Agencies release guidance on AI data security 

May 28, 2025 - 04:02 PM
An abstract image of cybersecurity graphics.

The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners May 22 released guidance on securing data used for artificial intelligence and machine learning systems. The guidance outlines potential risks from data integrity issues in various stages of AI development and usage, and it provides best practices to secure AI-based system data. Additionally, the guidance examines three significant areas of data security risks in AI systems — the data supply chain, maliciously modified or “poisoned” data and data drift.  

“This crucial reference guide, compiled by the world’s leading government AI experts, is a must-read for health care leaders involved in the governance, development or deployment of AI systems in their organizations,” said John Riggi, AHA national advisor for cybersecurity and risk. “The guide discusses specific methodologies to help ensure data security and integrity throughout the AI system lifecycle. These include starting with sourcing reliable data sets and employing immutability and encryption tools, along with digital signatures, to validate and record any trusted changes to AI systems and data.” 
 
For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
Senate holds hearing on health care cybersecurity and patient privacy
In a statement submitted to the Senate Health, Education, Labor and Pensions Committee for a hearing today on health care cybersecurity and patient privacy,…
Headline
AHA podcast: When Cyberattacks Strike — Is Your Board Ready?
Cyberattacks on hospitals are urgent threats to patient safety, care delivery and public trust. In this conversation, Ajay Gupta, board chair of Trinity Health…
Headline
FDA announces software patch available for Contec, Epsimed patient monitors to address vulnerabilities
The Food and Drug Administration yesterday released a safety notice announcing a software patch is available to address cybersecurity vulnerabilities in…
Headline
Agencies release fact sheet on potential of malicious activity by Iranian cyber actors 
The Cybersecurity and Infrastructure Security Agency, FBI, Department of Defense Cyber Crime Center and the National Security Agency June 30 released a fact…
Headline
CMS announces new prior authorization program pilot
The Centers for Medicare & Medicaid Services June 27 announced the rollout of a 6-year technology-enabled prior authorization program pilot. Through…
Headline
CMS warns of phishing fax scheme; AHA monitoring other reported social engineering schemes 
The Centers for Medicare & Medicaid Services today announced it has identified a fraud scheme targeting Medicare providers and suppliers. CMS said scammers…