My Account Log in

1 option

Combating Cyberattacks Targeting the AI Ecosystem : Assessing Threats, Risks, and Vulnerabilities.

De Gruyter DG Plus DeG Package 2024 Part 1 Available online

View online
Format:
Book
Author/Creator:
Sood, Aditya K.
Language:
English
Subjects (All):
Computer security.
Artificial intelligence.
Physical Description:
1 online resource (253 pages)
Edition:
1st ed.
Place of Publication:
Bloomfield : Mercury Learning & Information, 2024.
Summary:
This book provides an in-depth analysis of combating cyberattacks targeting the AI ecosystem. It explores the challenges and risks associated with artificial intelligence, focusing on the security aspects of large language models (LLMs), generative AI applications, and AI systems. The author discusses trust, compliance, and security frameworks to ensure the responsible use of AI technologies. Real-world case studies illustrate threats and attacks, highlighting the need for robust security measures. The book is intended for cybersecurity professionals, AI researchers, and industry practitioners seeking to understand and mitigate AI-related cyber threats. Generated by AI.
Contents:
Cover
Halftitle
Title
Copyright
Dedication
Contents
Preface
Acknowledgments
About the Author
Chapter 1: Introduction to AI: LLMs, GenAI Applications, and the AI Infrastructure
What is Artificial Intelligence?
History of Artificial Intelligence in Industry
Challenges in Artificial Intelligence
AI Taxonomy
Building Blocks of the AI System
AI Learning Methods
Collaborative AI Systems and Learning
AI Infrastructure and Components
Understanding Generative AI Taxonomy
Overview of Large Language Models (LLMs)
Components of LLMs
Classifying LLMs
LLM Code Examples for Learning
Case 1: Using BERT for Sentiment Analysis
Case 2: Using GPT for Text Generation
Case 3: RankGAN for Text Generation
Generative AI Applications and Design
GenAI/LLM Application Workflow
Generative AI Service Architecture
Conclusion
References
Chapter 2: AI Trust, Compliance, and Security
Trusted and Responsible AI
Ethical Frameworks
Societal Impact Assessment
Diverse Inclusive Development
Accountability Mechanisms
Fairness and Bias Mitigation
Transparent and Explainability
Data Protection
Continuous Learning and Improvement
User Centric Design
Embedding Privacy in AI Systems
Compliance in AI Systems
A Perspective into Securing the AI Ecosystem
LLM Security
GenAI Applications Security
AI Infrastructure Security
AI Guardrails
Trust, Compliance, and Security Frameworks
Chapter 3: The AI Threat Landscape: Dissecting the Risks and Attack Vectors
AI Threat Landscape: Dissecting the Main Challenges
Automated Malicious Code Generation
Autonomous Cyber Weapons
Adversarial Attacks Against AI/ML Systems
Prompt Injection Attacks
Jailbreaking Guardrail Routines
AI-generated Deepfake Attacks.
AI-powered Defense Evasion
AI-powered Social Engineering
AI-driven Targeted Attacks
AI-enabled Offensive Cyber Operations
Threats and Attacks: Practical Examples
AI Threat and Risk Frameworks
AI Infrastructure Attacks
Chapter 4: Threats and Attacks Targeting the AI Ecosystem: Real-World Case Studies
Harnessing the Power of AI Systems
AI-generated Customized CEO Spoof Email
AI-powered Malicious Code Generation
Generating Reverse Shell Code
Generating Domain Generation Algorithm Code
Generating DNS Tunneling Code Using the Amazon Retail Application
Security Issues in the AI Ecosystem: Real-World Case Studies
Exposed Jupyter Notebooks Web Interface
Exposed Docker Repositories Containing AI Model Packages
Security Flaws in Customized Gradio AI/ML Model Deployment Applications
Unsecured AI/ML Model Operations' Web Interfaces
Unsecured LLM Low Code Builder Software Interface
Unauthorized API Requests to AI Bot Node
Unsecured and Exposed AIOps Cloud Components
Leaked Datasets Used for AI Models
Access to Config Files via Unauthenticated APIs
Advanced LLMs: Guardrails Implementation
Ethical Guidelines Comparison for Different LLMs
Ethical and Private AI: Stateless Interactions
Examples of Real-world Attacks Targeting the AI Ecosystem
Chapter 5: Security Assessment of LLMs, GenAI Applications, and the AI Infrastructure
Threat Modeling of the AI Ecosystem
Penetration Testing of the AI Ecosystem
Prompt Injection: Testing Strategies
Dissecting Prompt Principles for Security Assessment
Jailbreaking Guardrails
Prompt Splitting
Ignoring Context and Response
Prompt Typosquatting
Prompt Error Interpretation to Execute Commands
Information Gathering from AI Chatbots.
Security Assessment of the AI Ecosystem
Directory Listing of AI Package Files
Assessing the Security of Vector Database API Endpoints
Data Pipelines: Unrestricted Access to API Endpoints
A Distributed Messaging Platform for GenAI Applications
Improper Error Handling Resulting in Unavailability and DoS
Insecure Handling of Prompt Responses
Assessing the Security of Inference Server Web and API Routes
Evaluating the Security of Federated Learning Framework
Assessing the Security of a Remote LLM Server Running RDP
Security Assessment of AI Models Hosted on a Code Repository Platform
Scanning for Malicious Code
Scanning for Unauthorized Code in Pickle Files
Scanning for Leaked Secrets
Secure Review: Practical Code Analysis
Model Access API Key Stored in the Environment Variable
Code Routine to Prevent Leakage of Sensitive Data via LLM Application
Assessing Security Tool Integration into CI/CD Pipelines
Reviewing API Rate Limiting and Throttling Configuration
Reviewing Security Rules for LLM Servers
AI Ecosystem Security Assessment Checklist
Chapter 6: Defending LLMs, GenAI Applications, and the AI Infrastructure Against Cyberattacks
Securing LLMs
Defending Against Adversarial Attacks on AI Systems
Securing Generative AI Applications
Securing AI Infrastructure
Secure Development Using AI Guardrails
AI Security Awareness and Training
Appendix: Machine Learning /AI Terms
Index.
Notes:
Description based on publisher supplied metadata and other sources.
Part of the metadata in this record was created by AI, based on the text of the resource.
ISBN:
9781501520549
1501520547
OCLC:
1463061530

The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.

Find

Home Release notes

My Account

Shelf Request an item Bookmarks Fines and fees Settings

Guides

Using the Find catalog Using Articles+ Using your account