LLM Security and Privacy

Sean Falconer (@seanfalconer, Head of Dev Relations @SkyflowAPI, Host @software_daily) talks about security and privacy of LLMs and how to prevent PII (personally identifiable information) from leaking out

SHOW: 807

CLOUD NEWS OF THE WEEK - http://bit.ly/cloudcast-cnotw

NEW TO CLOUD? CHECK OUT OUR OTHER PODCAST - "CLOUDCAST BASICS"

SHOW SPONSORS:

• Want to win a Tesla Cybertruck or $100,000? Enter the WS02 Choreo Code Challenge (before August 30th)
• WSO2 Choreo - Why build a platform? Just add developers instead
• CloudZero provides immediate and ongoing savings with 100% visibility into your total cloud spend

SHOW NOTES:

• SkyFlow (homepage)
• Partially Redacted Podcast
• Software Engineering Daily

Topic 1 - Our topic for today is the security and privacy LLMs. What’s Sean’s origin story?

Topic 2 - Let’s dig into LLM security and privacy. We see this concern a lot on the podcast and we’ve touched on it with various past shows, but we haven’t dug in deep. First, let’s frame the problem. What are we talking about when we talk about LLM security and privacy?

Topic 3 - First, there is a fear that customer PII information might leak out. Second, company IP or confidential into might leak out related to products or offerings. We’ve seen examples of both to date. This could be exposed in the form of integration into a model (query it for the answer) or in the fine-tuning or RAG stage. Either one could lead to compliance issues, lost rev etc. But, that same data at risk is the potential differentiation of the models. How do you both mask the data but take advantage of the data?

Topic 4 - One thing I’ve noticed is many orgs only think about privacy in relation to the fine-tuning stage where they are taking a broad model and making it company specific. It is about much more than that though. Just like standard software development, we have different stages. How is the data collected and stored, how is it used for training and fine-tuning, how is it used after deployment and during interaction stage, etc. How should security and privacy be handled across all phases?

Topic 5 - Let’s talk beyond LLMs for a bit. What about Data Lakes and Data Warehousing? I see this as a problem across all big data, correct?

Topic 6 - How does API security fit into this? Much of what we are talking about is at the storage and retrieval level. But, increasingly we see API issues exposing data. How does that fit in here?

Topic 7 - Let’s talk podcasts, we had Jeff, the previous host of Software Engineering Daily on a few times. How are things over at Software Engineering Daily? Tell everyone a bit about the show.

FEEDBACK?

• Email: show at the cloudcast dot net
• Twitter: @cloudcastpod
• Instagram: @cloudcastpod
• TikTok: @cloudcastpod

An AI and ML Look Ahead for 2019

Show: 382

Description: Brian talks with Sam Charrington (@samcharrington, Machine Learning & AI analyst, advisor & host of “This Week in Machine Learning & AI” podcast) about trends in the industry, the evolution of AI at the edge, new research areas in 2019, and a discussion about adding AI and ML to business applications. 

Show Sponsor Links:

• Liquid Technology - IT Value Recovery
• Try CloudLast Service, get a free t-shirt and chance at Amazon Gift Card
• Datadog Homepage - Modern Monitoring and Analytics
• Try Datadog yourself by starting a free, 14-day trial today. Listeners of this podcast will also receive a free Datadog T-shirt

Show Interview Links:

• This Week in Machine Learning & AI Homepage - http://twimlai.com
• Kubernetes for Machine Learning, Deep Learning and AI (eBook)  - https://twimlai.com/kubernetes/
• Sam Charrington on Eps.321 of The Cloudcast - http://www.thecloudcast.net/2017/11/the-cloudcast-321-understanding-ai-and.html

Show Notes:

Topic 1 - Happy New Year and welcome back to the show, it’s been just over a year. For those that didn’t hear that show or might be new to TWIML & AI, tell us about your background and some of your AI/ML focus now.

Topic 2 - Let’s start with the things that are considered “mainstream” with AI & ML today. Fraud detection, recommendation engines, facial recognition, speech recognition, auto-completions. What’s missing from that list, and how “commodity” have those technologies, tools, datasets, cloud services become?

Topic 3 -On the flipside, what are some of the areas where research or just the massive cloud providers are focused today?

Topic 4 - A couple years ago it seemed like TWIML & AI was a mix of technology discussions and business/social impacts. This past year seemed to be a deeper focus on the underlying technologies. What’s the current state of the balance between AI & ML for computing improvement vs. concerns about personal privacy, etc.?

Topic 5 - What’s the “getting started” curve look like for companies that want/need to add or integrate AI & ML into their applications? What are some numbers you hear about cost of engineers, sizes of datasets, number of experiments and models needed to run, etc.?

Topic 6 - What are some of the things you’re really looking forward to in 2019, whether it’s technology or trends or something else?

Feedback?

• Email: show at thecloudcast dot net
• Twitter: @thecloudcastnet and @ServerlessCast

The Cloudcast - Eps.30 - "Laws in the Cloud" + Show Notes

Date: Feb.3, 2012 - 12noon

Guests: Adrienne Mead (@CloudAtty) and Deborah Salons (@dsalons)

Brian talks with Adrienne Mead (@CloudAtty) and Deborah Salons (@dsalons) about legal policy, contracts and what business should consider when using or building Cloud Computing services.