Resilient Cyber Resilient Cyber w/ Helen Oakley - Exploring the AI Supply Chain
Oct 8, 2024
Helen Oakley, an expert in software supply chain security at SAP, discusses the complexities of securing AI supply chains in a rapidly evolving landscape. She highlights the need for transparency and risk assessment to mitigate vulnerabilities. Oakley introduces the concept of AI-BOMs, which provide critical insights into AI models and datasets, and contrasts them with traditional SBOMs. The conversation also touches on the implications of AI regulations in the U.S. and EU, underscoring compliance challenges in high-stakes sectors like healthcare and finance.
AI Snips
Chapters
Transcript
Episode notes
Starting with AI
- Understand the AI models you adopt and their associated risks.
- Review the model's ethics and potential impact on your company.
AI Supply Chain vs. Traditional Software Supply Chain
- Traditional software supply chains have static snapshots, changing only with new builds.
- AI supply chains are dynamic, with models constantly training and changing in runtime.
Open Source and Third-Party AI Models
- Carefully review third-party and open-source AI models for vulnerabilities.
- Understand the potential impact on your organization and its IP.