Artificial Intelligence Security Incident Response Team (AISIRT)

2023

In November 2023, the Software Engineering Institute (SEI) developed the first Artificial Intelligence Security Incident Response Team (AISIRT) to respond to the risks associated with artificial intelligence (AI) that can pose a threat to national security. The AISIRT identifies, analyzes, and responds to the threats, vulnerabilities, and incidents that emerge from the ongoing advances in AI and machine learning (ML) and supports the Department of Defense (DoD) and other federal agencies in effectively and securely developing, adopting, and using AI.

The SEI, as a national leader in cybersecurity and coordinated vulnerability disclosure (CVD), leverages its decades of expertise to strengthen both the work and operations of the AISIRT.

Through the AISIRT, the SEI has—amongst other things—worked with the developers of a large language model (LLM) to prevent time-based jailbreak attacks after a jailbreak vulnerability was reported; helped address a GPU API vulnerability related to GPU memory management; and collaborated with a vendor to implement security measures to mitigate vulnerabilities related to remote code execution via prompt injection.

Learn more about the AISIRT here.