The government has issued guidelines aimed at helping artificial intelligence (AI) developers enhance the cybersecurity of AI models. The Department for Science, Innovation, and Technology (DSIT) intends these measures to establish a global standard for safeguarding AI models against hacking. The government hopes that these codes of practice will drive innovation and economic growth nationwide and potentially become the basis for an international standard.
Rosamund Powell, a research associate at The Alan Turing Institute, emphasized the need to address the cybersecurity risks associated with AI systems. She stated that the code of practice provides practical guidance for developers on implementing a secure-by-design approach during the AI design and development process. Powell also stressed the importance of the codes forming the basis for a global standard, as international standards already play a critical role in addressing AI safety challenges.
DSIT explained that the codes outline requirements for developers to enhance the resilience of their products against tampering, hacking, and sabotage, thereby increasing confidence in the use of AI models across various industries. Technology Minister Saqib Bhatti highlighted the government’s aim to create a safe environment for the digital economy to grow and prosper. He stated that these measures would make AI models resilient from the design phase, making the UK a global leader in cybersecurity and supporting the safe and sustainable development of the digital economy.
The government’s Cyber sectoral analysis report revealed that over the past year, 50% of businesses and 32% of charities experienced cyber breaches or attacks, with phishing being the most common type of breach. Felicity Oswald, CEO of the National Cyber Security Centre, welcomed the new codes of practice, stating they would assist the growing cybersecurity industry in developing resilient AI models and software. Kevin Curran, an IEEE senior member and cybersecurity professor, emphasized the need for businesses to stay ahead of emerging threats by adopting comprehensive data protection strategies and tools to secure their systems.