ChatGPT and Cyber Security
Cybersecurity Tactics for Safely Harnessing ChatGPT’s Capabilities
If you're unfamiliar with ChatGPT at this point, that is remarkable given the rapid and widespread rise in prominence of this generative AI service.
Organisations and even nation-states have been caught off guard and scrabbled to react, some taking draconian measures to ban ChatGPT altogether or other organisations and nations taking a more laissez-faire approach.
No wonder there is confusion in determining the right course to take. Let's review some of the guidance and see if making an informed decision is possible.
First, examine what the UK NCSC says about ChatGPT / Large Language Models (LLM).
The NCSC recommends:
- not to include sensitive information in queries to public LLMs like ChatGPT, but private LLMs may be a viable option.
- not to submit queries to public LLMs that would lead to issues were they made public.
Private LLMs can be offered by cloud providers or be entirely self-hosted. Self-hosted LLMs are expensive but might be suitable for handling sensitive organisational data after a thorough security assessment.
For cloud-provided LLMs, it's crucial to understand the terms of use, privacy policy, and how data is…
