Agencies release guidance on AI data security 

May 28, 2025 - 04:02 PM
An abstract image of cybersecurity graphics.

The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners May 22 released guidance on securing data used for artificial intelligence and machine learning systems. The guidance outlines potential risks from data integrity issues in various stages of AI development and usage, and it provides best practices to secure AI-based system data. Additionally, the guidance examines three significant areas of data security risks in AI systems — the data supply chain, maliciously modified or “poisoned” data and data drift.  

“This crucial reference guide, compiled by the world’s leading government AI experts, is a must-read for health care leaders involved in the governance, development or deployment of AI systems in their organizations,” said John Riggi, AHA national advisor for cybersecurity and risk. “The guide discusses specific methodologies to help ensure data security and integrity throughout the AI system lifecycle. These include starting with sourcing reliable data sets and employing immutability and encryption tools, along with digital signatures, to validate and record any trusted changes to AI systems and data.” 
 
For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
White House issues executive order for national AI framework 
The White House Dec. 11 issued an executive order to establish a national artificial intelligence framework to preempt state regulation. The order calls for…
Headline
CISA issues update on voluntary cybersecurity performance goals 
The Cybersecurity and Infrastructure Security Agency Dec. 11 released an update to its voluntary Cybersecurity Performance Goals, which includes measurable…
Headline
Agencies warn of state-sponsored cyberattacks from Russia, China
U.S. and international agencies are warning of potential cyberattacks on health care and other critical infrastructure from state-sponsored cyber actors in…
Headline
Agencies issue guidance on integrating AI in operational technology 
U.S. and international agencies Dec. 3 released guidance on integrating artificial intelligence into operational technology. The guidance is intended to…
Headline
CISA alerts of critical vulnerability impacting free program used for building user interfaces 
A critical, unauthenticated remote code execution vulnerability known as React2Shell has been added to the Cybersecurity and Infrastructure Security Agency’s…
Headline
HHS releases AI strategy for agency efforts
The Department of Health and Human Services Dec. 4 released its strategy on integrating artificial intelligence across internal operations, research and public…