The UK has published the first global guidelines for securing artificial intelligence systems from cyberattacks. The new guidelines aim to ensure that AI technology is developed safely and securely.
The guidelines were developed by the United Kingdom National Cyber Security Center (NCSC) and the US” Cyber Security and Infrastructure Security Agency (CISA). They have already secured approvals from 17 other countries, including all G7 members.
The guidelines provide recommendations for developers and organizations using artificial intelligence to integrate cybersecurity at every stage. This “secure by design” approach advises on security from the initial design phase through development, deployment and ongoing operations.
The specific guidelines cover four main areas: safe design, safe development, safe development and safe operation and maintenance. They suggest security behaviors and best practices for each phase.
The launch event in London brought together over 100 industry, government and international partners. Speakers included representatives from Microsoft, the Alan Turing Institute and cyber agencies from the US, Canada, Germany and the UK.
NCSC CEO Lindy Cameron emphasized the need for proactive security amid the rapid pace of AI development. He said, “security is not an afterthought to development, but a core requirement throughout.”
The guidelines build on the UK’s existing leadership in AI security. Last month, the UK hosted the first international AI Security Summit at Bletchley Park.
US Homeland Security Secretary Alejandro Mayorkas said: “We are at an inflection point in the development of artificial intelligence, which may well be the most important technology of our time. Cybersecurity is key to creating AI systems that are safe, secure and reliable.
“The guidelines jointly issued today by CISA, NCSC and our other international partners provide a common-sense path for the design, development, deployment and operation of artificial intelligence with cyber security at its core.”
The 18 countries they supported cover Europe, Asia Pacific, Africa and the Americas. Here is the full list of international signatories:
- Australia – Australian Signals Directorate Australian Cyber Security Center (ACSC)
- Canada – Canadian Center for Cyber Security (CCCS)
- Chile – CSIRT of the Government of Chile
- Czech republic – National Cyber and Information Security Agency of the Czech Republic (NUKIB)
- Estonia – Estonian Information Systems Authority (RIA) and Estonian National Cyber Security Center (NCSC-EE)
- France – French Cyber Security Agency (ANSSI)
- Germany – German Federal Office for Information Security (BSI)
- Israel – Israel National Cyber Directorate (INCD)
- Italy – Italian National Cyber Security Agency (ACN)
- Japan – Japan National Cyber Security Strategy and Incident Preparedness Center (NISC, Japan Secretariat for Policy Science, Technology and Innovation, Cabinet Office
- New Zealand – New Zealand National Cyber Security Centre
- Nigeria – Nigeria National Information Technology Development Agency (NITDA)
- Norway – Norwegian National Cyber Security Center (NCSC-NO)
- Poland – NASK National Research Institute of Poland (NASK)
- Republic of Korea – National Intelligence Service of the Republic of Korea (NIS)
- Singapore – Cyber Security Agency of Singapore (CSA)
- United Kingdom – National Cyber Security Center (NCSC)
- USA – Cyber Security and Infrastructure Agency (CISA). National Security Agency (NSA; Federal Bureau of Investigation (FBI)
UK Science and Technology Secretary Michelle Donelan pitched the new guidelines as cementing the UK’s role as an “international body for the safe use of artificial intelligence”.
“Just weeks after we gathered world leaders at Bletchley Park to reach the first international agreement on safe and responsible artificial intelligence, we are once again uniting nations and companies in this truly global effort,” adds Donelan.
The instructions are now published on the NCSC website along with explanatory blogs. Developer buy-in will be key to turning the vision of secure design into real AI security improvements.
(Photo by Jan Antonin Kolar on Unscrew)
See also: Paul O’Sullivan, Salesforce: Transforming work in the GenAI era
Want to learn more about AI and big data from industry leaders? Checkout AI & Big Data Expo takes place in Amsterdam, California and London. The comprehensive event is co-located with Cyber Security & Cloud Expo and Digital Transformation Week.
Explore other upcoming corporate tech events and webinars powered by TechForge here.