Tag: threat model
-
Cloud Blog: Announcing quantum-safe digital signatures in Cloud KMS
Source URL: https://cloud.google.com/blog/products/identity-security/announcing-quantum-safe-digital-signatures-in-cloud-kms/ Source: Cloud Blog Title: Announcing quantum-safe digital signatures in Cloud KMS Feedly Summary: The continued advancement of experimental quantum computing has raised concerns about the security of many of the world’s widely-used public-key cryptography systems. Crucially, there exists the potential for sufficiently large, cryptographically-relevant quantum computers to break these algorithms. This potential…
-
Hacker News: Syd: An Introduction to Secure Application Sandboxing for Linux [video]
Source URL: https://fosdem.org/2025/schedule/event/fosdem-2025-4176-syd-an-introduction-to-secure-application-sandboxing-for-linux/ Source: Hacker News Title: Syd: An Introduction to Secure Application Sandboxing for Linux Feedly Summary: Comments AI Summary and Description: Yes Summary: The text introduces Syd, a GPL-3 licensed application kernel for Linux, designed for securing applications through advanced sandboxing techniques. Its modern architecture and features address critical vulnerabilities and enhance security…
-
CSA: Agentic AI Threat Modeling Framework: MAESTRO
Source URL: https://cloudsecurityalliance.org/blog/2025/02/06/agentic-ai-threat-modeling-framework-maestro Source: CSA Title: Agentic AI Threat Modeling Framework: MAESTRO Feedly Summary: AI Summary and Description: Yes Summary: The text presents MAESTRO, a novel threat modeling framework tailored for Agentic AI, addressing the unique security challenges associated with autonomous AI agents. It offers a layered approach to risk mitigation, surpassing traditional frameworks such…
-
CSA: Ensure Secure Software with CCM Application Security
Source URL: https://cloudsecurityalliance.org/blog/2025/02/05/implementing-ccm-ensure-secure-software-with-the-application-and-interface-security-domain Source: CSA Title: Ensure Secure Software with CCM Application Security Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses the Cloud Security Alliance’s (CSA) Cloud Controls Matrix (CCM), specifically focusing on the Application & Interface Security (AIS) domain. It outlines the importance of securing applications and interfaces in cloud environments…
-
Simon Willison’s Weblog: Constitutional Classifiers: Defending against universal jailbreaks
Source URL: https://simonwillison.net/2025/Feb/3/constitutional-classifiers/ Source: Simon Willison’s Weblog Title: Constitutional Classifiers: Defending against universal jailbreaks Feedly Summary: Constitutional Classifiers: Defending against universal jailbreaks Interesting new research from Anthropic, resulting in the paper Constitutional Classifiers: Defending against Universal Jailbreaks across Thousands of Hours of Red Teaming. From the paper: In particular, we introduce Constitutional Classifiers, a framework…
-
The Register: Google to Iran: Yes, we see you using Gemini for phishing and scripting. We’re onto you
Source URL: https://www.theregister.com/2025/01/31/state_spies_google_gemini/ Source: The Register Title: Google to Iran: Yes, we see you using Gemini for phishing and scripting. We’re onto you Feedly Summary: And you, China, Russia, North Korea … Guardrails block malware generation Google says it’s spotted Chinese, Russian, Iranian, and North Korean government agents using its Gemini AI for nefarious purposes,…
-
CSA: How Can CISOs Ensure Safe AI Adoption?
Source URL: https://normalyze.ai/blog/unlocking-the-value-of-safe-ai-adoption-insights-for-security-practitioners/ Source: CSA Title: How Can CISOs Ensure Safe AI Adoption? Feedly Summary: AI Summary and Description: Yes Summary: The text discusses critical strategies for security practitioners, particularly CISOs, to safely adopt AI technologies within organizations. It emphasizes the need for visibility, education, balanced policies, and proactive threat modeling to ensure both innovation…