We use cookies to improve user experience and analyze website traffic. By clicking “Accept“, you agree to our website's cookie use as described in our Privacy Policy.
PreferencesDecline AllAccept All

Your Cookie Preferences

We use different types of cookies to optimize your experience on our website. Click on the categories below to learn more about their purposes. You may choose which types of cookies to allow and can change your preferences at any time. Remember that disabling cookies may affect your experience on the website. You can learn more about how we use cookies by visiting our Privacy Policy.

Essential Cookies
Details

These cookies are necessary to the core functionality of our website and some of its features, such as access to secure areas.

Analytics and Customization Cookies
Details

These cookies collect information that can help us understand how our websites are being used. This information can also be used to measure effectiveness in our marketing campaigns or to curate a personalized site experience for you.

Advertising Cookies
Details

These cookies are used to enhance the performance and functionality of our websites but are nonessential to their use. However, without these cookies, certain functionality (like videos)may become unavailable.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Decline AllConfirm my Choices
Back

Essential Cookies

Provider: .providername.com

Name
Purpose
Type
Expires In
__cf_bm
Cloudflare places the cookie on end-user devices that access customer sites protected by Bot Management or Bot Fight Mode.
server_cookie
30 minutes

Provider: .providername.com

Name
Purpose
Type
Expires In
_tibcpv
Used to record unique visitor views of the consent banner.
http_cookie
1 year
Back

Analytics and Customization Cookies

Name
Purpose
Marketo Munchkin
Marketo's custom JavaScript tracking code, called Munchkin, tracks all individuals who visit your website so you can react to their visits with automated marketing campaigns.
Name
Purpose
Google Tag
The Google tag (gtag.js) is a single tag you can add to a website to use a variety of Google products and services (e.g., Google Ads, Google Analytics, Campaign Manager, Display & Video 360, Search Ads 360).
Back

Performance and Functionality Cookies

Name
Purpose
LinkedIn Insight
The LinkedIn Insight Tag is a snippet of JavaScript code that loads a small library of functions you can use to track Linkedin ad-driven visitor activity on your website.
Back

Advertising Cookies

Provider: .providername.com

Name
Purpose
Type
Expires In
__cf_bm
Cloudflare places the cookie on end-user devices that access customer sites protected by Bot Management or Bot Fight Mode.
server_cookie
30 minutes

Provider: .providername.com

Name
Purpose
Type
Expires In
_tibcpv
Used to record unique visitor views of the consent banner.
http_cookie
1 year
September 10, 2024
-
5
minute read

Leveraging Hardened Cybersecurity Frameworks for AI Security through the Common Weakness Enumeration (CWE)

Author
Authors
Kate Farris
Kate serves as Co-Chair of the CWE AI Working Group.
Alie Fordyce
Alie is a Product Policy Manager at Robust Intelligence.

In the rapidly evolving landscape of artificial intelligence, AI security is one aspect of paramount concern. As AI systems are increasingly integrated into critical infrastructures, from healthcare to finance, ensuring their robustness against malicious actors is crucial.

Although AI is not a new technology, given its recent advancements in usage and deployment in distributed and large-scale architectures, the control plane and the data plane are generally not distinct. This contrast from traditional software systems introduces complexity in how security weaknesses or vulnerabilities in AI systems are identified, managed, and mitigated. As AI security issues are a growing concern, one effective strategy for managing and mitigating risk is through using established, applicable cybersecurity frameworks. Among these, the Common Weakness Enumeration (CWE) AI Working Group now reviews AI-related submissions through the Content Developer Repository (CDR) on GitHub and formally publishes CWE-identifiable entries.

The Common Weakness Enumerations (CWE) list was created in 2006 and comprises a catalog of security weaknesses including descriptions of each weakness, potential consequences, and examples to aid understanding and mitigating a security risk. Used in a traditional cybersecurity context, a security weakness is a condition in software, firmware, hardware, or a service component, that under certain circumstances could contribute to the introduction of security vulnerabilities. When an AI-related weakness can be mitigated early in the AI development lifecycle, significant costs can be saved by preventing possible downstream AI-related vulnerabilities.

Initiated by the MITRE Corporation, the CWE list became a standard through the collaborative efforts of the software security community and gained traction as it provided a standardized taxonomy for identifying and categorizing software weaknesses essential for improving software security best practices. Over time, the widespread adoption of CWEs by organizations, integration into security tools, and endorsement by industry and government bodies solidified its status as a critical standard to support cybersecurity best practices.

With 900+ entries, a CWE represents a software or hardware weakness that may or may not map to one or many software or hardware vulnerabilities in a variety of applications or products. Today, security practitioners and engineers rely on CWE as part of the secure software development lifecycle, and a measure for Secure by Design. CWEs are ideally addressed in the design or development phase to prevent post-deployment downstream effects such as costly security vulnerabilities.

The advantages of AI-related CWE submissions intake and review process enables businesses to address AI-related security weaknesses through a hardened security apparatus that is already utilized in the existing secure software development lifecycle and cybersecurity incident response activities. In this first blogpost of an upcoming sequence, the first published AI-related CWE entries are introduced and formalized around what it means for AI security. 

The Common Weakness Enumeration in the context of AI: 

With CWE’s recent expansion into AI to address the growing need for standardized identification and categorization of weaknesses specific to artificial intelligence systems, the CWE AI Working Group assembled experts from various technical fields across industry and government. Through this collaboration, real and perceived AI-related gaps that are within scope for identifiable CWEs are reviewed and published. The process entails intaking submissions from the community and identifying what is within scope for an AI-related weakness through discussion in a CWE AI Working Group. The AI-related weakness is then formally developed according to the CWE schema, documented, and published as a CWE entry. 

Through these efforts, new AI-related CWEs were published in the CWE 4.15 July release. CWE-1426 highlights the danger of not properly validating AI-generated outputs and CWE-1039, an automated recognition mechanism with inadequate detection or handling of adversarial input perturbations, was updated as an AI-related weakness. Additionally, a new demonstrative example was published in CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection'), which shows how AI outputs can be manipulated for command injection attacks. In addition, an observed example is a publicly reported vulnerability in real-world products that exhibit the weakness. New AI-related observed examples were published to several entries including SQL injection (CWE-89), path traversal (CWE-22), and code injection (CWE-94).

What does this mean for AI Security?

Understanding the AI-security weakness that can result in an AI-related vulnerability enables engineers to mitigate them before AI model deployment, strengthening the AI pipeline and saving costs by preventing downstream effects.

Robust Intelligence’s participation in the leadership committee of the CWE AI Working Group brings specialized AI expertise to help scope AI-related security weaknesses. This further enables a more precise understanding of AI-related security risks, identification of root cause issues, and mitigation plans that align with existing cybersecurity protocols. This leadership and expertise aids in developing effective mitigation strategies to AI technologies. Furthermore, the collaboration and knowledge sharing among non-profit, government, and industry experts uplifts all sectors in formalizing an operational framework around AI-related security weaknesses.

As CWE continues to review AI-related submissions, future content releases are upcoming in late 2024 and early 2025. In collaboration with industry, government, and community partners, Robust Intelligence continues to contribute to the analysis and review of AI-related submissions, enabling improved AI security root cause analysis for stakeholders.

Acknowledgements:

  • Alec Summers, Principal Cybersecurity Engineer, CVE/CWE Project Leader, MITRE
  • Steve Christey Coley, Principal Information Security Engineer, CWE Technical Lead, MITRE
Author
Authors
Kate Farris
Kate serves as Co-Chair of the CWE AI Working Group.
Alie Fordyce
Alie is a Product Policy Manager at Robust Intelligence.
Share article
Social

Follow us on LinkedIn

Newsletter

Subscribe to our newsletter

Thank you!
You have successfully subscribed to our list
Oops! Something went wrong while submitting the form.

Related articles

September 10, 2024
-
5
minute read

Leveraging Hardened Cybersecurity Frameworks for AI Security through the Common Weakness Enumeration (CWE)

For:
September 6, 2024
-
4
minute read

AI Governance Policy Roundup (August 2024)

For:
August 27, 2024
-
5
minute read

AI Cyber Threat Intelligence Roundup: August 2024

For:
+   More Articles

Related articles

July 29, 2024
-
5
minute read

Bypassing Meta’s LLaMA Classifier: A Simple Jailbreak

For:
August 1, 2024
-
4
minute read

Four ways AI application security differs from traditional application security

For:
May 28, 2024
-
5
minute read

Fine-Tuning LLMs Breaks Their Safety and Security Alignment

For:
+   More Articles

Ready to learn more?

See why we’re the enterprise choice for AI application security.
Get a Demo
September 10, 2024
-
5
minute read

Leveraging Hardened Cybersecurity Frameworks for AI Security through the Common Weakness Enumeration (CWE)

Author
Authors
Kate Farris
Kate serves as Co-Chair of the CWE AI Working Group.
Alie Fordyce
Alie is a Product Policy Manager at Robust Intelligence.

In the rapidly evolving landscape of artificial intelligence, AI security is one aspect of paramount concern. As AI systems are increasingly integrated into critical infrastructures, from healthcare to finance, ensuring their robustness against malicious actors is crucial.

Although AI is not a new technology, given its recent advancements in usage and deployment in distributed and large-scale architectures, the control plane and the data plane are generally not distinct. This contrast from traditional software systems introduces complexity in how security weaknesses or vulnerabilities in AI systems are identified, managed, and mitigated. As AI security issues are a growing concern, one effective strategy for managing and mitigating risk is through using established, applicable cybersecurity frameworks. Among these, the Common Weakness Enumeration (CWE) AI Working Group now reviews AI-related submissions through the Content Developer Repository (CDR) on GitHub and formally publishes CWE-identifiable entries.

The Common Weakness Enumerations (CWE) list was created in 2006 and comprises a catalog of security weaknesses including descriptions of each weakness, potential consequences, and examples to aid understanding and mitigating a security risk. Used in a traditional cybersecurity context, a security weakness is a condition in software, firmware, hardware, or a service component, that under certain circumstances could contribute to the introduction of security vulnerabilities. When an AI-related weakness can be mitigated early in the AI development lifecycle, significant costs can be saved by preventing possible downstream AI-related vulnerabilities.

Initiated by the MITRE Corporation, the CWE list became a standard through the collaborative efforts of the software security community and gained traction as it provided a standardized taxonomy for identifying and categorizing software weaknesses essential for improving software security best practices. Over time, the widespread adoption of CWEs by organizations, integration into security tools, and endorsement by industry and government bodies solidified its status as a critical standard to support cybersecurity best practices.

With 900+ entries, a CWE represents a software or hardware weakness that may or may not map to one or many software or hardware vulnerabilities in a variety of applications or products. Today, security practitioners and engineers rely on CWE as part of the secure software development lifecycle, and a measure for Secure by Design. CWEs are ideally addressed in the design or development phase to prevent post-deployment downstream effects such as costly security vulnerabilities.

The advantages of AI-related CWE submissions intake and review process enables businesses to address AI-related security weaknesses through a hardened security apparatus that is already utilized in the existing secure software development lifecycle and cybersecurity incident response activities. In this first blogpost of an upcoming sequence, the first published AI-related CWE entries are introduced and formalized around what it means for AI security. 

The Common Weakness Enumeration in the context of AI: 

With CWE’s recent expansion into AI to address the growing need for standardized identification and categorization of weaknesses specific to artificial intelligence systems, the CWE AI Working Group assembled experts from various technical fields across industry and government. Through this collaboration, real and perceived AI-related gaps that are within scope for identifiable CWEs are reviewed and published. The process entails intaking submissions from the community and identifying what is within scope for an AI-related weakness through discussion in a CWE AI Working Group. The AI-related weakness is then formally developed according to the CWE schema, documented, and published as a CWE entry. 

Through these efforts, new AI-related CWEs were published in the CWE 4.15 July release. CWE-1426 highlights the danger of not properly validating AI-generated outputs and CWE-1039, an automated recognition mechanism with inadequate detection or handling of adversarial input perturbations, was updated as an AI-related weakness. Additionally, a new demonstrative example was published in CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection'), which shows how AI outputs can be manipulated for command injection attacks. In addition, an observed example is a publicly reported vulnerability in real-world products that exhibit the weakness. New AI-related observed examples were published to several entries including SQL injection (CWE-89), path traversal (CWE-22), and code injection (CWE-94).

What does this mean for AI Security?

Understanding the AI-security weakness that can result in an AI-related vulnerability enables engineers to mitigate them before AI model deployment, strengthening the AI pipeline and saving costs by preventing downstream effects.

Robust Intelligence’s participation in the leadership committee of the CWE AI Working Group brings specialized AI expertise to help scope AI-related security weaknesses. This further enables a more precise understanding of AI-related security risks, identification of root cause issues, and mitigation plans that align with existing cybersecurity protocols. This leadership and expertise aids in developing effective mitigation strategies to AI technologies. Furthermore, the collaboration and knowledge sharing among non-profit, government, and industry experts uplifts all sectors in formalizing an operational framework around AI-related security weaknesses.

As CWE continues to review AI-related submissions, future content releases are upcoming in late 2024 and early 2025. In collaboration with industry, government, and community partners, Robust Intelligence continues to contribute to the analysis and review of AI-related submissions, enabling improved AI security root cause analysis for stakeholders.

Acknowledgements:

  • Alec Summers, Principal Cybersecurity Engineer, CVE/CWE Project Leader, MITRE
  • Steve Christey Coley, Principal Information Security Engineer, CWE Technical Lead, MITRE
Author
Authors
Kate Farris
Kate serves as Co-Chair of the CWE AI Working Group.
Alie Fordyce
Alie is a Product Policy Manager at Robust Intelligence.
Share article
Newsletter

Subscribe to our newsletter

Thank you!
You have successfully subscribed to our list
Oops! Something went wrong while submitting the form.
Blog

Related articles

June 20, 2023
-
5
minute read

Why We Need Risk Assessments for Generative AI

For:
Model Compliance Assessment
April 5, 2022
-
5
minute read

3 Trends for AI in FinTech in 2022

For:
June 12, 2024
-
5
minute read

Automate AI vulnerability testing with Robust Intelligence and MLflow

For:
July 29, 2024
-
5
minute read

Bypassing Meta’s LLaMA Classifier: A Simple Jailbreak

For:
August 1, 2024
-
4
minute read

Four ways AI application security differs from traditional application security

For:
May 28, 2024
-
5
minute read

Fine-Tuning LLMs Breaks Their Safety and Security Alignment

For:
+   More Articles

Achieve AI Integrity Today

Request a Demo