Frontier AI: Six Questions Every Enterprise Should Ask Security Vendors


Artificial Intelligence

Frontier AI: Six Questions Every Enterprise Should Ask Security Vendors

From model selection and automation to validation and measurable results, the right questions can help enterprises separate genuine AI capabilities from marketing hype.


AI hack

Frontier AI is a popular topic of late. Indeed, the impact of Frontier AI to the way we identify, mitigate, and patch vulnerabilities is far reaching. It is nearly certain that the security profession will need to evolve as a result. That evolution already appears to be underway in many enterprises.

In my experience, enterprises have two high-level concerns around Frontier AI:

  1. Regarding their own applications, they are concerned that they will not be able to keep up with the increased pace of identifying, mitigating, and patching vulnerabilities
  2. Regarding their vendors, they want to understand how Frontier AI affects product security and how their vendors will leverage Frontier AI

The first concern is certainly an interesting topic, and perhaps I’ll discuss in a future piece. In this piece, I’d like to focus on the second concern. Namely, with so much hype around Frontier AI and so many vendors speaking to it, how can enterprises make sense of the noise? In my experience, this involves probing vendors, questioning their claims, and digging a bit deeper to understand where they really are (versus where they say they are). There are probably many angles enterprises can take to accomplish this, but here are a few that I’ve found helpful:

  • Model Providers: It seems that working with Frontier AI model providers has become a bit of a status symbol in the security industry. Sadly, some in the industry have taken to stating that they are working with one or more model providers that they may not actually be working with. In general, misrepresentation is a bad idea, but it is an especially bad idea when it comes to a sensitive topic like product security. Enterprises need to push their vendors to understand with whom, exactly, they are working and what, specifically, they are doing with them. If the answers seem vague, non-commital, or circular, then that is something the enterprise should question.
  • Models: While there are a small number of Frontier AI model providers, there are a large number of different models. It is worth an enterprise probing their vendors a bit to understand what specific models they are working with. Different models vary widely in capabilities, limitations, effectiveness, true positives, and false positives. As such, it is too easy for a vendor to make it sound as if they are far more empowered than they actually are.
  • Automation: We all love automation, and rightfully so. As the pace of vulnerability identification speeds up, automation becomes an essential component to the process. As such, vendors will be rushing to say that they have automated the process around Frontier AI. But can they possibly be as automated as they say they are? Frontier AI is a relatively new area that is rapidly developing and maturing. Because of this, there are growing pains, false positives, and gotchas that the security community is new to. It is certainly possible to automate important pieces of the vulnerability identification, mitigation, and patching process, but be on high alert when a vendor tells you that they’ve automated the entire process or the vast majority of it.
  • Context: Context is king for so many things, Frontier AI included. As amazing a technology as it is, an organization cannot simply throw a bunch of code at a Frontier AI model and expect results. Code needs to be harnessed before it can be input into the model. The better the harnessing, the better the results. So while it is possible for a vendor to claim that they are working with Frontier AI, it is worth understanding more about how they are doing so to ensure good results.
  • Results: On the topic of results, how can an enterprise know if a given vendor is getting real results from using Frontier AI? While this is a complex and difficult question, some of the points above are a good place to start. Beyond that, the vendor should be able to articulate metrics around true positives and false positives, quantities of real vulnerabilities, time to mitigate and/or patch, and other important metrics. There should be some substance behind the claim of good results – not just lip service.
  • Vetting/Validation/Verification: Like any technology, Frontier AI can be prone to false positives. This is not a bad thing necessarily – sometimes finding novel vulnerabilities and exploits requires taking chances that might also lead to some false positives. The question is how the vendor handles those false positives. Are they taking the time to vet, validate, and verify that a vulnerability is real? Are they also taking time to vet, validate, and verify that the fix is effective and does not introduce operational issues or even additional vulnerabilities? The vendor should be able to address these and other questions around vetting, validation, and verification. If they can’t, that should give the enterprise some pause.

One of my favorite Nietzsche quotes aptly states that “The truth doesn’t mind being questioned. A lie doesn’t like being challenged.” It amazes me how often I encounter statements that fall apart with just one follow-up question, one fact, and/or one grain of truth. The vendor-customer relationship is fundamentally built upon trust. It is paramount that vendors be open, transparent, and honest with their customers around all topics, but particularly around the important matter of product security. Not doing so should be unpalatable to any serious security professional.

Learn More at the AI Risk Summit | Ritz-Carlton, Half Moon Bay

Written By

Joshua Goldfarb (Twitter: @ananalytical) is currently Field CISO at F5. Previously, Josh served as VP, CTO – Emerging Technologies at FireEye and as Chief Security Officer for nPulse Technologies until its acquisition by FireEye. Prior to joining nPulse, Josh worked as an independent consultant, applying his analytical methodology to help enterprises build and enhance their network traffic analysis, security operations, and incident response capabilities to improve their information security postures. He has consulted and advised numerous clients in both the public and private sectors at strategic and tactical levels. Earlier in his career, Josh served as the Chief of Analysis for the United States Computer Emergency Readiness Team (US-CERT) where he built from the ground up and subsequently ran the network, endpoint, and malware analysis/forensics capabilities for US-CERT.

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing for the latest cybersecurity threats, trends, and expert
insights.

(function () {
var SOURCE = “Article”;
var TARGET = “#sw-hs-form-article-1”;

function create() {
if (typeof hbspt === ‘undefined’ || !hbspt.forms) return false;
hbspt.forms.create({
portalId: “5319632”,
formId: “05a88e2a-0d52-4b0c-a0e2-fdb79a8d17e0”,
region: “na1”,
target: TARGET,
cssClass: “sw-hs-article”,
hiddenFields: { email_signup_source: SOURCE },
onFormReady: function () {
var root = document.querySelector(TARGET);
if (!root) return;

// Namespace input ids (and any label[for] / aria-*
// refs that point to them) to make them unique per
// embed. HubSpot derives ids from the form id, so
// every embed on a page emits the same hsForm_/email-/
// label-email- ids. Duplicate input ids break the
// getElementById validation lookups that cause the
// “click Subscribe several times before it works”
// symptom (validation reads the wrong form’s empty
// input).
//
// CRITICAL: only rename inputs. Do NOT touch the
// id or the label ids. HubSpot’s submit-
// response routing uses the form id to pick which
// embed receives the success message; renaming the
// form id makes the success message land in the
// wrong form.
var suffix = ‘-‘ + SOURCE.toLowerCase();
var idMap = {};
root.querySelectorAll(‘input[id]’).forEach(function (input) {
if (input.id.slice(-suffix.length) === suffix) return;
var oldId = input.id;
idMap[oldId] = oldId + suffix;
input.id = idMap[oldId];
});
root.querySelectorAll(‘[for]’).forEach(function (el) {
if (idMap[el.htmlFor]) el.htmlFor = idMap[el.htmlFor];
});
[‘aria-labelledby’, ‘aria-describedby’, ‘aria-controls’].forEach(function (attr) {
root.querySelectorAll(‘[‘ + attr + ‘]’).forEach(function (el) {
var val = el.getAttribute(attr);
if (val && idMap[val]) el.setAttribute(attr, idMap[val]);
});
});

var email = root.querySelector(‘input[name=”email”]’);
if (email && !email.placeholder) {
email.placeholder = ‘Business Email Address…’;
}
// hiddenFields is honored in raw-HTML mode; restamp anyway
// in case anything resets the value before submit.
var src = root.querySelector(‘input[name=”email_signup_source”]’);
if (src) {
src.value = SOURCE;
src.dispatchEvent(new Event(‘input’, { bubbles: true }));
src.dispatchEvent(new Event(‘change’, { bubbles: true }));
}
},
onFormSubmit: function () {
document.dispatchEvent(new CustomEvent(‘sw:newsletter:submitted’, {
detail: { position: SOURCE }
}));
}
});
return true;
}

if (!create()) {
var attempts = 0;
var t = setInterval(function () {
attempts++;
if (create() || attempts > 50) clearInterval(t);
}, 100);
}
})();

Trending

{“title”:”Trending”,”limit”:”8″,”offset”:0,”range”:”custom”,”time_quantity”:”48″,”time_unit”:”hour”,”freshness”:false,”order_by”:”views”,”post_type”:”post”,”pid”:””,”exclude”:””,”cat”:””,”taxonomy”:”category”,”term_id”:””,”author”:””,”shorten_title”:{“active”:false,”length”:0,”words”:false},”post-excerpt”:{“active”:false,”length”:0,”keep_format”:false,”words”:false},”thumbnail”:{“active”:false,”build”:”manual”,”width”:0,”height”:0},”rating”:false,”stats_tag”:{“comment_count”:false,”views”:false,”author”:false,”date”:{“active”:false,”format”:”F j, Y”},”category”:false,”taxonomy”:{“active”:false,”name”:”category”}},”markup”:{“custom_html”:true,”wpp-start”:”<div class=”zox-widget-side-trend-wrap popular-post-list left zoxrel zox100″>”,”wpp-end”:”</div>”,”title-start”:”<div class=”zox-widget-side-head”><h4 class=”zox-widget-side-title”><span class=”zox-widget-side-title”>”,”title-end”:”</span></h4>”,”post-html”:”<section class=”zox-art-wrap zoxrel zox-art-small”><div class=”zox-art-grid”><div class=”zox-art-text”><div class=”zox-art-title”><h2 class=”zox-s-title3″>{title}</h2></a></div></div></div></section>”},”theme”:{“name”:””}}

if (!window.AdButler){(function(){var s = document.createElement(“script”); s.async = true; s.type = “text/javascript”;s.src = ‘https://ads.securityweek.com/app.js’;var n = document.getElementsByTagName(“script”)[0]; n.parentNode.insertBefore(s, n);}());}var AdButler = AdButler || {}; AdButler.ads = AdButler.ads || [];var abkw = window.abkw || ”;var plc686138 = window.plc686138 || 0;document.write(‘‘);AdButler.ads.push({handler: function(opt){ AdButler.register(179018, 686138, [300,600], ‘placement_686138_’+opt.place, opt); }, opt: { place: plc686138++, keywords: abkw, domain: ‘ads.securityweek.com’, click:’CLICK_MACRO_PLACEHOLDER’ }});

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

(function () {
var SOURCE = “Widget”;
var TARGET = “#sw-hs-form-widget-2”;

function create() {
if (typeof hbspt === ‘undefined’ || !hbspt.forms) return false;
hbspt.forms.create({
portalId: “5319632”,
formId: “05a88e2a-0d52-4b0c-a0e2-fdb79a8d17e0”,
region: “na1”,
target: TARGET,
cssClass: “sw-hs-widget”,
hiddenFields: { email_signup_source: SOURCE },
onFormReady: function () {
var root = document.querySelector(TARGET);
if (!root) return;

// Namespace input ids (and any label[for] / aria-*
// refs that point to them) to make them unique per
// embed. HubSpot derives ids from the form id, so
// every embed on a page emits the same hsForm_/email-/
// label-email- ids. Duplicate input ids break the
// getElementById validation lookups that cause the
// “click Subscribe several times before it works”
// symptom (validation reads the wrong form’s empty
// input).
//
// CRITICAL: only rename inputs. Do NOT touch the
// id or the label ids. HubSpot’s submit-
// response routing uses the form id to pick which
// embed receives the success message; renaming the
// form id makes the success message land in the
// wrong form.
var suffix = ‘-‘ + SOURCE.toLowerCase();
var idMap = {};
root.querySelectorAll(‘input[id]’).forEach(function (input) {
if (input.id.slice(-suffix.length) === suffix) return;
var oldId = input.id;
idMap[oldId] = oldId + suffix;
input.id = idMap[oldId];
});
root.querySelectorAll(‘[for]’).forEach(function (el) {
if (idMap[el.htmlFor]) el.htmlFor = idMap[el.htmlFor];
});
[‘aria-labelledby’, ‘aria-describedby’, ‘aria-controls’].forEach(function (attr) {
root.querySelectorAll(‘[‘ + attr + ‘]’).forEach(function (el) {
var val = el.getAttribute(attr);
if (val && idMap[val]) el.setAttribute(attr, idMap[val]);
});
});

var email = root.querySelector(‘input[name=”email”]’);
if (email && !email.placeholder) {
email.placeholder = ‘Business Email Address…’;
}
// hiddenFields is honored in raw-HTML mode; restamp anyway
// in case anything resets the value before submit.
var src = root.querySelector(‘input[name=”email_signup_source”]’);
if (src) {
src.value = SOURCE;
src.dispatchEvent(new Event(‘input’, { bubbles: true }));
src.dispatchEvent(new Event(‘change’, { bubbles: true }));
}
},
onFormSubmit: function () {
document.dispatchEvent(new CustomEvent(‘sw:newsletter:submitted’, {
detail: { position: SOURCE }
}));
}
});
return true;
}

if (!create()) {
var attempts = 0;
var t = setInterval(function () {
attempts++;
if (create() || attempts > 50) clearInterval(t);
}, 100);
}
})();

Join this live webinar as we break down why email-layer defenses alone can’t keep pace with the modern phishing ecosystem, how agentic AI is changing the capacity equation for security teams, and more.

Register

This year’s summit will help organizations learn how to utilize tools, controls, and design models needed to properly secure cloud environments. Interact with leading solution providers and other end users facing similar challenges in securing a variety of cloud deployments.

Register

People on the Move

Tracey Mustacchio has joined Everfox as Chief Marketing Officer.

Mark Carter has been appointed Chief Information Security Officer at Socure.

Spektrum Labs has named Mark Cravotta Chief Operating Officer.

More People On The Move

Expert Insights

jQuery(document).ready(function($) {
$(“.zox-soc-stat-click-47580”).on(“click”, function(){
$(“.zox-more-click-47580”).toggleClass(“zox-soc-more-open”);
});
});

window.dataLayer = window.dataLayer || [];
dataLayer.push({
‘event’: ‘authorData’,
‘author’: ‘Joshua Goldfarb’,
});

Deixe um comentário

O seu endereço de e-mail não será publicado. Campos obrigatórios são marcados com *

Rolar para cima