Security and Privacy for AI Systems

Monitoring AI systems

AWS Responsibility – Security of the Cloud
- AWS is responsible for protecting the infrastructure that supports its services, including:
  - Physical data centers, networking, hardware, and software
  - Security of managed services such as Amazon Bedrock, SageMaker, and S3
Customer responsibility - Security in the Cloud
- Customers are responsible for securing what they build and deploy on AWS:
- For Bedrock, customer is responsible for data management, access controls, setting up guardrails, etc…
- Encrypting application and training data
Shared Responsibilities:
- Some controls are shared between AWS and customers
- Patch management
- Configuration management
- Security awareness and training
- Awareness and Training

Shared Responsibility Model 2

Data Quality Assessment
- High-quality data is essential for secure and reliable AI systems:
- Completeness: diverse and comprehensive range of scenarios
- Accuracy: accurate, up-to-date, and representative
- Timeliness: age of the data in a data store
- Consistency: maintain coherence and consistency in the data lifecycle
- Data profiling and monitoring
- Data lineage
Privacy-Enhancing technologies
- Reduce privacy risks using:
  - Data masking and obfuscation
  - Encryption, tokenization to protect data during processing and usage
Data Access Control
- Comprehensive data governance framework with clear policies
- Role-based access control and fine-grained permissions to restrict access
- Single sign-on, multi-factor authentication, identity and access management solutions
- Monitor and log all data access activities
- Regularly review and update access rights based on least privilege principles
Data Integrity
- Ensure data remains accurate and trustworthy
- Maintain completeness and consistency
- Implement backup and disaster recovery strategies
- Maintain data lineage and audit trails
- Monitor and test the data integrity controls to ensure effectiveness