Loading…
June 26-27, 2024 | Seattle, WA
View More Details | Registration Information

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for CloudNativeSecurityCon North America 2024 to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Daylight Time (PDT), UTC -7. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

The schedule is subject to change.
← Back to schedule
Threat Modeling for AI Apps with Attacks as Code - Priyanka Tembey, Operant & Glenn McDonald, Operant AI
Wednesday June 26, 2024 2:45pm - 3:20pm PDT
Ballroom 2-3
While AI presents an opportunity to innovate across domains, we are learning that it also presents unknown threat vectors that are constantly evolving. So what does threat-modeling look like for today's AI apps? OWASP LLM risks or MITRE ATLAS framework are emerging that list attack TTPs for AI apps. However these are baseline frameworks that need to be customized to each organization's needs. Furthermore, secure behavior of AI apps needs continuous verification as they're built on top of 3rd party models which are untrusted black boxes, but are deeply plugged into organizational data, IP, and internal APIs - highlighting the need to add threat modeling as part of an AI app’s CI/CD vs doing it infrequently. This talk will describe how to automate threat modeling for AI apps using Secops-Chaos- an open source framework that helps encode TTPs as security focused experiments, with hands-on demos of how to map some of the MITRE ATLAS TTPs to AI apps running within Kubernetes environments.
Speakers
avatar for Priyanka Tembey

Priyanka Tembey

Co-founder and CTO, Operant
A technologist with a PhD in distributed systems and optimization from Georgia Tech, Priyanka has spent over 10 years as a software engineer at the forefront of cloud-native technologies. Priyanka was one of the foundational engineers to build out VMware's hybrid cloud product architecting... Read More →
avatar for Glenn McDonald

Glenn McDonald

Software Engineer, Operant
Glenn McDonald is a Software Engineer at Operant, bringing a broad industry experience from Cloud Providers to Financial Services. Specializing in Cloud Native architecture and Application Security, with a keen interest in exploring emerging technologies.
CNSCon Talk 2024 SecopsChaos pdf
Wednesday June 26, 2024 2:45pm - 3:20pm PDT
Ballroom 2-3
  Leveraging + Preparing for AI In Cloud Security
Feedback form is now closed.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Tweet Share
Share Modal

Share this link via

Or copy link