This report does not constitute a rating action.
Key Takeaways
- The principles of cyber security management can be applied to improving AI security, often with little modification, while quality cyber hygiene is also key to AI security.
- Applying AI tools to security processes and tasks can improve performance, not least by alleviating the burden of analyzing often overwhelming volumes of data.
- Cyber security experts must engage with AI developers, regulators, and executives on their terms to ensure that security is built into AI's development, rules, and applications.
The relationship between artificial intelligence (AI) and cyber security is proving symbiotic, with security practices serving to defend AI systems, while AI is simultaneously leveraged to enhance the effectiveness of security. Yet there is also a parasitic parallel, with AI increasingly used by threat actors as a tool to breach security. Much about these interactions is new, and while AI doesn't demand an overhaul of the fundamental security principles, it is clear that practices and practitioners will have to adapt to meet the evolving applications of AI and its emerging risks.
The evolution and deployment of existing security protocols for AI was a key theme for and expert panel that met for S&P Global Ratings' Quarterly Cyber Focus webinar, "AI For Security, And Security For AI: Two Aspects Of A Pivotal Intersection." A replay of the webinar is available here.
"We have learned already so much that we can continue to apply from cyber security to AI. This is not something completely different" said Mercedes Cangueiro, S&P Global Ratings Associate Director, Emerging Risk.
The Three Intersections Of AI and Security
The discussion centered on the ways in which AI and security intersect, with the three key points of convergence set out by Scott Crawford, Research Director, Security, 451 Research, a unit of S&P Global Market Intelligence.
The first is the provision of security for AI, which focuses on the creation of a secure environment in which AI can function. That includes a secure space for systems, security for components, and security of inputs and outputs. The other side of that coin, AI for security, refers to AI's application within security systems. That is likely, at least for now, to focus on processing and analyzing the often overwhelming amounts of data created by cyber security operations in order to better prioritize outputs, monitor threats, and improve systems.
Finally, Crawford turned his attention to the subject of AI against security, where AI is used as a tool to threaten security. "We are starting to see adversaries take advantage of what artificial intelligence can do in order to achieve malicious objectives," he said.
AI Risk Assessment Fits Within Established Paradigms
The panel acknowledged that the task of assessing AI's relationships with security can seem overwhelming, particularly given the complexity and pace of evolution, and lack of precedent. Diana Kelley, Chief Information Security Officer at Protect AI counselled "fellow CISOs" to approach AI risk assessment via the four dimensions of business risk, namely: strategic, financial, operational, and regulatory.
"Strategic risk is competitive risk: Is a competitor using the technology to win market share faster? Financial risk: AI isn't free, so understanding the total cost of ownership is critical," said Kelley. "Operational risk is where a lot of conversation needs to happen because there is this wonderful promise of AI being able to automate so much. But what if that automation goes wrong? And then there is, regulatory risk: The EU has set the pace…but there are regulations all around the globe that organizations need to consider."
Kelley said that communication between CISOs and executives will be key to effectively prioritizing resources dedicated to AI. That will, in turn, form the foundation for technical discussions relating to how AI can be protected and how to ensure it works as expected.
Security Will Be Built On Communication
Management of AI systems, and management with AI systems, will give rise to challenges. The technology promises to parse and provide information to improve decision making capabilities, but it will also inevitably enlarge the universe of possible actions. That will have implications for security.
"AI complicates things because decision trees become very wide; though they were always wide, we just didn't have a lot of the data," said Sudeep Kesh, Chief Innovation Officer, S&P Global Ratings. That complication could be harnessed intentionally and thoughtfully by organizations to make decisions that are more informed, quicker, and ultimately better. But complexity could also be exploited by threat actors to develop new attack vectors, said Kesh.
AI's potential to contribute positively to cyber security will be unlocked by effective communication with developers, data scientists, regulators, and organizations' decision makers. The panel agreed that engagement should start early, not least so that security is built into the design of AI software and systems. And they said that cyber experts will have to engage with AI's different actors on their terms.
"You have to start by understanding how these people operate, their UX (user experience)," said Richard Seiersen, Chief Risk Technology Officer Qualys. "If your vision as a vendor or as a security person is that I am going to pull them out of their tool chains and pipelines and make them think about security, then you have lost. You have to understand how they develop things."
For more information on AI, including plain-language guides to the technology and its implications for the sectors and organizations that we follow, please visit S&P Global's dedicated AI research website, here.
More information and links to S&P's past and upcoming AI-related events and webinars are also available on that site.
Related Research
- Language Modelling: The Fundamentals, Jan. 23, 2024.
- Can Generative AI Create A Productivity Boom, Jan. 10, 2024.
- Artificial Intelligence: What Are The Key Credit Risks And Opportunities Of AI, Dec. 4, 2023.
- CreditWeek: How Will AI Affect Credit Quality For Corporates?, Nov. 30, 2023.
- The AI Governance Challenge, Nov. 29, 2023.
- AI for Security, and Security for AI: Two Aspects of a Pivotal Intersection, Nov. 29, 2023.
- Gen AI Is Writing A New Credit Story For Tech Giants, Nov. 14, 2023.
- Future Of Banking: AI Will Be An Incremental Game Changer , Oct. 3, 2023.
| Primary Credit Analyst: | Maria Mercedes M Cangueiro, Buenos Aires + 54 11 4891 2149; maria.cangueiro@spglobal.com |
| Secondary Contacts: | Alexander J Gombach, New York + 1 (212) 438 2882; alexander.gombach@spglobal.com |
| Sudeep K Kesh, New York + 1 (212) 438 7982; sudeep.kesh@spglobal.com |
No content (including ratings, credit-related analyses and data, valuations, model, software, or other application or output therefrom) or any part thereof (Content) may be modified, reverse engineered, reproduced, or distributed in any form by any means, or stored in a database or retrieval system, without the prior written permission of Standard & Poor’s Financial Services LLC or its affiliates (collectively, S&P). The Content shall not be used for any unlawful or unauthorized purposes. S&P and any third-party providers, as well as their directors, officers, shareholders, employees, or agents (collectively S&P Parties) do not guarantee the accuracy, completeness, timeliness, or availability of the Content. S&P Parties are not responsible for any errors or omissions (negligent or otherwise), regardless of the cause, for the results obtained from the use of the Content, or for the security or maintenance of any data input by the user. The Content is provided on an “as is” basis. S&P PARTIES DISCLAIM ANY AND ALL EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, ANY WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE OR USE, FREEDOM FROM BUGS, SOFTWARE ERRORS OR DEFECTS, THAT THE CONTENT’S FUNCTIONING WILL BE UNINTERRUPTED, OR THAT THE CONTENT WILL OPERATE WITH ANY SOFTWARE OR HARDWARE CONFIGURATION. In no event shall S&P Parties be liable to any party for any direct, indirect, incidental, exemplary, compensatory, punitive, special or consequential damages, costs, expenses, legal fees, or losses (including, without limitation, lost income or lost profits and opportunity costs or losses caused by negligence) in connection with any use of the Content even if advised of the possibility of such damages.
Credit-related and other analyses, including ratings, and statements in the Content are statements of opinion as of the date they are expressed and not statements of fact. S&P’s opinions, analyses, and rating acknowledgment decisions (described below) are not recommendations to purchase, hold, or sell any securities or to make any investment decisions, and do not address the suitability of any security. S&P assumes no obligation to update the Content following publication in any form or format. The Content should not be relied on and is not a substitute for the skill, judgment, and experience of the user, its management, employees, advisors, and/or clients when making investment and other business decisions. S&P does not act as a fiduciary or an investment advisor except where registered as such. While S&P has obtained information from sources it believes to be reliable, S&P does not perform an audit and undertakes no duty of due diligence or independent verification of any information it receives. Rating-related publications may be published for a variety of reasons that are not necessarily dependent on action by rating committees, including, but not limited to, the publication of a periodic update on a credit rating and related analyses.
To the extent that regulatory authorities allow a rating agency to acknowledge in one jurisdiction a rating issued in another jurisdiction for certain regulatory purposes, S&P reserves the right to assign, withdraw, or suspend such acknowledgement at any time and in its sole discretion. S&P Parties disclaim any duty whatsoever arising out of the assignment, withdrawal, or suspension of an acknowledgment as well as any liability for any damage alleged to have been suffered on account thereof.
S&P keeps certain activities of its business units separate from each other in order to preserve the independence and objectivity of their respective activities. As a result, certain business units of S&P may have information that is not available to other S&P business units. S&P has established policies and procedures to maintain the confidentiality of certain nonpublic information received in connection with each analytical process.
S&P may receive compensation for its ratings and certain analyses, normally from issuers or underwriters of securities or from obligors. S&P reserves the right to disseminate its opinions and analyses. S&P's public ratings and analyses are made available on its Web sites, www.spglobal.com/ratings (free of charge), and www.ratingsdirect.com (subscription), and may be distributed through other means, including via S&P publications and third-party redistributors. Additional information about our ratings fees is available at www.spglobal.com/usratingsfees.