Cisco Announces Radical Approach to AI SecurityBy John P. Mello Jr.January 21, 2025 5:00 AM PT ADVERTISEMENTQuality Leads That Turn Into DealsFull-service marketing programs from TechNewsWorld deliver sales-ready leads. Segment by geography, industry, company size, job title, and more. Get Started Now. Cisco is taking a radical approach to AI security in its new AI Defense solution.In an exclusive interview Sunday with Rowan Cheung of The Rundown AI, Cisco Executive Vice President and CPO Jeetu Patel said that AI Defense is taking a radical approach to address the challenges that existing security solutions are not equipped to handle.AI Defense, announced last week, aims to address risks in developing and deploying AI applications, as well as identifying where AI is used in an organization.AI Defense can protect AI systems from attacks and safeguard model behavior across platforms with features such as:Detection of shadow and sanctioned AI applications across public and private clouds;Automated testing of AI models for hundreds of potential safety and security issues; andContinuous validation safeguards against potential safety and security threats, such as prompt injection, denial of service, and sensitive data leakage.The solution also allows security teams to better protect their organizations data by providing a comprehensive view of AI apps used by employees, create policies that restrict access to unsanctioned AI tools, and implement safeguards against threats and confidential data loss while ensuring compliance.The adoption of AI exposes companies to new risks that traditional cybersecurity solutions dont address, Kent Noyes, global head of AI and cyber innovation at technology services company World Wide Technology in St. Louis, said in a statement. Cisco AI Defense represents a significant leap forward in AI security, providing full visibility of an enterprises AI assets and protection against evolving threats.Positive Step for AI SecurityMJ Kaufmann, an author and instructor at OReilly Media, operator of a learning platform for technology professionals, in Boston, affirmed Ciscos analysis of existing cybersecurity solutions. Cisco is right, she told TechNewsWorld. Existing tools fail to address many operationally driven attacks against AI systems, such as prompt injection attacks, data leakage, and unauthorized model action.Implementers must take action and implement targeted solutions to address them, she added.Cisco is in a unique position to provide this kind of solution, noted Jack E. Gold, founder and principal analyst at J.Gold Associates, an IT advisory company in Northborough, Mass. Thats because they have a lot of data from their networking telemetry that can be used to reinforce the AI capabilities they want to protect, he told TechNewsWorld.Cisco also wants to provide security across platforms on-premises, cloud, and multi-cloud and across models, he added.Itll be interesting to see how many companies adopt this, he said. Cisco is certainly moving in the right direction with this kind of capability because companies, generally speaking, arent looking at this very effectively.Providing multi-model, multi-cloud protection is important for AI security.Multi-model, multi-cloud AI solutions expand an organizations attack surface by introducing complexity across disparate environments with inconsistent security protocols, multiple data transfer points, and challenges in coordinating monitoring and incident response factors that threat actors can more easily exploit, Patricia Thaine, CEO and co-founder of Private AI, a data security and privacy company in Toronto, told TechNewsWorld.Concerning LimitationsAlthough Ciscos approach of embedding security controls at the network layer through their existing infrastructure mesh shows promise, it also reveals concerning limitations, maintained Dev Nag, CEO and founder of QueryPal, a customer support chatbot based in San Francisco.While network-level visibility provides valuable telemetry, many AI-specific attacks occur at the application and model layers that network monitoring alone cannot detect, he told TechNewsWorld.The acquisition of Robust Intelligence last year gives Cisco important capabilities around model validation and runtime protection, but their focus on network integration may lead to gaps in securing the actual AI development lifecycle, he said. Critical areas like training pipeline security, model supply chain verification, and fine-tuning guardrails require deep integration with MLOps tooling that goes beyond Ciscos traditional network-centric paradigm. Think about the headaches weve seen with open-source supply chain attacks where the offending code is openly visible, he added. Model supply chain attacks are almost impossible to detect by comparison.Nag noted that from an implementation perspective, Cisco AI Defense appears to be primarily a repackaging of existing security products with some AI-specific monitoring capabilities layered on top.While their extensive deployment footprint provides advantages for enterprise-wide visibility, the solution feels more reactive than transformative for now, he maintained. For some organizations beginning their AI journey that are already working with Cisco security products, Cisco AI Defense may provide useful controls, but those pursuing advanced AI capabilities will likely need more sophisticated security architectures purpose-built for machine learning systems.For many organizations, mitigating AI risks requires human penetration testers who understand how to ask the models questions that elicit sensitive information, added Karen Walsh, CEO of Allegro Solutions, a cybersecurity consulting company in West Hartford, Conn.Ciscos release suggests that their ability to create model-specific guardrails will mitigate these risks to keep the AI from learning on bad data, responding to malicious requests, and sharing unintended information, she told TechNewsWorld. At the very least, we could hope that this would identify and mitigate baseline issues so that pen testers could focus on more sophisticated AI compromise strategies.Critical Need in the Path to AGIKevin Okemwa, writing for Windows Central, notes that the launch of AI Defense couldnt come at a better time as the major AI labs are closing in on producing true artificial general intelligence (AGI), which is supposed to replicate human intelligence.As AGI gets closer with each passing year, the stakes couldnt be higher, said James McQuiggan, a security awareness advocate at KnowBe4, a security awareness training provider in Clearwater, Fla. AGIs ability to think like a human with intuition and orientation can revolutionize industries, but it also introduces risks that could have far-reaching consequences, he told TechNewsWorld. A robust AI security solution ensures that AGI evolves responsibly, minimizing risks like rogue decision-making or unintended consequences.AI security isnt just a nice-to-have or something to think about in the years to come, he added. Its critical as we move toward AGI.Existential Doom?Okemwa also wrote: While AI Defense is a step in the right direction, its adoption across organizations and major AI labs remains to be seen. Interestingly, the OpenAI CEO [Sam Altman] acknowledges the technologys threat to humanity but believes AI will be smart enough to prevent AI from causing existential doom.I see some optimism about AIs ability to self-regulate and prevent catastrophic outcomes, but I also notice in the adoption that aligning advanced AI systems with human values is still an afterthought rather than an imperative, Adam Ennamli, chief risk and security officer at the General Bank of Canada told TechNewsWorld.The notion that AI will solve its own existential risks is dangerously optimistic, as demonstrated by current AI systems that can already be manipulated to create harmful content and bypass security controls, added Stephen Kowski, field CTO at SlashNext, a computer and network security company, in Pleasanton, Calif.Technical safeguards and human oversight remain essential since AI systems are fundamentally driven by their training data and programmed objectives, not an inherent desire for human well-being, he told TechNewsWorld.Human beings are pretty creative, Gold added. I dont buy into this whole doomsday nonsense. Well figure out a way to make AI work for us and do it safely. Thats not to say there wont be issues along the way, but were not all going to end up in The Matrix.John P. Mello Jr. has been an ECT News Network reporter since 2003. His areas of focus include cybersecurity, IT issues, privacy, e-commerce, social media, artificial intelligence, big data and consumer electronics. He has written and edited for numerous publications, including the Boston Business Journal, the Boston Phoenix, Megapixel.Net and Government Security News. Email John.Leave a CommentClick here to cancel reply. Please sign in to post or reply to a comment. New users create a free account.Related StoriesMore by John P. Mello Jr.view allMore in Artificial Intelligence