ENISA explores cybersecurity of AI and standardisation
In a recently published report on AI, cybersecurity and standardisation, ENISA provides an overview of standards (existing, being drafted, under consideration and planned) related to the cybersecurity of artificial intelligence (AI), assesses their coverage, and identifies gaps in standardisation. It also looks at how standardisation can support the implementation of the cybersecurity aspects embedded in the draft AI Act.
The European Union Agency for Cybersecurity (ENISA) published a report titled ‘Cybersecurity of AI and Standardisation’ exploring cybersecurity issues related to artificial intelligence (AI) and the importance of technical standards.
The report looks at existing general-purpose standards for information security and quality management in the context of AI, and notes that, as a starting point, ‘what is applicable to software could be applicable to AI’. At the same time, it calls for further guidance to help the user community benefit from the existing standards on A, recommends resorting to a standardised AI terminology for cybersecurity, and encourages strengthened cooperation and coordination across standards organisations’ technical committees on cybersecurity and AI.
Lastly, the report argues that standardisation can support the implementation of the cybersecurity aspects embedded in the proposed EU AI Act.