RAIDP04-BP03 Protect data from being manipulated or accessed for unintended purposes
Implement the principle of least privilege, only providing access to relevant data to those who really need it for both automated systems and human users accessing your datasets. Consider scanning datasets for unwanted content, including adversarial prompts, disinformation, malware, or other data poisoning attempts that could affect downstream system behavior. Establish access controls and audit trails that track who accesses datasets and what modifications are made. Use cryptographic verification methods where appropriate to detect unauthorized changes to critical datasets, particularly those used for evaluation or system operation.
Level of risk exposed if this best practice is not established: High
Implementation considerations
-
Build permission systems that align access controls with specific role requirements, assisting to reduce broad access to data.
-
Set up scanning tools that look for unwanted content like adversarial prompts, fake information, or suspicious patterns before a dataset gets used. These scanners should automatically flag potential data poisoning attempts or embedded malware that could affect your models.
-
Create detailed logs that track who looked at which datasets, when they accessed them, and what changes they made to the data. Your audit trail should be detailed enough that you can reconstruct exactly what happened during dataset operations.
-
Use checksums or digital signatures on your most important datasets so you can tell immediately they were changed without permission. This is especially important for evaluation datasets and operational data that your system relies on.
-
Plan out what your team will do when security problems happen, including how to quickly isolate manipulated datasets and figure out which models or evaluations might be affected.
Resources
Related best practice:
-
RAISP02-BP02 Privacy: Build privacy-preserving mechanisms into the core AI system
-
RAISP03-BP02 Security: Implement security safeguards to block AI-specific threats
Related documents:
Related videos:
Related examples:
Related tools: