What is OWASP?
The Open Worldwide Application Security Project (OWASP) is a nonprofit organization that works to improve the security of software. It has many programs to work towards this goal. One of those programs is the AISVS.
What is the AISVS?
The OWASP Artificial Intelligence Security Verification Standard (AISVS) focuses on providing developers, architects, and security professionals with a structured framework to evaluate and verify the security and ethical considerations of AI-driven applications. Modeled after existing OWASP standards (such as the ASVS for web applications), AISVS will define categories of requirements for areas including:
🎉🎉🎉 We are just getting started deciding categories for AISVS v1.0 🎉🎉🎉
Reading through the categories and helping us solidify them would be a great help.
A few questions to ask yourself as you review the document:
- If I was a developer or a security tester, would this category be understandable to me?
- Can I think of a way of improving the category choices to add clarity?
Please first log ideas, issues or questions here: https://github.com/OWASP/AISVS/issues.
We may also ask you to open a pull request, https://github.com/OWASP/AISVS/pulls, based on the discussion in the issue.
We are looking for help with translations after v1.0 is released!