Have your say on new software and AI security codes

News article

Views wanted on new software and AI security codes

The UK government is asking businesses for feedback on new interventions to improve the resilience and cyber security of software and artificial intelligence (AI) in the UK.

These measures are part of the £2.6 billion National Cyber Strategy. They include two voluntary codes of practice that seek to improve the baseline cyber security practices and resilience across the UK.

Cyber security of AI: call for views

The Department for Science, Innovation and Technology (DSIT) has proposed a voluntary code of practice for AI technologies, with the intention to use it to develop a new global standard. This code is based on guidelines from the National Cyber Security Centre and international partners. It sets out basic security requirements and outlines actions for stakeholders in the AI supply chain.

Software resilience and security: call for views

DSIT has also created a draft code of practice for software vendors. This voluntary code aims to improve software security and reduce the risk of cyber attacks on supply chains. It sets out the fundamental security and resilience measures that should be expected of anyone who is developing or selling software used by other organisations.

Businesses are invited to review and provide feedback on the AI cyber security code of practice and the software vendors code of practice.

Both calls for views are extended until 11:59pm on 9 August 2024.

Responses will help shape future security policies and standards, and ultimately help boost confidence in digital product adoption across industries and sectors.

First published 24 May 2024