PromptRiskDBThreat intelligence atlas

Policy AI Mitigations

Mitigation Category

Policy groups 7 AI defenses by defense type.

Overview

A group of defenses with the same label.

Records7Records included in this view.
SourcePublicBuilt from public source data.
ModeStaticPrepared as a ready-to-read page.

Related defenses

Defenses included in this group.

AI Bill of Materials

An AI Bill of Materials (AI BOM) contains a full listing of artifacts and resources that were used in building the AI. The AI BOM can help mitigate supply chain risks and enable rapid response to reported vulnerabilities.

This can include maintaining dataset provenance, i.e. a detailed history of datasets used for AI applications. The history can include information about the dataset source as well as well as a complete record of any modifications.

LifecycleBusiness and Data Understanding + 2 moreCategoryPolicy
B&D UnderstandingData Preparation+1 more

AI Model Distribution Methods

Deploying AI models to edge devices can increase the attack surface of the system. Consider serving models in the cloud to reduce the level of access the adversary has to the model. Also consider computing features in the cloud to prevent gray-box attacks, where an adversary has access to the model preprocessing methods.

LifecycleDeploymentCategoryPolicy
Deployment

Control Access to AI Models and Data at Rest

Establish access controls on internal model registries and limit internal access to production models. Limit access to training data only to approved users.

LifecycleBusiness and Data Understanding + 3 moreCategoryPolicy
B&D UnderstandingData Preparation+2 more

Control Access to AI Models and Data in Production

Require users to verify their identities before accessing a production model. Require authentication for API endpoints and monitor production model queries to ensure compliance with usage policies and to prevent model misuse.

LifecycleDeployment + 1 moreCategoryPolicy
DeploymentMonitoring

Showing 4 of 7

Source evidence

Original public records and references for this page.