Cybersecurity certification of Artificial Intelligence: a missed opportunity to coordinate between the Artificial Intelligence Act and the Cybersecurity Act

Casarosa, Federica

doi:10.1365/s43439-021-00043-6

Cited by 3 publications

(3 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The trojan mimicks natural SolarWinds API communication, which then enables it to connect to a domain that is controlled by the adversary, a so called command and control domain (C2). The trojan then tries to determine which security software resides on the hardware it is currently placed in, which it does locally and with great efficiency 8 . Even if it finds any of these, it will not exit because of it, instead checking for whether they are active, and whenever they are not, the trojan will disable the security software on the next power cycle in the Windows registry which it creates access to.…”

Section: Sunburst Backdoormentioning

confidence: 99%

“…This act deserves its own paper for further security analysis, but it is relevant to discuss which influence it has the practical and real measures to mitigate Supply Chain Attacks 17. Regulation 2019/88118 See additional analysis by[23,8] 19. See Art 3 and 4 of the Act 20.…”

mentioning

confidence: 99%

“…See Art 3 and 4 of the Act 20. See Art 56(8) 21. This depends on whether one views certification as an effective measure to increase security and prevent Supply Chain Attacks, or whether one prefers hard legal remedies and obligations 22.…”

mentioning

confidence: 99%

See 2 more Smart Citations

Preventing or Mitigating Adversarial Supply Chain Attacks; a legal analysis

Ludvigsen¹,

Nagaraja²,

Daly³

2022

Preprint

View full text Add to dashboard Cite

The world is currently strongly connected through both the internet at large, but also the very supply chains which provide everything from food to infrastructure and technology. The supply chains are themselves vulnerable to adversarial attacks, both in a digital and physical sense, which can disrupt or at worst destroy them. In this paper, we take a look at two examples of such successful attacks and consider what their consequences may be going forward, and analyse how EU and national law can prevent these attacks or otherwise punish companies which do not try to mitigate them at all possible costs. We find that the current types of national regulation are not technology specific enough, and cannot force or otherwise mandate the correct parties who could play the biggest role in preventing supply chain attacks to do everything in their power to mitigate them. But, current EU law is on the right path, and further vigilance may be what is necessary to consider these large threats, as national law tends to fail at properly regulating companies when it comes to cybersecurity.

show abstract

Section: Sunburst Backdoormentioning

confidence: 99%

mentioning

confidence: 99%

See 1 more Smart Citation

Preventing or Mitigating Adversarial Supply Chain Attacks; a legal analysis

Ludvigsen¹,

Nagaraja²,

Daly³

2022

Preprint

View full text Add to dashboard Cite

show abstract

Cybersecurity and Democracy: A Review

Roumpies,

Kakarountas

2023

2023 8th South-East Europe Design Automation, Computer Engineering, Computer Networks and Social Media Conference (SEEDA-CECNSM

View full text Add to dashboard Cite

The Future of Behavioral Economics: AI Tools in the Digital Space

Turlakova,

Shumilo,

Lohvinenko

2024

View full text Add to dashboard Cite

The purpose of this research is to substantiate and develop conceptual provisions along with an array of economic and mathematical models, as well as re commendations for managing the economic agents’ behavior in the digital space using artifi cial intelligence tools. The main result is an array of economic and mathematical models and practical recommendations for increasing the opportunities and reducing the threats of using artifi cial intelligence tools, which form the scientifi c basis for managing the behavior of economic agents in the digital space. For government authorities and management, organizations and enterprises, as well as for researchers, teachers, postgraduate students, students, all those who are interested in the problems of behavioral and digital economics.

show abstract

Cybersecurity certification of Artificial Intelligence: a missed opportunity to coordinate between the Artificial Intelligence Act and the Cybersecurity Act

Cited by 3 publications

References 10 publications

Preventing or Mitigating Adversarial Supply Chain Attacks; a legal analysis

Preventing or Mitigating Adversarial Supply Chain Attacks; a legal analysis

Cybersecurity and Democracy: A Review

The Future of Behavioral Economics: AI Tools in the Digital Space

Contact Info

Product

Resources

About