{"id":326303,"date":"2024-08-02T16:22:10","date_gmt":"2024-08-02T23:22:10","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=326303"},"modified":"2024-08-02T16:22:10","modified_gmt":"2024-08-02T23:22:10","slug":"the-promise-and-perils-of-building-ai-into-your-business-applications","status":"publish","type":"post","link":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/2024\/08\/the-promise-and-perils-of-building-ai-into-your-business-applications\/","title":{"rendered":"The Promise and Perils of Building AI Into Your Business Applications"},"content":{"rendered":"<p>Artificial intelligence (AI) is at the forefront of business innovation. But although AI feels like a relatively new concept,\u00a0<a class=\"color-link\" title=\"https:\/\/www.techtarget.com\/esg-global\/survey-results\/generative-ai-for-cybersecurity-an-optimistic-but-uncertain-future\/\" href=\"https:\/\/www.techtarget.com\/esg-global\/survey-results\/generative-ai-for-cybersecurity-an-optimistic-but-uncertain-future\/\" target=\"_blank\" rel=\"nofollow noopener noreferrer\" data-ga-track=\"ExternalLink:https:\/\/www.techtarget.com\/esg-global\/survey-results\/generative-ai-for-cybersecurity-an-optimistic-but-uncertain-future\/\" aria-label=\"83% of technology service providers\">83% of technology service providers<\/a>\u00a0already use generative AI in their businesses.<\/p>\n<p>Business use of AI apps spans nearly every type of application, including supply chain optimization, process automation, customer service chatbots, virtual assistants, data analysis, logistics monitoring, fraud detection, competitive intelligence and more. But there are risks involved with this new technology. Take, for example:<\/p>\n<p>\u2022 Airlines, hotels and online travel businesses are building LLM-powered virtual assistants to let you self-manage your bookings. But what if the organization rushed that application to market without considering supply chain vulnerabilities in the app ecosystem \u2013 including corrupt AI and machine learning (ML) packages and model vulnerabilities?<\/p>\n<p>\u2022 Pharmaceutical enterprises are trying to use their past research, trials and outcomes to train models, thereby accelerating their ability to take their next drug to the market. But what if the organization leverages an open-source model that was trained on poisoned data, leading to incorrect or misleading trial results?<\/p>\n<p>\u2022 Real estate companies are building online apps to help you find your next property and build the most appropriate offer based on the market data. But what if the application was subject to prompt injection attacks that let bad actors arbitrage the market at the expense of everyday home buyers?<\/p>\n<p>No matter where you may sit on the AI adoption spectrum, it\u2019s clear that the businesses that are embracing AI are winning a competitive edge. But it\u2019s not as easy as plugging an AI model into your existing infrastructure stack and calling it a win. You\u2019re adding a whole new AI stack, including the model, supply chain, plug-ins and agents \u2013 and then giving it access to sensitive internal data for both training and inference. This brings a whole new set of complexities to the security game.<\/p>\n<h4>So, how does a business harness the potential of AI without compromising security?<\/h4>\n<p>\u2022 The journey to securing AI-powered applications starts with discovery. You must be able to see every component of your AI app ecosystem \u2013 including AI apps, models, inference and training datasets, and plug-ins.<\/p>\n<p>\u2022 Next, you must understand your security posture to identify and remediate against possible risks in the supply chain and the configuration, as well as data exposure risks to your AI apps. By identifying your highest-risk applications, you can investigate your training dataset risks and potential level of risk to your organization.<\/p>\n<p>\u2022 Then, you must protect against runtime risks. These are the risks your app is exposed to once it\u2019s deployed and exposed to the outside world. Attackers are aware of the speed at which new AI applications are being developed and rushed to market, and they\u2019ve devised an increasing arsenal of AI-specific attacks in the hopes of exploiting new, untested components and weaknesses in the overall security posture of these applications. Enveloping your AI application components with runtime protection mechanisms helps you shield your model against misuse\u2014like prompt injection techniques to leak your customer data or attackers using your models to generate malware.<\/p>\n<p>The promises of AI can\u2019t be overstated. But the risks must be acknowledged with the same fervor to see it live up to its full potential. A comprehensive security solution will help you confidently build AI-powered apps by securing your journey to AI, from design to build to run.<\/p>\n<p>&nbsp;<\/p>\n<p><em>This article originally appeared on <a href=\"https:\/\/www.forbes.com\/sites\/forbestechcouncil\/2024\/07\/02\/the-promise-and-perils-of-building-ai-into-your-business-applications\/\" rel=\"nofollow,noopener\" >Forbes<\/a>.<\/em><\/p>\n<hr class=\"embed-base rule-embed color-accent border-solid weight-light\" \/>\n","protected":false},"excerpt":{"rendered":"<p>A comprehensive security solution will help you confidently build AI-powered apps by securing your journey to AI, from design to build to run.<\/p>\n","protected":false},"author":723,"featured_media":326305,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[6719,6724],"tags":[6613,7442],"coauthors":[7076],"class_list":["post-326303","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-company-culture","category-points-of-view","tag-ai","tag-thought-leadership"],"jetpack_featured_media_url":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-content\/uploads\/2024\/08\/AdobeStock_230441943-edit-Op1-2.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/326303","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/users\/723"}],"replies":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/comments?post=326303"}],"version-history":[{"count":4,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/326303\/revisions"}],"predecessor-version":[{"id":326320,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/326303\/revisions\/326320"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media\/326305"}],"wp:attachment":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media?parent=326303"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/categories?post=326303"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/tags?post=326303"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/coauthors?post=326303"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}