惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

量子位
云风的 BLOG
云风的 BLOG
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
The Hacker News
The Hacker News
Martin Fowler
Martin Fowler
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
U
Unit 42
F
Full Disclosure
H
Hackread – Cybersecurity News, Data Breaches, AI and More
Recorded Future
Recorded Future
Security Archives - TechRepublic
Security Archives - TechRepublic
阮一峰的网络日志
阮一峰的网络日志
T
Threatpost
P
Privacy International News Feed
GbyAI
GbyAI
Stack Overflow Blog
Stack Overflow Blog
MongoDB | Blog
MongoDB | Blog
I
Intezer
Recent Announcements
Recent Announcements
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
P
Privacy & Cybersecurity Law Blog
A
Arctic Wolf
博客园 - 聂微东
博客园 - 叶小钗
Cisco Talos Blog
Cisco Talos Blog
H
Help Net Security
S
Schneier on Security
Y
Y Combinator Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
The Exploit Database - CXSecurity.com
T
Tor Project blog
月光博客
月光博客
NISL@THU
NISL@THU
A
About on SuperTechFans
Spread Privacy
Spread Privacy
Blog — PlanetScale
Blog — PlanetScale
D
DataBreaches.Net
雷峰网
雷峰网
C
CXSECURITY Database RSS Feed - CXSecurity.com
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
博客园 - 【当耐特】
G
Google Developers Blog
W
WeLiveSecurity
P
Palo Alto Networks Blog
The Last Watchdog
The Last Watchdog
K
Kaspersky official blog
博客园 - 司徒正美
L
LINUX DO - 热门话题
小众软件
小众软件

Search Security Resources and Information from TechTarget

How to operationalize threat modeling with AI | TechTarget CISO First fully agentic ransomware attack sparks readiness concerns | TechTarget Evaluating secure enterprise browsers vs. security plugins | TechTarget The AI vulnerability storm is here: Is your security program ready? | TechTarget Perimeter to posture: A roadmap to zero trust maturity | TechTarget TLS certificate lifetime changes: What CISOs must do now | TechTarget The agentic AI 8 key aspects of a mobile device security audit program | TechTarget Why mobile security audits are important in the enterprise | TechTarget Beyond the perimeter: The shift to data-centric protection | TechTarget How agentic AI threat intelligence aids NGO cyber defense: Case study | TechTarget How to conduct a mobile app security audit | TechTarget NO FAKES Act advances: What CISOs need to know | TechTarget As Q-Day looms, 90% of systems are unprepared for PQC | TechTarget A CISO Most security pros say their culture is Zscaler lays out its vision to secure the AI era at Zenith Live | TechTarget The OpenClaw security risks every CISO needs to know | TechTarget Cloud security metrics and KPIs: A CISO Florida public sector training on SimSpace cyber range: Case study | TechTarget Reporters' Notebook — Focus on Cyber Insurance: How Quantifying Risk Is Reshaping Security It's time to update incident response for the AI era How to build AI security guardrails without blocking innovation The prosecution gap: Why cybercrimes go unpunished AI in cyberdefense: Learning from threat actors' playbooks Top identity and access management risks CISO role changes as cyber-risk appetites in the C-suite grow CISO's guide to data minimization Researchers build autonomous AI worm that can reason and adapt How to secure data at rest, in use and in motion How to find cyber-risk data sources for a FAIR analysis Lost in translation: Cybersecurity board reporting for CISOs How to prepare security controls for future AI regulations EO 14390 raises stakes for enterprise cybersecurity First month of Mythos Preview testing exposes 10K flaws OT attacks shift from recon to physical control, raising stakes For CISOs, dawn of OpenAI Daybreak brings good and bad news Gartner Security & Risk Management Summit 2026: Adapting for AI | TechTarget Inside business email compromise attacks: Real-world examples Verizon 2026 DBIR: 6 key takeaways for CISOs Identity security for AI agents: The proliferation challenge How to build a business impact analysis checklist Taking care of business: The CISO's role in a cyber crisis What CISOs need to know about AI audit logs SOC vs. MDR: What CISOs need to consider Instructure cyberattack reignites ransom payment debate Transform SIEM rules with behavior-based threat detection CISO's guide: How to test an incident response plan How to implement zero trust for AI Data after the breach: Economics of the dark web The breakup: Why CISOs are decoupling data from their SIEMs | TechTarget News brief: Security worries and warnings as AI use expands How to construct an effective security controls evaluation 5 leading enterprise password managers to consider Claude Mythos changes the AI security threat matrix Buyer 6 things to check in your cyber insurance policy fine print How cyber insurance helped with breach recovery -- or not News brief: Critical infrastructure, OT cybersecurity attacks Tape's strategic role in modern data protection Top zero-trust use cases in the enterprise What every CISO should consider before a SIEM migration CISO's guide to centralized vs. federated security models Shadow code: The hidden threat for enterprise IT How to fix cybersecurity's agentic AI identity crisis 5 top SIEM use cases in the enterprise Top 8 e-signature software providers for 2026 How do digital signatures work? News brief: AI woes continue for security leaders Deepfake era demands proof-based security, not just awareness Is SOAR dead or alive? Sort of The push for digital sovereignty: What CISOs need to know Beyond awareness: Human risk management metrics for CISOs Cybersecurity in the age of AI means bigger, faster threats At RSAC 2026, AI optimism and anxiety -- and an MIA U.S. government Inside the SOC that secured RSAC 2026 Conference How to roll out an enterprise passkey deployment How to improve the SOC analyst experience -- and why it matters How contact centers detect and prevent fraud News brief: Iranian cyberattacks target U.S. water, energy CISO checklist: Cybersecurity platform or marketing ploy? RSAC 2026 Conference: Key news and industry analysis | TechTarget Next-generation firewall buyer's guide for CISOs Contact center monitoring best practices for CX leaders RSAC 2026: Cyber insurance and the rise of ransomware Agentic AI's role in amplifying and creating insider risks RSAC 2026 recap: AI security and network security trends Identity security at RSAC 2026: The new enterprise dynamics Meaningful metrics demonstrate the value of cyber-resiliency What to know about red team testing and the law News brief: Iran cyberattacks escalate, U.S. targets named 5 top SOC-as-a-service providers and how to evaluate them Cloud security architecture: Enterprise cloud blueprint for CISOs Contact center compliance checklist for modern workforces How AI caught a malicious North Korean insider at Exabeam Watch your words: Tim Brown's advice for CISOs News brief: U.S. absence at RSAC sparks leadership concerns Network security management challenges and best practices 10 enterprise secure remote access best practices
What CISOs should know about AI runtime security | TechTarget
John Burke · 2026-06-25 · via Search Security Resources and Information from TechTarget

putilov_denis - stock.adobe.com

With AI, security at runtime means protecting access, vetting inputs, checking outputs and detecting anomalous behaviors. It is challenging to get right.

CISOs recognize the cybersecurity implications of AI, but many remain focused on preventing AI-enabled data loss and compliance breaches. Few are paying attention to the full scope of AI-related cybersecurity yet.

Runtime security focuses on protecting running models from compromise. This means monitoring, protecting and controlling AI systems while they are actively running and making decisions -- rather than only securing them during development and deployment.

Preventing compromise of a running AI tool protects the organization not only from data leaks and compliance breaches, but also from AI being used as a weapon to launch or assist in other attacks. It protects the AI tool and it protects the business from the AI tool. It safeguards models against threats such as prompt injection attacks, unauthorized tool use, excessive permissions and model abuse.

Protection at runtime requires safeguarding access, vetting inputs and checking outputs. It also means watching AI for anomalous behaviors.

Beyond the oft-cited data-leak scenarios, CISOs might wonder why in-depth runtime protection is worth the effort. To get into the right mindset, think of it not just as software, but as staff. A traditional web application generally does only what developers code it to do. AI models and agents, on the other hand, can reason, choose tools, chain actions together and perform actions with multiple outcomes, depending on how they are trained. A subverted AI can damage the enterprise in proportion to how much it is trusted and by whom. Consider these scenarios:

  • An analytic AI in the network that helps staff troubleshoot problems can also provide key compromise intelligence to an external bad actor. It can also be used to help hide indicators of compromise.
  • Agentic AI in the network that is capable of changing network device configurations can create security holes for external actors. It can also divert or stop streams of monitoring data that would indicate ongoing compromises.
  • An AI application with no vetting for prompts or outputs can be fed prompts or external data that contains embedded instructions directing it to exfiltrate data.
  • An AI application with no prompt vetting can be tricked into lying in response to legitimate prompts and employee requests. Workers are not used to thinking that their data tools could intentionally misrepresent available data.

Challenges of AI runtime security

The biggest challenges CISOs face in securing AI at runtime are the expanding uses of AI within the enterprise, how the technology is evolving and a lack of AI-specific tooling.

AI use is evolving fast

Software vendors are still finding different ways to weave AI into their wares. Users and organizations, meanwhile, seek value by wrapping AI around or interposing it between systems. Organizations are giving AI tools access to more data, more kinds of data and more of the core IT service environment. Inserting security in all the necessary places, therefore, means trying to hit a moving target.

AI's core technologies are evolving

The most obvious -- and from a cybersecurity perspective, the most dangerous -- changes come in the rapid shift from passive to active tools -- agents -- and from isolated AI tools to integrated ones. This latter shift, largely facilitated by the rapid rise of the Model Context Protocol (MCP), complicates and expands threat surfaces.

Lack of AI-specific security tooling

The absence of AI-specific security tooling puts the burden on older security tools and services, which are not up to the challenge. Conventional static code scanners and software composition analyzers won't detect corrupt prompt files or skills definitions, and traditional web application firewalls can't detect or block malicious prompting of a web-facing AI.

It's crucial to keep in mind, too, that attackers also have access to AI and use it to find ways to compromise AI tooling.

Best practices for securing AI at runtime

Above all, AI needs zero-trust security. From there, many other best practices become apparent, including the following:

  • Put identity at the core of zero trust for AI. In practice, this means applying identity not just to users and conventional software and hardware systems, but also specifically to AI.
  • Apply zero-trust principles to AI. Block all access to any AI tool that has not been specifically authorized. Gate access to users and systems, including other AIs via MCP, that the tool is meant to serve.
  • Extend zero trust beyond raw access. An entity allowed to reach an AI system shouldn't by default be able to see or use all parts of its functionality -- unless that is the intent. For AI, protection at this level includes prompt filtering to block inappropriate data requests or attempts to subvert the tool.
  • Apply zero trust to runtime behaviors. Any full zero-trust environment requires the organization to monitor behavior and actively update access privileges based on it. With AI, this might mean blocking users who repeatedly try to feed suspicious prompts, and possibly also the systems they connect from. Likewise, block any MCP nodes that try to get the AI to misbehave. Shut down access to and from AI tools that themselves begin to act strangely or maliciously.

Enacting these principles in the environment requires implementing several new layers of cybersecurity tooling, either by acquisition or upgrade. It could also require an identity management system capable of handling a highly dynamic AI agent environment. CISOs should conduct a risk assessment based on the organization's AI strategy to prioritize which of those necessary investments to make first.

John Burke is CTO and a research analyst at Nemertes Research. Burke joined Nemertes in 2005 with nearly two decades of technology experience. He has worked at all levels of IT, including as an end-user support specialist, programmer, system administrator, database specialist, network administrator, network architect and systems architect.

Dig Deeper on Risk management