Logo

Home | Posts | Papers | Talks | About

Angles of Attack: Engineering Mission-Critical AI Systems

Video | Slides

Threat Modeling in the Age of AI - TMC Global Meetup November 2024

Slides

Threat Modeling in the Age of AI - Threat Modeling Connect Global Meetup November 2024

Data is no longer the “new oil”–it’s the new attack vector. How can security professionals model these new threats, as AI becomes increasingly embedded in daily life? This session from the Threat Modeling Connect Global Meetup in November 2024 expands on the OWASP Global AppSec 2024 AI threat modeling presentation, offering a deeper technical dive into threat modeling for AIML systems. The session includes examples of how modeling threats to AI systems requires new paradigms of thought, exploring the centrality of data to AI security via three methodologies: the CIA triad, AIML Development/Deployment phases, and Game Theoretic.

Threat Modeling in the Age of AI - OWASP Global AppSec 2024

This session equips participants with the methodology and knowledge to proactively manage risks and improve the security posture of their AI systems. Threat modeling is a systematic approach to identifying potential threats and vulnerabilities in a system. This session delves into threat modeling for AI systems, and how it differs from traditional applications. Participants learn what threat modeling is & isn’t, including an overview of terms & methodologies, and then dive into how threat modeling for AI actually works. The presenter is part of the OWASP AI Exchange team of experts who developed the OWASP AI Exchange threat framework, and has extensive experience with threat modeling of mission-critical AI. With that knowledge and experience participants are guided in applying the threat framework to various types of AI architectures, to cover AI attacks such as data poisoning and indirect prompt injection.

🕷