장항배, “AI 주권은 보안에서 시작”…AI 산업 위협 짚는다 #AI토피아 #장항배 #KBSSLIFE #AI보안 #AI주권 #산업보안 #SecurebyDesign #UHDDreamTV AI 산업을 둘러싼 보안 이슈가 방송을 통해 심층적으로 다뤄진다. 오는 3월 1일 밤 10시 방송되는 KBS LIFE ‘AI토피아’ 56회는 기술 유출과 공급망 리스크 등 AI 분야에서 제기되는 다양한 위협을 사례 중심으로 짚고, 국가와 기업이 준비해야 할 대응 방향을 제시한다. 방송에는 중앙대학교 산업보안학과 장항배 교수가 지식텔러로 나선다. 그는 AI 알고리즘과 반도체 설계 같은 핵심 기술 유출 사례를 언급하며, AI 산업에서 보안이 곧 기술 주권과 맞닿아 있다는 점을 강조한다. AI 기술 패권 경쟁이 치열해진 가운데 보안 역량이 국가 경쟁력과 직접 연결된다는 분석도 함께 내놓는다. 'AI토피아', 산업 스파이·공급망 리스크까지 짚는 AI 보안 전주기 전략. (사진=KBS N AI토피아) 장항배 교수는 특히 ‘Secure by Design’ 접근을 중심에 둔 대응 전략을 설명한다. 그는 AI 개발 과정 전반에서 보안을 함께 설계해야 한다는 점을 짚으며, 모델 설계 단계의 취약점 점검부터 데이터 수집·정제 과정의 거버넌스 체계 구축, 학습 이후 모델 무결성 검증 시스템까지 이어지는 전주기적 관리 필요성을 구체적으로 제시한다. 내부자 위협과 공급망 리스크는 또 다른 핵심 화두로 다뤄진다. 협력사와 외주 개발, 클라우드 인프라 등이 결합된 환경에서 보안 사각지대가 생길 수 있다는 점을 짚고, 단일 기업 차원을 넘어 산업 전반이 함께 움직이는 공동 대응 체계의 필요성을 강조한다. 이를 통해 기업의 개별적인 방어를 넘어 생태계 전체를 고려한 보안 관점이 요구된다는 점을 부각한다. AI 산업을 떠받칠 인력과 제도 기반 문제도 방송의 주요 주제로 제기된다. 장항배 교수는 고급 산업보안 인재를 확보하고 정책적 지원을 뒷받침하지 않으면 AI 생태계의 지속 가능성을 담보하기 어렵다고 지적한다. 이어 단순 기술 도입을 넘어 이를 보호하고 관리하는 구조까지 갖출 때 비로소 AI 선도국으로 자리매김할 수 있다는 메시지를 전한다. 이러한 논의는 AI 산업의 미래가 기술 개발 속도만이 아니라 보안 체계와 제도적 준비에 달려 있다는 점을 환기한다. 안전한 AX 시대를 위한 전략적 준비가 어떤 방향으로 이뤄져야 하는지 짚어볼 ‘AI토피아’ 56회는 3월 1일 밤 10시 KBS LIFE 채널과 UHD Dream TV에서 방송된다.

장항배, “AI 주권은 보안에서 시작”…AI 산업 위협 짚는다 #AI토피아 #장항배 #KBSSLIFE #AI보안 #AI주권 #산업보안 #SecurebyDesign #UHDDreamTV

Smart home living space with ambient lighting and relaxed homeowner. Headline “Comfort, Control, Peace of Mind” top-right; D.Tech Cloud logo chip bottom-right.

Smart homes need more than apps — they need secure infrastructure.
That’s where professional automation design makes the difference.
Link Below:
dtechcloudservices.com/solutions/?u...

#HomeAutomation #SecureByDesign #DTechCloud

If DCC Is MOT Testing, Secure by Design Is Aerodynamic Engineering | Advent IM If DCC Is MOT Testing, Secure by Design Is Aerodynamic Engineering

DCC is the MOT test.
Secure by Design is the aerodynamic engineering that defines resilience long before assessment.
Both are essential — but for very different reasons.
Read the blog: www.advent-im.co.uk/if-dcc-is-mo...

#DefenceCyber #SecureByDesign #DCC #CyberResilience #DefenceIndustry

SolarWinds warns of critical Web Help Desk RCE, auth bypass flaws SolarWinds has released security updates to patch critical authentication bypass and remote command execution vulnerabilities in its Web Help Desk IT help desk software.

This is not a "remote code execution (RCE) flaw". Executing code remotely is what the Villains did right. That's attacker-centric language. We need to focus on what the Vendor did wrong.

The software had a "weak authentication" flaw. #SecureByDesign

www.bleepingcomputer.com/news/securit...

"Security is too expensive"

Security costs are predictable. Breaches aren’t.

Build the right patterns early—identity-first, strong network boundaries, continuous monitoring. Invest in resilience, not overhead.

www.youtube.com/watc...

#Azure #Security #SecureByDesign #MVPbuzz

Arcjet's Python SDK Embeds Security in Code The new SDK brings application-layer protections directly into Python code as AI development drives adoption and demand grows for in-code security controls.

Embedding security directly into application code changes the game.

Arcjet’s Python SDK shows how rate limiting and abuse protection can be versioned, tested, and evolved like any other dependency — not bolted on later.

thenewstack.io/arcjets-pyth...

#DevSecOps #Python #SecureByDesign

Webinar | Forecasting Future Fortifications Join Jason Pearce, Field CTO at Claroty, for a webinar that moves beyond the compliance checkbox. We will explore how organisations are using regulatory mandates as a catalyst to reduce O&M costs, pro...

🗓️ 04 Feb: Join our webinar exploring how organisations are using regulatory mandates as a catalyst to reduce O&M costs, protect brand equity, and turn #SecureByDesign into a measurable competitive advantage in the global market.

Register now: discover.claroty.com/webinar-fore...

#SOCI #E8 #ANZ 🇦🇺🇳🇿

Cybersecurity is no longer just a technical challenge – it's a leadership one The widespread scale of cybercrime now makes it a strategic imperative for business leaders. But they can't simply focus on systems protection.

Software can be a target or a shield. Developers must embed resilience, enforcement and trust at the core of every product.

Read more: www.weforum.org/stories/2025...

#EmbeddedSecurity #SecureByDesign #CyberResilience

Session | Send Messages, Not Metadata. | Private Messenger Session is a private messenger that aims to remove any chance of metadata collection by routing all messages through an onion routing network.

I know you have your channels,
But secure is hard to come by.

Communicate by #Session, no #Metadata, just start app, share generated account key with other party by any means, and connect. You are just a number. That's privacy.
#PrivateMessanger #privacy #Anonymous #SecureByDesign getsession.org

Cybersecurity concerns are paramount among executives in almost all roles, regions and industries A new survey finds widespread agreement that security is one of the biggest challenges facing companies today.

Cybersecurity is now a top business risk, not just an IT issue.

As software and connected products scale, resilience depends on building enforceable security into the technology itself.

www.cybersecuritydive.com/news/cyberse...

#Cybersecurity #SecureByDesign

Security should be the reason you can drive development at 100mph Security should not slow your business (unless you need to go around a corner), we should make high speed business possible. Throughout my career—from my time reviewing bank security to leading global...

Some thoughts about security and automation. I'm probably going to turn this into a presentation for #NolaSec soon.

#PolicyAsCode #SecureByDesign #DevSecOps #Resilience #InformationSecurity #Cybersecurity

Proxy SROs, real accountability, and why cyber risk keeps slipping through delivery cracks | Advent IM Why cyber risk slips through delivery cracks, the real role of SROs, and how Proxy SRO models help maintain accountability and resilience.

Cyber risk isn’t an IT surprise — it’s a delivery outcome. When SRO accountability is nominal, risk drifts and assurance turns into theatre.

🔗 www.advent-im.co.uk/proxy-sros-r...
✍️ Ellie Hurst, Commercial Director

#CyberGovernance #SRO #SecureByDesign

Duende IdentityServer v7.4 is now available Duende IdentityServer v7.4 is here! Full compatibility with .NET 10 LTS, plus a standards-based foundation for agentic AI systems and MCP.

Your identity solution should just work and keep you out of the news. Duende v7.4 gives you that comforting .NET 10 LTS security blanket. Go ship features, not patches. 😉

duende.link/5pwbntg

#Identity #DuendeSoftware #SecureByDesign

Proactive Defense in Protocol Design: The Future is Now #zerotrustarchitecture #PotatosecurityTrends #cryptographicagility #protocoldesignprinciples #securebydesign #resilientnetworks #formalverification #decentralizedidentity #networkprotocolhardening #threatmodeling

Proactive Defense in Protocol Design: The Future is Now Building Fortresses on Shifting Sands: Why We Need a New Security Blueprint For decades, our approach to digital security has felt like a frantic game of whack-a-mole. A new vulnerability…

Proactive Defense in Protocol Design: The Future is Now #zerotrustarchitecture #CybersecurityTrends #cryptographicagility #protocoldesignprinciples #securebydesign #resilientnetworks #formalverification #decentralizedidentity #networkprotocolhardening #threatmodeling

Read the full interview:
www.technadu.com/why-applicat...

How are you handling alert fatigue and authorization risk in CI/CD today? Share your thoughts below.
#AppSec #DevSecOps #SecureByDesign #SoftwareSupplyChain #CodeReview #DryRunSecurity

“Traditional SAST matches patterns, but does not understand purpose built from context.”

- James Wickett, CEO & Co-founder, DryRun Security
Why contextual analysis at code review is changing how AppSec teams detect real risk.

What’s your take?
#AppSec #DevSecOps #SecureByDesign #CodeReview

🎉 Big news! Early Bird tickets for OWASP Global AppSec Vienna 2026 are here!
25 years of OWASP ✨ Stunning Vienna 🇦🇹 World-class training 🧠 & a conference like no other 🔥
Why wait? Register now for early bird pricing: owasp.glueup.com/eve...
#appsec #owasp #cybersecurity #securebydesign

Modern residential interior with smart lighting and connected controls visible in a clean living space. Headline “Smart Home Automation, Simplified” appears in the top-right; D.Tech Cloud cloud-outline logo chip positioned in the bottom-right with proper padding.

Smart homes need more than apps — they need secure infrastructure.
That’s where professional automation design makes the difference.

dtechcloudservices.com/solutions/?u...

#HomeAutomation #SecureByDesign #DTechCloud

Did you know?
Most security breaches don’t start with hackers.
They start with ignored software updates.

Outdated systems = known vulnerabilities
Known vulnerabilities = open doors

Security isn’t a one-time setup.

#CyberSecurity #SoftwareMaintenance #TechDebt #SecureByDesign #ITSecurity

~Cisa~
CISA and MITRE have released the 2025 CWE Top 25 list, identifying the most dangerous software weaknesses for organizations to prioritize.
-
IOCs: (None identified)
-
#CWE #SecureByDesign #ThreatIntel

Mit der Firewall v22 festigt Sophos sein „Secure by Design“-Versprechen

#AntiMalwareEngine #Cybersecurity #Cybersicherheit #Firewall #SecurebyDesign #Security @Sophos @Sophos_Info

netzpalaver.de/2025/...

Why AI and cloud-native are security game-changers Software risk have changed. Modern security means continuous, identity-centric, AI-aware threat modeling woven into CI/CD and design pract...

Software risk have changed. Modern security means continuous, identity-centric, AI-aware threat modeling woven into CI/CD and design practices. jpmellojr.blogspot.com/2025/12/why-... #CloudSecurity #ThreatModeling #AIsecurity #SecureByDesign #CSA

The End of "User Error": Why Bad Code is the Real Cyber Threat 🧠 Tech Takedown

It’s not "user error." It’s bad code. 💻🛡️ We expose the #US govt's new #SecureByDesign strategy: holding tech giants liable for the #SoftwareQuality crisis. Why 70% of hacks are preventable & why #RustLang is the future. #TechTakedown.

🎧 LISTEN NOW 👇
open.spotify.com/episode/6g1N...

CuraNexus Analytics – Security in Architecture, not Afterthought "Security bolted on after development is a band-aid. Security designed in from day one is the...

CuraNexus Analytics – Security in Architecture, not Afterthought "Security bolted on after development is a band-aid. Security designed in from day one is the foundation." What if I told ...

#cybersecurity #securebydesign #python #postgres

Origin | Interest | Match

If your AI is studying you, it’s not helping you.

Choose privacy.
Choose control.
Choose Kynismos.

🔗 kynismos.ai
link in bio

#KynismosAI #DataIndependence #PrivateAI #AIWithBoundaries #SecureByDesign

Cyber Policy Awards Nominations Please click the link to complete this form.

In 2025, the Atlas Award for U.S. Domestic Policy Impact went to Lauren Zabierek, Jack Cable & Bob Lord, alongside Jim Richberg & Taylor Roberts, for making #SecurebyDesign a reality while at CISA. Nominations for the third annual Cyber Policy Awards™ are open to the cyber community!
🏆 Learn more:

Il Pledge ‘Secure by Design’ di CISA: un anno di progresso nella sicurezza informatica

📌 Link all'articolo : www.redhotcyber.com/post/il-...

#redhotcyber #news #cybersecurity #securebydesign #softwaredevelopment #cisa #securitypledge #hacking #malware #ransomware

Secure by Design in Government – Embedding Resilience into Public Service Delivery | Advent IM Secure by Design embeds resilience in government services, ensuring security, compliance, and public trust from inception.

Secure by Design isn’t just a principle - it’s a shift in culture.

Read how this approach strengthens accountability and reduces costly retrofits: www.advent-im.co.uk/secure-by-de...

#SecureByDesign #PublicSector #SIRO #CyberResilience

Good morning from JOSCAR Live 2025!

#UKDefence #JOSCAR #RiskManagement #SecurebyDesign