Cisco defines artificial Intelligence (AI) and machine learning (ML) security vulnerabilities as an exploitable weakness in an AI model, related software, or hardware code that negatively affects confidentiality, integrity, or availability.
The following are a few frequently asked questions about handling AI vulnerabilities at Cisco:
Q: How does Cisco disclose security vulnerabilities found in AI systems?
Cisco discloses all security vulnerabilities per our established security vulnerability policy at: https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html
Q: I believe I have found a security vulnerability in a Cisco product or service that uses AI; how can I report this vulnerability?
Contact the Cisco Product Security Incident Response Team (PSIRT) as per the Reporting or Obtaining Support for a Suspected Security Vulnerability section of our established security vulnerability policy at: https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#roosfassv
Q: I have found an issue of bias or discriminatory behavior in a Cisco product or service that uses AI; how can I report this to Cisco?
Report an ethics concern to Cisco using either webform or email. Details are found at https://www.cisco.com/c/m/en_us/about/csr/esg-hub/trust/ethics.html
Q: I have found an issue of privacy or personal data leakage in a Cisco AI implementation; how can I report this to Cisco?
Report a privacy concern to Cisco using webform. Details are found at https://privacyrequest.cisco.com/
Q: What are Cisco’s Responsible AI Principles?
Cisco’s Responsible AI Principles and approach described in this document form a broad AI governance framework for anyone who develops, deploys, and uses AI capabilities. Additional information can be found at https://www.cisco.com/c/dam/en_us/about/doing_business/trust-center/docs/cisco-responsible-artificial-intelligence-principles.pdf
Q: What is the framework that Cisco uses for Responsible AI?
Cisco has developed a Responsible AI Framework based on six principles of Transparency, Fairness, Accountability, Privacy, Security, and Reliability. Additional information can be found at https://www.cisco.com/c/dam/en_us/about/doing_business/trust-center/docs/cisco-responsible-artificial-intelligence-framework.pdf
Last Updated: 2024 March 25
This document is part of the Cisco Security portal. Cisco provides the official information contained on the Cisco Security portal in English only.
This document is provided on an “as is” basis and does not imply any kind of guarantee or warranty, including the warranties of merchantability or fitness for a particular use. Your use of the information in the document or materials linked from the document is at your own risk. Cisco reserves the right to change or update this document without notice at any time.