SecureAITransformation-WhatWeCanDoNowandintheFuture

PRESENTED BYSecure AI transformation: What we can do now and in the futureEfim Hudis, VP Microsoft Security Neta Haiby, Director of AI Security, Microsoft Security2AI is shifting business Every Every Every 3GenAI apps are a blackbox, versatile, probabilistic, and not deterministicHave high connectivity and autonomyUse natural language and can be manipulated4You engage with AI in various ways YOU USE ITYOU BUILD ITLow code/No Code/Code5Generative AI introduces new attack surfaces and risksPrompt injectionJailbreakData leakage in promptsRisky contentAI regulationsTraining dataPromptsResponsesPrompt integrationPlug-insOrchestrationModelsApplicationIdentityEndpointsDataCloud6Generative AI threat mapMITRE ATLASOWASP Top 10 for LLMMSRC AI Bug BarOWASP Top 10 for MLAI Usage SecurityUser interaction with generative AI-based appsSensitive information disclosureShadow IT/harmful third-party LLM-based app or pluginAI ApplicationSecurityGenerative AI-based app lifecycle UPIA/XPIA Intent-breakingDa