OUR PARTNERS

CISA Unveils Roadmap for AI in Enhancing US Cybersecurity


03 July, 2024

In a recent development, the United States Cybersecurity and Infrastructure Security Agency (CISA) has unveiled a “Roadmap for Artificial Intelligence” in response to the executive order issued by the Biden administration. This comprehensive plan outlines the strategic approach to regulate companies that are engaged in the development of artificial intelligence technologies and also guides the federal government on how to broaden its AI adoption.

The 120-page executive order released last month primarily focuses on security concerns associated with AI. It emphasizes on identifying and rectifying vulnerabilities in AI products and formulating strategies to counter potential cybersecurity threats that might be propelled by AI. The challenge, however, lies in translating this extensive and conceptual document into actionable steps.

CISA’s roadmap is an attempt to address this challenge. It breaks down its strategy to deal with AI cybersecurity and critical infrastructure-related issues into five categories. Two of these categories revolve around fostering communication, collaboration, and workforce proficiency across public and private partnerships. The remaining three categories are directly linked to the implementation of specific elements of the executive order.

CISA, a part of the US Department of Homeland Security (DHS), is committed to ensuring the safe and secure development and deployment of AI systems. “AI as software is clearly going to have phenomenal impacts on society, but just as it will make our lives better and easier, it could very well do the same for our adversaries large and small,” said CISA director Jen Easterly.

While CISA is keen on using AI responsibly, it is also focused on utilizing it assertively for US digital defense. Easterly emphasized that although the agency prioritizes security over speed in developing AI-driven defense capabilities, it is crucial for the US government to use these tools urgently as attackers might already be leveraging them.

In promoting the use of AI in digital defense, CISA’s strategy will revolve around established cybersecurity principles that both public and private sectors can draw from. Easterly stated, “AI is a form of software, and we can’t treat it as some sort of exotic thing that new rules need to apply to.”

CISA advocates for AI systems to be “secure by design,” meaning they should be developed with security considerations in mind from the outset, rather than attempting to add protections retrospectively to a completed platform. The agency also plans to promote the use of “software bills of materials” and other measures to ensure AI systems are open for scrutiny and supply chain audits.

Easterly further added that AI manufacturers need to be held accountable for the security outcomes. “Those are the ones that are building and designing these technologies, and it’s about the importance of embracing radical transparency. Ensuring we know what is in this software so we can ensure it is protected.”

This latest AI news highlights the government’s proactive approach towards harnessing the potential of AI while mitigating its risks. It sets a precedent for other nations looking to incorporate AI in their digital defense strategies. The roadmap also underscores the importance of AI tools such as AI images generator, AI text generator, and AI video generator in modern digital defense systems. The implementation of this roadmap will undoubtedly shape the future of AI in cybersecurity, setting a benchmark for others to follow.