NIS and Overseas Cybersecurity Agencies Announce AI Supply Chain Risks and Mitigation Measures
Joint Statement Issued with Seven Countries, Including Australia and the United States
On March 5, the National Intelligence Service (NIS) announced a joint statement on "AI Supply Chain Risks and Mitigation Measures" together with the Australian Signals Directorate, the U.S. National Security Agency, and cyber security agencies from seven major countries.
The Australian Signals Directorate expressed concern over the increasing risk factors, such as hidden backdoors, arising from the complexity of AI supply chains. In response, it prepared relevant recommendations and requested the participation of the NIS. The key feature of these recommendations is the view that AI should be treated as a system that requires security to be embedded from the design stage, rather than only being managed after deployment.
The recommendations identify risk factors and mitigation measures for AI supply chains across five areas: data, machine learning models, software, infrastructure and hardware, and third-party services. The document advises that low-quality or biased AI data can lead to errors in judgment and recommends using data from trusted sources to mitigate risks. It also emphasizes that machine learning models can cause security incidents, such as concealing malware or inserting backdoors, and therefore safe file formats or transparent models should be used.
According to the recommendations, AI infrastructure can involve the injection of malicious firmware or introduce new security risks. As a result, existing information security system principles should be applied, and measures such as network separation or independent authentication should be used to ensure thorough management.
The NIS has been continuously presenting countermeasures related to AI supply chain attacks, such as issuing safe AI development guidelines jointly with the United States, the United Kingdom, and others in November 2023, and distributing an AI security guidebook in December of last year.
Hot Picks Today
If They Fail Next Year, Bonus Drops to 97 Million Won... A Closer Look at Samsung Electronics DS Division’s 600M vs 460M vs 160M Performance Bonuses
- Opening a Bank Account in Korea Is Too Difficult..."Over 150,000 Won in Notarization Fees Just for a Child's Account and Debit Card" [Foreigner K-Finance Status]②
- "Profit Distribution Without Shareholders’ Approval Is Invalid"... Samsung Electronics Shareholder Group Announces Lawsuit Over 'Provisional Agreement'
- Room Prices Soar from 60,000 to 760,000 Won and Sudden Cancellations: "We Won't Even Buy Water in Busan" — BTS Fans Outraged
- "Who Is Visiting Japan These Days?" The Once-Crowded Tourist Spots Empty Out... What's Happening?
An NIS official stated, "This set of recommendations is significant in that it systematically organizes AI-specific risks from the supply chain perspective and presents a security management direction focused on prevention rather than post-incident response," adding, "Based on partnerships with major countries, we will continue to support the safe use of AI domestically."
© The Asia Business Daily(www.asiae.co.kr). All rights reserved.
!["Please Help Us": How Much Do Those Bowing 90 Degrees These Days Actually Earn? [Data Pick]](https://cwcontent.asiae.co.kr/asiaresize/307/2026052010120870131_1779239528.png)
