AI Security & Governance Certification

Course content
Create Account

Log in / Create account to save progress and earn badges

Module 0
Introduction to AI Governance Certification
1 Topic
Overview: Introduction to AI Governance Certification
Module 1
Introduction to AI and Generative AI
7 Topics | 1 Quiz
Overview: Introduction to AI and Generative AI
Discriminative AI and Generative AI
Significance of Artificial Intelligence
Generative AI and Its Value
Technology Underlying the Generative AI
Generative AI’s Need for Data
Significant Risks Associated with the AI
Quiz
Module 2
Introduction to AI Governance
5 Topics | 1 Quiz
Overview: Introduction to AI Governance
What Is AI Governance?
AI TRiSM
Challenges Posed by Unregulated or Uncontrolled AI
5-Step Path to AI Governance
Quiz
Module 3
AI Model Discovery
5 Topics | 1 Quiz
Overview AI Model Discovery
AI Models in Public Clouds, SaaS Applications, and Private Environments
Model Cards
Cataloging AI Models for Full Visibility
Trends in AI Model Discovery
Quiz
Module 4
AI Risk Assessment
13 Topics | 1 Quiz
Overview: AI Risk Assessment
Framing AI Risks
NIST AI RMF
EU AI Act
Defining AI Trustworthiness
Risk Management and the Lifecycle of AI
The Components of AI Risk Management Frameworks
AI Impact Assessments (AIIA)
AI Risk Assessment
AI Risk Assessment vs. AI Risk Management
AI Vendor Assessments
AI Readiness Assessments
Comparing Various Types of Assessments
Quiz
Module 5
Understanding Data and AI Relationships
3 Topics | 1 Quiz
Overview: Understanding Data and AI Relationships
What is Data + AI Mapping?
Unpacking Data and Processes Tied to AI
Quiz
Module 6
Controlling Data Inputs and Outputs
6 Topics | 1 Quiz
Overview: Controlling Data Inputs and Outputs
Safe Data Ingestion with Adherence to Entitlements
Attacks against Generative AI Systems – OWASP Top 10 for LLMs
Attacks Against Generative AI Systems – NIST Trustworthy & Responsible AI
Technical Measures to Mitigate Security Risks
Security Controls and LLM Firewalls
Quiz
Module 7
AI Regulatory Compliance
7 Topics | 1 Quiz
Overview: AI Regulatory Compliance
AI Regulatory Landscape
The Regulatory Response to AI
Application of Existing Laws
AI Regulatory Compliance: Key Obligations
AI Compliance Management
Significance of AI Regulatory Compliance
Quiz
Module 8
AI Governance Program & Management
5 Topics | 1 Quiz
Overview: AI Governance Program & Management
AI Governance Program and Management
Successful Implementation of the AI Governance Program
Building Blocks of an AI Governance Program
Translating AI Governance into Business Success
Quiz
Module 9
Recap: AI Governance Certification
1 Topic
AI Governance Certification Summary
Module 10
Certification Exam
1 Quiz
AI Governance Certification Exam
AI Security & Governance Certification
View course details →

Attacks against Generative AI Systems – OWASP Top 10 for LLMs

Mark Complete Enroll now to save progress and earn badges. Click to continue.
AI Security & Governance Certification Controlling Data Inputs and Outputs Attacks against Generative AI Systems – OWASP Top 10 for LLMs

Attacks against Generative AI Systems

Adversarial machine learning presents a unique set of challenges where attackers aim to exploit AI models through ingenious methods. With prompt injection, an attacker could bypass safeguards or exploit vulnerabilities in the model’s design, its training data, or the system it operates within, leading to unauthorized actions or disclosures. Data poisoning is another critical threat where malicious data is introduced to corrupt the model’s learning process, leading to flawed outputs or breaches of sensitive information.

The Open Worldwide Application Security Project (OWASP) identifies several critical issues necessitating robust Data+AI safeguards:

  • Prompt Injections: This issue involves malicious users injecting undesired commands or inputs into AI systems, potentially leading to unauthorized responses. 
  • Insecure Output Handling: Refers to the improper sanitization or handling of data generated by AI systems, leading to vulnerabilities such as cross-site scripting or information leakage. 
  • Training Data Poisoning: Involves tampering with the data used to train AI models, aiming to skew their behavior or decision-making process in a harmful way.
  • Denial of Service: This concerns attacks that overwhelm AI systems, rendering them unavailable to legitimate users, often by exploiting resource-intensive processes.
  • Supply Chain Vulnerabilities: The LLM application lifecycle can be compromised by vulnerable components or services, leading to security attacks.
  • Sensitive Data Leakage or Information Disclosure: Occurs when sensitive information is inadvertently exposed by AI systems, due to flaws in data handling or privacy controls.
  • Insecure Plugin Design: LLM plugins can have insecure inputs and insufficient access control due to a lack of application control.
  • Excessive Agency: Arises from excessive functionality, permissions, or autonomy granted to LLM-based systems, leading to unintended consequences.
  • Overreliance: Refers to the excessive trust in AI systems’ outputs without adequate oversight, leading to the dissemination of inappropriate or harmful content.
  • Model Theft: Involves unauthorized access, copying, or exfiltration of proprietary LLM models.
Previous Topic
Back to Lesson
Next Topic

Company

Resources

Terms

Get in touch

[email protected]
Securiti, Inc.
300 Santana Row
Suite 450
San Jose, CA 95128

Copyright © 2024 SECURITI.ai

Sitemap - XML Sitemap