2023 International Conference on Computational Science and Computational Intelligence (CSCI)
THE RISKS AND VULNERABILITIES OF
ARTIFICIAL INTELLIGENCE USAGE IN
INFORMATION SECURITY
2023 International Conference on Computational Science and Computational Intelligence (CSCI) | 979-8-3503-6151-3/23/$31.00 ©2023 IEEE | DOI: 10.1109/CSCI62032.2023.00047
Mohammed Mahmoud
Department of Computer Science
University of Jamestown
Jamestown, ND, USA
[email protected]
Abstract—In this paper we will discuss Artificial
Intelligence, as well as the advantages and challenges it presents
with information security. Artificial Intelligence is a
transformative force that impacts our daily lives in various
forms and technologies. This paper looks at the complex
relationship between Artificial Intelligence and information
systems security. The first section explores the fundamental
concepts of AI and its unassuming integration into our everyday
lives, shedding light on the ever-present existence of AI-based
solutions. By inspecting the differences between risks and
vulnerabilities, the paper makes clear the importance of
separating between these terms and proceeds to identify
potential threats to server security.
The remaining part of the paper investigates data mining as
an integral aspect of AI's functionality, emphasizing the
importance of robust security measures to maintain security
against data breaches. Furthermore, it reveals the diverse attack
routes targeting AI systems and highlights the pivotal role of
security in mitigating manipulation and attacks. By offering
insights into strategies for avoiding vulnerabilities while
harnessing the power of AI, this paper emphasizes the
paramount importance of privacy in the context of AI-driven
data collection and utilization. Finally, it presents guidelines for
businesses to implement monitoring procedures that safeguard
against risks, ensuring that AI technologies remain a benefit
rather than a liability in the realm of information security. This
comprehensive exploration underscores the pivotal role of AI in
modern society and the imperative to secure its applications for
the benefit of all.
Keywords—Artificial Intelligence (AI), information security,
risks, vulnerabilities, threats, security, cybersecurity, data mining,
data breaches, attack, privacy.
I. INTRODUCTION
In today's tech-driven world, Artificial Intelligence (AI) is
a game-changer that impacts our daily lives in immeasurable
ways. This paper dives into the intricate relationship between
AI and information security, shedding light on its complex
impact. To begin, we will uncover how AI weaves itself into
our routines through everyday AI-based solutions, and we will
clarify the difference between risks and vulnerabilities,
emphasizing the importance of making this distinction while
pinpointing potential threats to server security.
Next, we will explore the essential role of data mining in
AI, stressing the need for robust security measures to defend
against data breaches. We will also reveal the numerous ways
AI systems can come under attack and underscore the pivotal
role of security in preventing manipulation and breaches. By
providing practical strategies to avoid vulnerabilities while
harnessing the potential of AI, this paper underscores the
critical importance of privacy in the context of AI-driven data
collection and usage. Lastly, we will offer guidelines for
businesses to implement monitoring procedures that protect
2769-5654/23/$31.00 ©2023 IEEE
DOI 10.1109/CSCI62032.2023.00047
Authorized licensed use limited to: Universidad Industrial de Santander. Downloaded on October 16,2024 at 03:04:29 UTC from IEEE Xplore. Restrictions apply.
against risks, ensuring that AI technologies can continue to be
an asset, not a liability, in the realm of information security so
long as it is implemented thoughtfully. This comprehensive
exploration highlights the leading role of AI in our modern
world and the urgency of securing its applications for the
benefit of all.
II. WHAT IS ARTIFICAL INTELLIGENCE (AI)?
AI refers to the development of computer systems that can
perform tasks that often require one or many people to
accomplish. These developed computer systems are often
created through algorithms and situations which allow
machines to learn from the input data, identifying patterns, and
adapting from sorting old and newly introduced data [3]. With
AI there are three different types that can be created. This AI
technology includes Machine Learning, Narrow AI, and
Generative AI.
Machine Learning (ML) is technically a slimmed down
version of AI but is often still considered AI since machines
are often programmed to complete tasks that are often
repetitive. AI has become so enhanced that it has become
possible to place algorithms and techniques into systems that
will learn from tasks containing data and continue through the
process of making decisions without the assistance of human
programming or other specific input. Deep learning often
correlates with ML that creates a similar human brain neural
network that can complete even more complex tasks. For
instance, Chat GPT uses ML to develop responses and habits
from human developed prompts [3].
Narrow AI tends to be limited and could be things like
voice assistants, image recognition, and self – driving
automotive vehicles. These are often heavily developed
programs that react to certain tasks that are fed into the system
that the programs go through to solve the given task [3]. This
type of AI does not typically learn much from previous inputs
to help with future tasks.
Generative AI tends to be more of a creative tool that
creates and generates new content such as images, text, audio,
and sometimes even videos that can mimic or develop their
own ideas. This type of AI often learns from training models
in which it identifies the content and patterns within the data.
With the patterns it finds, responses are generated through the
knowledge it gains to make new content that resembles
specific patterns or ideas from the models [3].
III. CYBERSECURITY AND ITS DETAILS
To determine the potential risks of cybersecurity, it is
crucial to understand what cybersecurity is in the first place.
Cybersecurity is often the practice of defending anything
computer related like computers, servers, mobile devices, etc.
from malicious attacks [9], threats, damages, or unauthorized
266
 access. Cybersecurity often refers to the set of tools, practices,
and guidelines to protect the systems in need of protection.
Overall, cybersecurity tends to typically concern itself with
understanding the threats and attacks that can come from
malicious intent then developing practices to prevent and
protect from said attacks [1].
IV. TYPES OF SECURITY RISKS
Security Risks for Systems like computers, servers,
mobiles, etc. can often develop anywhere. Often, most of the
threats involved with cybersecurity are easily detectable or
easily stoppable. You could place these threats into two
distinct groups: the software/code-based types, and personal
interaction. Either way these threats, depending on what is at
risk, are still profoundly serious and can have major
repercussions [1].
Your code/software-based threats include malware,
ransomware, backdoor, malicious bots, denial of service
(DoS), and computer viruses. Overall, these types of attacks
tend to be created by humans, but are often coded or
programed to trap someone within to gain access to private
and valuable information. Granted the people behind the
attacks are still in control of the scenario, they often have a set
goal in mind with their software or program.
The personal interaction types of threats often come from
people gaining access to information through personal ways.
This can be from threats like social engineering, phishing,
cryptographic attacks, insider threats, hacking, or something
like data breaches. These tend to be done by the person
specifically, looking through software to gain access or
convincing certain people to leak information that would
make the company or program vulnerable from attacks.
V. HOW DO YOU CLASSIFY A RISK OR A VULNERABILITY IN
INFORMATION SYSTEMS?
To understand the differences between risks and
vulnerabilities [10][11], you must know the meaning of each
first, and then identify potential threats to the server. A
vulnerability is a weakness in your system or practices. A risk
is the likelihood that someone will exploit that vulnerability to
harm your information or organization. These could include
natural disasters like floods and earthquakes, human threats
like data breaches and insider threats, or technical threats like
software vulnerabilities and hardware failures. As it is
commonly known, the system risk analysis chart can help
dictate your highest impact and likelihood for data
maintenance. It is also worth knowing what data needs more
precautions and prioritization. Names and public information
may be considered less sensitive, and not need many layers of
firewalls and security. While Social Security Numbers
(SSNs), medical history, or phone numbers will need much
more extensive security walls and password authentication
factors.
VI. COULD BIG DATA MINERS CAUSE A LEAK OF PERSONAL
OR BUSINESS DATA?
Big Data mines can cause a potential leak of personal or
business data. Mining involves collecting and analyzing large
volumes of data, which can include sensitive information. If
proper data security measures are not in place, or if there are
vulnerabilities in their systems, it is possible for data miners
to inadvertently or maliciously expose or leak this data,
leading to privacy and security breaches. This could open a
267
Authorized licensed use limited to: Universidad Industrial de Santander. Downloaded on October 16,2024 at 03:04:29 UTC from IEEE Xplore. Restrictions apply.
branch of new problems, including legal and ethical policies
being corrupted.
VII. HOW VULNERABLE ARE AI-BASED SECURITY SYSTEMS
TO ATTACKS AND MANIPULATION?
Different AI-based security systems [12][13] are
susceptible to a variety of attacks and manipulation. Physical
objects, data poisoning, model replication, and exploitation of
software flaws are a few ways that AI is being attacked. These
methods can manipulate the AI system into believing
something that is false. From a security standpoint, that is a
huge risk and as AI becomes more common in critical security
roles, the vulnerabilities increase.
AI-based security systems do have options to help lessen
the vulnerability, from extensive development from within a
company's own development to relinquishing the process to a
company that focuses directly on AI-based development
security systems [14]. These companies tend to have more
than 20,000 AI experts that can format a system specifically
for a company’s use. These companies often have AI that
optimizes analyst time through accelerating threat detection,
protecting user identity and information, all while keeping
cybersecurity informed and in charge [2]. Sourcing the AI side
of a security system can help relinquish time from an area and
place it into another that could use significant improvements.
This can help reduce company costs and optimize productivity
within the workplace.
VIII. WHAT ARE THE POTENTIAL PRIVACY RISKS ASSOCIATED
WITH AI-DRIVEN SECURITY SYSTEMS?
There are a variety of security risks involved with AI
security systems [4]. From people stealing your information
to people being able to use that information to create havoc in
everyday life. With AI being used for everything, people can
be tracked, and eventually studied in multiple ways since their
data can be placed in a database to find out everything about
you. Even if people try to limit their interactions with AI, it is
found everywhere making it possible for data like social,
common, and personal to be managed and potentially leaked
to the public.
IX. HOW CAN ORGANIZATIONS ENSURE THE ETHICAL USE OF
AI TO AVOID REPUTATIONAL AND LEGAL RISKS?
There are a few things that an organization can do to
ensure the ethical use of AI information security to avoid
reputational and legal risks [15-17]. As with any aspect of a
business (or any other group), you need to set out guidelines.
To do this well, make sure the rules and expectations are clear
and explicit. This will help the organization remain
accountable and value privacy. Additionally, an organization
must implement monitoring procedures. This monitoring
process should be continuous to keep up with an ever-
changing digital world. Through proper measures, like means
to detect unethical behavior, an organization can avoid any
negative results when using AI.
X. WHAT SECURITY AWARENESS TRAINING CAN AN
ORGANIZATION OR GOVERNMENT BODY IMPLEMENT TO
MAINTAIN INFORMATION SYSTEMS?
Organizations and governing bodies can implement
several security awareness training courses into their policy
manuals for employees, contractors, and partners to adhere to.
First, password security is a common safeguard to administer;
enforcing members to change passwords every 180 days is
 common, as well as an organization-wide two-factor
authentication system. Second, device security instructs
employees to secure their devices with regular software
updates and antivirus protection. For example, at the
University of Jamestown, faculty are required to change
passwords often, avoid using duplicate passwords, as well as
using DUO mobile for authentication. The employee
handbook also includes, “Employees of the University have
no legitimate expectation of privacy in the University’s
computer system.,” meaning all the information withheld in
the members devices are surveilled to uphold the policies.
Third, regular training updates keep employees informed
about evolving cybersecurity threats and trends. The U.S.
Department of Health and Human Services provides
cybersecurity awareness and role based training courses for
anyone to take to keep their awareness of potential threats on
high alert. Different organizations will have different
structures, but it would be useful to take a cybersecurity and
phishing training session. Lastly, although AI is not a recent
technology, many groups have no grasp on how to identify its
use from humans’ work. Companies like CYBR host AI
security and phishing attack simulations for employers to
“strengthen security culture” and train employees to identify
and report attacks.
XI. WHAT DATA ENCRYPTION AND PRIVACY TOOLS COULD
BE IMPLEMENTED WHEN USING AI IN INFORMATION
SECURITY?
When using AI in Information Security, it is important to
consider data encryption and privacy rules with implemented
encryption protocols to protect sensitive data in transit and at
rest. The Advanced Encryption Standard (AES) is the industry
standard for data encryption, using three sets of cryptographic
algorithms, or ciphers, to encrypt and decrypt a block of
messages. These sets range from 128-bit, 192-bit, and 256-bit
ciphers, and a secret key, to cover the information embedded.
IBM Security Guardium is a data security platform that uses
AES-256 and is ranked the leading system four years in a row.
It ensures compliance with privacy regulations and standards
when handling organization personnel information. Another
important protocol to uphold is the data lifecycle management
of each department. Reduce the volume of sensitive
information when creating data necessary for business
purposes, this minimizes potential risks and ensures
compliance of regulations. Conduct regular audits of data
access, modifications, and usage; all information must trail
back to a team member and device. Establish regular data
backup procedures to mitigate data loss due to deletion or
corruption and test data recovery processes. Adhering to these
basic rules can enhance security and privacy when integrating
AI into organization practices.
XII. AI AS A PART OF INCIDENT RESPONSE
We live in a world that evolves and moves faster than we
can keep up with. There is perhaps no industry impacted more
by response time than cybersecurity. The fact of the matter is
that bad people will inevitably engage in malicious activities
despite the safeguards we implement to protect against them.
It is nearly impossible to prevent a cyber-attack with 100
certainty. That means that such attacks are a matter of 'when,'
not 'if,' for most organizations. To properly defend against
these attacks, time is of the essence.
In the dynamic landscape of cybersecurity, leveraging AI
has emerged as a strategic approach to enhancing incident
268
Authorized licensed use limited to: Universidad Industrial de Santander. Downloaded on October 16,2024 at 03:04:29 UTC from IEEE Xplore. Restrictions apply.
response. Traditional incident response processes often
involve manual, time-consuming tasks that can be a
bottleneck when timely action is required. AI brings a
transformative solution by automating the tedious aspects of
incident response, enabling organizations to respond with
agility and efficiency. An article from the Global
Cybersecurity Association tells us that in incident response,
AI can efficiently automate tasks like “gathering information,
identifying affected systems, and notifying stakeholders” [5].
As highlighted by the cybersecurity company SISA,
"Automating the Incident Response (IR) process with AI
makes it way easier to resolve more incidents at greater speed,
less time, and of course, with automation, it's less effort for the
team members” [6]. The integration of AI in incident response
is a force multiplier for security teams, providing them with
the ability to analyze vast amounts of data rapidly, identify
patterns, and respond to threats proactively.
One significant advantage of AI in incident response is its
capability to detect and respond to cyber threats in real-time.
Traditional methods often rely on pre-defined rules and
signatures, which may not be agile enough to adapt to
evolving attack techniques. AI, particularly ML algorithms,
can continuously learn from new data and adapt to emerging
threats, making them a valuable asset in staying ahead of cyber
adversaries.
Moreover, AI can play a crucial role in threat intelligence,
helping security teams stay informed about the latest cyber
threats and vulnerabilities. By analyzing large datasets from
various sources, AI systems can provide actionable insights,
allowing organizations to fortify their defenses against
potential exploits before they can be leveraged by attackers.
In conclusion, integrating AI into incident response is not
just a modernization of processes; it is a strategic imperative
in the face of an ever-evolving cyber threat landscape. As
organizations continue to grapple with the inevitability of
cyber-attacks, leveraging AI empowers them to respond
effectively, mitigate risks, and safeguard critical assets in an
era where time is a critical factor in the battle against cyber
threats.
XIII. HOW CAN AI BE USED TO MAKE AUDITING BOTH MORE
SECURE AND MORE EFFICIENT?
The integration of AI into security auditing processes can
revolutionize how organizations assess and enhance their
security postures. According to the IT Briefcase, "Because AI
tools can ingest, analyze, and spot patterns in vast amounts of
data, they enable auditors to test more thoroughly and
efficiently” [7]. This capability enables auditors to conduct
more thorough and efficient security tests, addressing the
challenge of dealing with substantial amounts of data in
traditional auditing processes.
AI-driven auditing goes beyond periodic assessments by
enabling continuous monitoring of the IT environment. ML
algorithms allow for adaptive analysis, ensuring that audits
remain effective in the face of evolving cyber threats.
Furthermore, AI's proficiency in pattern recognition
enhances security auditing by identifying deviations from
normal patterns in user behavior, network traffic, and system
activities. This proactive approach to anomaly detection
streamlines the identification of potential security breaches
and policy violations. The website Nanonets says “By
producing detailed reports on suspicious activities, AI audit
 software empowers auditors to proactively address financial [7]
misconduct, ensuring greater integrity and compliance” [8].
In conclusion, the incorporation of AI into security [8]
auditing represents a paradigm shift, offering efficiency gains,
continuous monitoring capabilities, and adaptive analysis.
This transformation empowers auditors to conduct more [9]
comprehensive assessments, respond promptly to security
incidents, and fortify organizations against dynamic
cybersecurity challenges.
[10]
XIV. FUTURE WORK
For further research, we believe we could go more in depth
[11]
with describing threats and how they can affect security
systems. We could also venture into privacy risks that come
with the threats and how they could further impact someone’s [12]
daily life. Another avenue, would be more details about the
ethical and unethical sides of AI usage where certain ideas
could lead into more, or fewer, legal troubles.
[13]
REFERENCES
[1] Tsochev, G., Trifonov, R., Nakov, O., Manolov, S., & Pavlova, G.
(2020). Cyber security: Threats and Challenges. 2020 International
Conference Automatics and Informatics, ICAI 2020 - Proceedings.
https://doi.org/10.1109/ICAI50593.2020.9311369
[2] “IBM Consulting.” IBM, https://www.ibm.com/consulting Accessed
22 Nov. 2023.
[3] “Risks of AI & Cybersecurity: Risks of Artificial Intelligence.” [15]
Malwarebytes, 22 Nov. 2023,
https://www.malwarebytes.com/cybersecurity/basics/risks-of-ai-in-
cyber-security
[4] Alhayani, Bilal, et al. “Effectiveness of artificial intelligence [16]
techniques against cyber security risks apply of IT industry .” Elsevier
, 16 Feb. 2021.
[5] AI in Cybersecurity: Incident Response Automation Opportunities.
(2022, January 9). SISA. https://www.sisainfosec.com/blogs/ai-in-
cybersecurity-incident-response-automation-opportunities/ [17]
[6] Admin. (2023, September 22). AI will bring revolution in the Cyber
Incident Response - GCA. Global Cybersecurity Association (GCA).
https://globalcybersecurityassociation.com/blog/ai-will-bring-
revolution-in-the-cyber-incident-response/
269
Authorized licensed use limited to: Universidad Industrial de Santander. Downloaded on October 16,2024 at 03:04:29 UTC from IEEE Xplore. Restrictions apply.
How AI is Changing the Security Audit Process | IT Briefcase. (n.d.).
Retrieved November 23, 2023, from https://www.itbriefcase.net/how-
ai-is-changing-the-security-audit-process#:~:text=AI
Gopal , L. (2023, August 1). How is Artificial Intelligence Used in
Auditing? Nanonets AI & Machine Learning Blog.
https://nanonets.com/blog/using-artificial-intelligence-in-audits/
Abdullahi, M., Baashar, Y., Alhussian, H., Alwadain, A., Aziz, N.,
Capretz, L. F., & Abdulkadir, S. J. (2022). Detecting Cybersecurity
Attacks in Internet of Things Using Artificial Intelligence Methods: A
Systematic Literature Review. Electronics (Switzerland), 11(2).
https://doi.org/10.3390/electronics11020198
Dewan, A. M. (2013). Hazards, risk, and vulnerability. Springer
Geography, 9789400758742, 35–74. https://doi.org/10.1007/978-94-
007-5875-9_2
Joern, B. (2007). Risk and vulnerability indicators at different scales:
Applicability, usefulness and policy implications. Environmental
Hazards, 20p-31p.
Moustafa, N. (2021). A new distributed architecture for evaluating AI-
based security systems at the edge: Network TON_IoT datasets.
Sustainable Cities and Society, 72.
https://doi.org/10.1016/j.scs.2021.102994
Bertino, E., Kantarcioglu, M., Akcora, C. G., Samtani, S., Mittal, S., &
Gupta, M. (2021). AI for Security and Security for AI. CODASPY 2021
- Proceedings of the 11th ACM Conference on Data and Application
Security and Privacy, 333–334.
https://doi.org/10.1145/3422337.3450357
[14] Sarker, I. H., Furhad, M. H., & Nowrozy, R. (2021). AI-Driven
Cybersecurity: An Overview, Security Intelligence Modeling and
Research Directions. SN Computer Science, 2(3).
https://doi.org/10.1007/s42979-021-00557-0
Yu, S., & Carroll, F. (2021). Implications of AI in National Security:
Understanding the Security Issues and Ethical Challenges. Advanced
Sciences and Technologies for Security Applications, 157–175.
https://doi.org/10.1007/978-3-030-88040-8_6
Li, X., & Zhang, T. (2017). An exploration on artificial intelligence
application: From security, privacy and ethic perspective. 2017 2nd
IEEE International Conference on Cloud Computing and Big Data
Analysis, ICCCBDA 2017, 416–420.
https://doi.org/10.1109/ICCCBDA.2017.7951949
Taddeo, M. (2019). Three Ethical Challenges of Applications of
Artificial Intelligence in Cybersecurity. Minds and Machines, 29(2),
187–191. https://doi.org/10.1007/s11023-019-09504-8