guidelines to protect artificial intelligence systems from cyberattacks


I introduced Artificial Intelligence.

Best Practices

It emphasized the importance of applying minimum best practices to reduce the risks associated with generative and agentive artificial intelligence.

The new guidelines consist of four basic components, from which fifteen sub-components are branched, and in all they include forty-two regulatory guidelines. These components cover Cybersecurity risks, enhancing protection, and systems resilience, in addition to managing risks related to external parties.

Continuous protection

The authority indicated that the rapid development in artificial intelligence technologies has produced vulnerabilities and unconventional threats that require careful handling and continuous protection.

The observed threats included evasion attacks, data poisoning, and command injection, as well as leaking training data or sensitive information for the model.

Security requirements Cyber

The regulatory document stressed the need to integrate cybersecurity requirements into all stages of the life cycle of artificial intelligence systems, starting from design and development to operation and ending with safe disposal.

The guidelines require isolating networks of internal components of artificial intelligence, conducting periodic assessments, and continuous penetration tests to detect abnormal behaviors.

Security Survey

The authority drew attention to the importance of conducting a security survey for workers with sensitive powers in artificial intelligence environments, and including protection requirements in programs Awareness.

It also called for dealing with data retrieved from external tools as unreliable, and applying verification and cleansing processes for data before entering it to prevent the execution of malicious commands.

These guidelines come based on the competencies of the National Cybersecurity Authority as the national authority in cybersecurity affairs, in accordance with its organization issued by the noble royal order. The Authority works to develop policies and governance standards to support resilience in the face of increasing cyber attacks.

Related Articles

Back to top button