The Coalition for Secure AI (CoSAI) was officially announced today at the Aspen Security Forum. CoSAI is hosted by the OASIS global standards body, and offers an open-source initiative for giving practitioners and developers the guidance and tools needed to create Secure-by Design AI systems. CoSAI will specifically foster a collaborative ecosystem to share open-source methodologies, standardized frameworks and tools.
The group brings together a range of stakeholders, including industry leaders, academics and other experts, to address the fragmented AI security landscape.
CoSAI’s founding premier sponsors include Google, IBM, Intel, Microsoft, NVIDIA and PayPal. Additional founding sponsors include Amazon, Anthropic, Cisco, Chainguard, Cohere, GenLab, OpenAI and Wiz.
CoSAI is dedicated to enhancing trust and security in AI use and deployment; its scope includes securely building, integrating, deploying and operating AI systems, focusing on mitigating risks such as model theft, data poisoning, prompt injection, scaled abuse and inference attacks.
In all, the project aims to develop comprehensive security measures that address AI systems’ classical and unique risks.
CoSAI extends an open-source community led by a project governing board (advances and manages overall technical agenda) and a technical steering committee (AI experts from academia and industry to oversee workstreams).
With the support of industry leaders and experts, CoSAI is poised to make significant strides in establishing standardized practices that enhance AI security and build trust among stakeholders globally.
“CoSAI’s establishment was rooted in the necessity of democratizing the knowledge and advancements essential for the secure integration and deployment of AI,” said David LaBianca, Google, CoSAI governing board co-chair. “With the help of OASIS Open, we’re looking forward to continuing this work and collaboration among leading companies, experts, and academia.”
“We are committed to collaborating with organizations at the forefront of responsible and secure AI technology. Our goal is to eliminate redundancy and amplify our collective impact through key partnerships that focus on critical topics,” said Omar Santos, Cisco, CoSAI governing board co-chair. “At CoSAI, we will harness our combined expertise and resources to fast-track the development of robust AI security standards and practices that will benefit the entire industry.”
To start, CoSAI will form an initial three workstreams, with plans for more over time:
- Software supply chain security for AI systems, enhancing composition and provenance tracking to secure AI applications.
- Preparing defenders for a changing cybersecurity landscape, addressing investments and integration challenges in AI and classical systems.
- AI security governance, including developing best practices and risk assessment frameworks for AI security.
Everyone is welcome to contribute technically as part of the CoSAI open-source community. OASIS welcomes additional sponsorship support from companies involved in this space. Contact join@oasis-open.org for more information.