Agencies release guidance on AI data security 

May 28, 2025 - 04:02 PM
An abstract image of cybersecurity graphics.

The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners May 22 released guidance on securing data used for artificial intelligence and machine learning systems. The guidance outlines potential risks from data integrity issues in various stages of AI development and usage, and it provides best practices to secure AI-based system data. Additionally, the guidance examines three significant areas of data security risks in AI systems — the data supply chain, maliciously modified or “poisoned” data and data drift.  

“This crucial reference guide, compiled by the world’s leading government AI experts, is a must-read for health care leaders involved in the governance, development or deployment of AI systems in their organizations,” said John Riggi, AHA national advisor for cybersecurity and risk. “The guide discusses specific methodologies to help ensure data security and integrity throughout the AI system lifecycle. These include starting with sourcing reliable data sets and employing immutability and encryption tools, along with digital signatures, to validate and record any trusted changes to AI systems and data.” 
 
For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
Guidance offers steps to create, maintain operational technology asset inventory for protection
The Cybersecurity and Infrastructure Security Agency, Environmental Protection Agency, National Security Agency, FBI and international agencies Aug. 13…
Headline
White House revokes executive order on competition from previous administration
The Trump administration Aug. 13 issued an executive order revoking a 2021 order by the previous administration that established a “whole-of-government” effort…
Headline
DOJ announces disruption of BlackSuit ransomware group 
The Department of Justice Aug. 11 announced a series of actions taken against the BlackSuit ransomware group, also known as “Royal,” including the disruption…
Headline
NIH issues guidance on AI use in research application process
The National Institutes of Health Aug. 5 issued guidance to researchers on the use of artificial intelligence for the research application process. According…
Headline
Tactics by Scattered Spider cybercriminals highlighted in joint advisory 
The FBI, Cybersecurity and Infrastructure Security Agency and international agencies July 29 released a joint advisory on recent tactics by the Scattered…
Headline
Microsoft says China-based threat actors behind SharePoint attacks 
Microsoft July 22 released an update on the ongoing cyberattacks to SharePoint servers used within organizations, attributing the incidents to China-based…