Starting this thread for the community to list resources and discuss security best practices for our digital brains.
Attached is a basic overview of security considerations when hosting a digital brain with Amazon’s AWS service. Most of this is broadly applicable to wherever you decided to host your digital brain.
Summary:
-
The first component is the security of the place you are hosting. If you are hosting locally then that means your computer and network where you are hosting. If you are hosting on a cloud provider then this means the security offered by the cloud provider.
-
If you are using a hosting provider to host your digital brain, then you also have a responsibility to follow best practices for setting up and administering your environment within that managed hosting provider.
Here is a good image from the document that gives a summary of the above two areas:
- Then there are the data privacy controls to make sure that no unauthorized users get access to your data and that it is not possible for it to be used to train the underlying AI models you are using for the intelligence component of your digital brain. Private clouds offered by hosting services like AWS are designed to help with this.
answering-your-4-biggest-questions-about-generative-ai-security.pdf (1.7 MB)