Ant Group today unveiled SecretFlow Cloud, its cloud-based cryptographic computing platform, and a suite of cryptographic computing solutions tailored for large language models (LLMs) at the World Artificial Intelligence Conference in Shanghai.

Leveraging integrated software-hardware cryptographic computing technologies, these solutions enable the secure circulation of encrypted data throughout the hosting and inference processes of LLMs, safeguarding the integrity of LLM assets and data security while significantly enhancing data privacy protection. Providers can now encrypt and deploy their LLMs onto cloud environments effortlessly with a single click through its encrypted hosting service, safeguarding their valuable assets from compromise and theft. Meanwhile, the encrypted inference service ensures efficient data security and the protection of trade secrets during interactions with LLMs.

These solutions allow GPUs to perform computing tasks within trusted execution environments, notably reducing the cost and performance disparity between encrypted LLM inference and plaintext operations, providing a more cost-effective approach. The platform also integrates additional technologies such as memory and disk encryption, ensuring end-to-end encryption and secure cross-domain model hosting management. Additionally, a user-friendly remote attestation system allows for smooth verification through web interfaces, minimizing friction for users.

SecretFlow Cloud currently supports both public and private cloud deployments, and is compatible with commonly-used LLMs in the global market. For instance, in a public cloud setup, users can seamlessly build a new professional LLM on SecretFlow Cloud or migrate an existing LLM to the platform, with its secure LLM inference services ready in as few as 10 minutes with just a click. Moreover, users can purchase cryptographic computing resources on demand to meet their needs.

“Data is the most critical element in the application of LLMs, and cryptographic computing technology significantly enhances the utility of data in cross-domain scenarios,” noted Dr. Lenx Wei, Vice President and Chief Technology Security Officer at Ant Group. “As LLMs evolve toward specialized professional domains and become essential productivity tools, cryptographic computing will play a vital role, particularly in fully unlocking the value of high-quality, domain-specific data sets.”

According to Dr. Wei, while companies often deploy LLMs in private environments to address data security challenges, such methods can incur higher operational costs and compromise both service efficiency and quality, ultimately constraining the potential of LLMs. The cryptographic computing solutions offered by SecretFlow Cloud can effectively resolve these issues.

Looking forward, SecretFlow Cloud aims to further develop its cryptographic computing solutions to ensure data security throughout the full lifecycle of professional LLMs, including their creation, deployment, and service delivery.

Ant Group has been exploring privacy-preserving computing technologies since 2016 and released SecretFlow in 2022 as an open-source privacy-preserving computing framework that features an array of advanced technologies, including multiparty computation, federated learning, Trusted Execution Environments, Homomorphic Encryption, and Differential Privacy. Positioned at the forefront of cryptographic computing, SecretFlow Cloud represents a new generation of privacy-preserving computing technology, poised to overcome pain points in security, cost, and accessibility in data circulation. It offers a solution for instantly harnessing data value, akin to turning on a tap. To date, its technologies have been adopted in industries such as insurance, rural finance, healthcare, public services, and marketing.

The post Ant Group Unveils Cloud-based Cryptographic Computing Platform first appeared on AI-Tech Park.

Varonis Systems, Inc. (Nasdaq: VRNS), a leader in data security, today announced it has secured the “In Process” designation with the Federal Risk and Authorization Management Program (FedRAMP). This designation affirms that Varonis aligns with the goals to promote secure and compliant cloud services to the federal government.

Varonis’ cloud-native Data Security Platform continuously discovers and classifies critical data, removes exposures, and detects advanced threats with AI-powered automation. Hundreds of government agencies and federal systems integrators use Varonis to secure their most critical data and meet EO 14028 requirements for Zero Trust.

Varonis helps organizations fulfill OMB 22-09 Data Pillar requirements through automation. Our user and entity behavior analytics meet OMB 21-31 Advanced (EL-3) requirements by detecting anomalous behavior and stopping threats in real time. Automated dashboards streamline compliance reporting and enable agencies to meet Federal compliance mandates (i.e., NIST 800-53).

U.S. civilian and DOD agencies have long trusted Varonis’ on-prem solutions to secure critical data, enforce Zero Trust, and detect and respond to threats using automation. This designation marks an important milestone for Varonis to deliver its cloud-native Data Security Platform to federal entities.

Michael J. Wallace, President, U.S. Public Sector, Varonis, said, “Varonis is proud to partner with federal agencies to support their mission. Achieving the FedRAMP “In Process” designation restates our commitment to being a vendor of choice in securing critical data for federal entities, and makes it easier for federal teams to turn to Varonis’ cloud-native solution to reduce their blast radius, monitor and respond to threats, and prevent data breaches.”

Varonis is included in government contract vehicles including GSA Schedule 70, DHS CDM-CMaaS BPA, NASA SEWP, U.S. Army ITES-SW2, NIH CIO-CS, and the U.S. Air Force Netcents-2 NetOps contract.

Varonis is now listed in the FedRAMP Marketplace. For more information about Varonis solutions for federal agencies, visit https://www.varonis.com/company/public-sector.

Additional Resources

• See Varonis in action: schedule a 30-minute demo.
• Check out these Varonis integrations.
• For more information on Varonis’ solution portfolio, please visit www.varonis.com.
• Visit our blog and join the conversation on X (Twitter), LinkedIn, and YouTube.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Varonis achieves FedRAMP “In Process” Designation first appeared on AI-Tech Park.

The ISO 27701 certification underscores Suzy’s dedication to maintaining the highest standards of privacy and data protection for its clients and stakeholders. As an extension of the ISO 27001 standard, ISO 27701 provides additional requirements and guidance for establishing, implementing, maintaining, and continually improving a privacy information management system.

“Achieving the ISO 27701 certification is a testament to our unwavering commitment to safeguarding the privacy and personal data of our clients,” said Matt Britton, CEO of Suzy, Inc. “Building on the foundation of our ISO 27001 certification, this new achievement demonstrates our ongoing efforts to enhance our data protection measures and ensure compliance with global privacy regulations.”

Suzy first earned its ISO 27001 certification in 2020 and has consistently maintained and improved its information security management system (ISMS) through regular audits and updates. The re-certification of ISO 27001 this year further solidifies Suzy’s reputation as a trusted partner in the industry, dedicated to upholding the highest security standards.

The ISO 27701 certification process involved a thorough assessment of Suzy’s privacy management practices, including risk management, data processing activities, and regulatory compliance. The audits were conducted by an independent, third-party auditor accredited by the ANSI National Accreditation Board (ANAB). This certification not only strengthens Suzy’s internal processes but also provides clients with assurance that their data is managed with the utmost care and in compliance with international privacy standards.

“With data privacy becoming increasingly crucial in today’s digital landscape, our ISO 27701 certification highlights Suzy’s proactive approach to privacy management,” said Jen Healy, General Counsel at Suzy, Inc. “We are committed to continuously improving our practices to protect the information entrusted to us by our clients.”

Suzy’s ISO 27701 and ISO 27001 achievements were made possible by the dedicated efforts of its internal audit team, co-led by Rachel Harris, Deputy General Counsel, and Andrew Kropf, SVP IT & Security. The team worked diligently to review all necessary protocols, standards, and evidence. Their work was supported by Suzy’s Information Security and Privacy Council, which includes several executive leaders, and contributions from individuals across the company. This collaborative approach underscores Suzy’s commitment to upholding high standards of data security and privacy across the organization.

Suzy, Inc. remains dedicated to building trust through use of the latest data protection practices. This commitment to excellence in privacy and security will continue to be a cornerstone of Suzy’s operations as the company grows and evolves.

For more information about Suzy, Inc. and its commitment to privacy and data security, please visit https://www.suzy.com/trust-center.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Suzy, Inc. Achieves ISO 27701 Certification first appeared on AI-Tech Park.

Immuta, the data security experts, has been named to Inc.’s annual Best Workplaces list. Prominently featured on Inc.com, the list is the result of a comprehensive measurement of American companies that have excelled in creating exceptional workplaces and company cultures, whether operating in a physical or a virtual facility.

Since 2015, Immuta has empowered some of the world’s largest enterprises to de-risk their data, and drive discovery, collaboration, and innovation. Amid a rapid rise in data sources, platforms, users, use cases, and regulations, the Immuta Data Security Platform balances secure access with compliance, so customers can grow and succeed, while mitigating the risks of misuse, leaks, and breaches.

Behind the Immuta platform are more than 200 employees working across geographies to find new solutions to securing data. Headquartered in Boston, MA, with offices in Columbus, OH, College Park, MD, and international locations including London and Sydney, Immuta’s award-winning company culture is fueled by an emphasis on innovation and growth. Employees prioritize the company’s core values, which enhance communication, collaboration, and customer outcomes. As AI, analytics, data marketplaces, and other technology advancements evolve, Immuta fosters a culture of continuous learning, with a focus on the core mission of protecting and treating data ethically.

After collecting data from thousands of submissions, Inc. selected 543 honorees this year. Each company that was nominated took part in an employee survey, conducted by Quantum Workplace, which included topics such as management effectiveness, perks, fostering employee growth, and overall company culture. The organization’s benefits were also audited to determine overall score and ranking.

“It’s an honor to be recognized by Inc. for a sixth consecutive year,” said Matthew Carroll, CEO, Immuta. “At Immuta, we strive to put our people first by helping them bridge the gap between personal and professional growth so they can thrive. Our commitment to creating a people-first culture fosters strong relationships among colleagues and with the communities they live in, and I’m incredibly proud of our team’s dedication to maintaining this supportive environment.”

“Each year, Inc.’s Best Workplaces program recognizes the very best in terms of companies that have fostered a truly amazing culture,” says Inc. editor-in-chief Mike Hofman. “We use hard metrics and data as well as qualitative measures for judging in order to find the very best—and we’re proud that the program is highly selective.”

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Immuta named on Inc.’s Annual List of Best Workplaces for 2024 first appeared on AI-Tech Park.

Lepide has been at the forefront of providing solutions to organizations grappling with increasingly complex challenges in data security, identity security, and compliance. With this strategic investment from Foresight Group, Lepide aims to further strengthen its position in the market and expand its product offerings to meet the evolving needs of its customers.

“We are thrilled to partner with Foresight Group as we embark on the next phase of our journey to grow our market share in the data security platform space,” said Aidan Simister, CEO of Lepide. “We’re already profitable as a business, so we will be fully channeling this investment into rapid growth initiatives. The investment also underscores the confidence that Foresight Group has in our vision and technology and will enable us to accelerate innovation, expand our reach, and deliver even greater value to our customers.”

Lepide’s data security platform empowers organizations to proactively detect and respond to threats, ensure compliance with regulations, and safeguard sensitive data across their IT infrastructure. By leveraging advanced analytics, machine learning, and automation, Lepide enables organizations to stay ahead of emerging threats and protect their most valuable assets.

With the backing of Foresight Group, Lepide is well-positioned to scale its operations, invest in research and development, and enhance its customer support capabilities. The company remains committed to empowering organizations of all sizes and industries to effectively protect their data and mitigate security risks.

For more information about Lepide and its solutions, please visit www.lepide.com

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Lepide Secures Investment from Foresight Group first appeared on AI-Tech Park.

Metomic, a next generation data security solution for protecting sensitive data in the new era of collaborative SaaS, Gen AI and cloud applications, today launched its new integration with Google Groups. The feature enables IT and security teams to ensure data loss prevention (DLP) across all business units that leverage Google Groups, allowing organizations to better manage and enforce data security protections and compliance across the platform. In addition to the Google Groups integration, Metomic also rolled out integrations with Google Drive Labels and external sharing detection and remediation capabilities in Google Drive.

By implementing Metomic’s Google User Groups feature, security teams can easily manage admin controls, while also achieving greater visibility into groups that may have potentially high-risk public files. The Google Drive Labels feature allows security teams to effectively categorize and manage files. With the newly added external sharing detection and remediation for Google Drive, IT and security teams can quickly detect if a file is shared externally and, if necessary, remediate the risk—a major benefit for highly regulated businesses in the fintech and healthcare technology space.

According to industry reports, Google controls more than 44% of the office productivity software market, with everyone from SMBs to large enterprises taking advantage of Google’s various workspace apps. While these tools offer unparalleled collaboration between departments and drive productivity throughout an organization, they can also be a challenge when it comes to data security risks. Last year, a data breach investigations report from Verizon revealed that 74% of data breaches involved a human element—meaning that someone had either inadvertently caused an error that resulted in a data breach or purposely exploited sensitive data.

With Metomic’s Google User Groups integration, IT and security teams can create workflows that allow them to govern data across the group, manage admin permissions, and modify access controls with ease. The Google Drive Labels feature makes it possible to view all Google Drive Labels within the Metomic dashboard, vastly improving visibility, enhancing compliance and security, and offering more efficient management capabilities. And with the additional external sharing detection and remediation in Google Drive, security leaders can identify a security risk within the Google Drive workspace before it becomes a major catastrophe.

“We know how important Google’s productivity tools are to businesses around the world. Major organizations rely on Google Groups, Google Labels, and Google Drive access to reach their most critical business goals. But we also know just how vulnerable these platforms can be to a breach without the right data security protections in place,” said Rich Vibert, CEO and co-founder, Metomic. “Our research shows that 40% of Google Drive Files contain sensitive data. We built these integrations with this data point in mind, ensuring businesses of all sizes—and from all sectors—can take full advantage of Google’s collaborative apps without putting their organizations at risk of a data security breach. With Metomic in place, your security team gains a robust data management solution that empowers your employees to make informed decisions about the files they share. Employees across the organization can embrace these collaborative apps, while the security team can rest easy with full visibility into the platforms.”

Metomic’s newly-added integrations come with automated employee notifications to alert users when sensitive data might be at risk, while also educating users on the importance of data security. With this latest roll-out, Metomic furthers its commitment to help businesses foster a culture of responsibility and awareness around data security. To learn more, visit Metomic’s Metomic for Google ecosystem page.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Metomic announced the launch of New Google User Groups Feature first appeared on AI-Tech Park.

Rockwell Automation, Inc. (NYSE: ROK), the world’s largest company dedicated to industrial automation and digital transformation, today announces further collaborations with NVIDIA to supercharge the development of safer and smarter industrial AI mobile robots.

Earlier this year, Rockwell announced its ongoing work with NVIDIA to increase the scale and scope of AI in manufacturing. The collaboration is now expanding to involve robotics, helping drive the use of AI in autonomous mobile robots (AMRs) to improve performance and efficiency. Rockwell brings AMRs and production automation applications to industrial customers who are looking for increased efficiencies in their factories. This will help unlock unrealized potential in this space via the integration of the NVIDIA Isaac robotics platform.

“We’re invigorated by this continued collaboration with NVIDIA,” said Ryan Gariepy, CTO, OTTO Motors by Rockwell Automation. “Rockwell’s industrial AI expertise, combined with NVIDIA AI and robotics technologies, is going to help drive an exciting new generation of autonomous mobile robots.”

Rockwell also continues its work to integrate NVIDIA Omniverse Cloud application programming interfaces (APIs) with its Emulate3D software, bringing users data interoperability, live collaboration, and photo-realistic graphics rendering for designing, building, and operating industrial-scale digital twins of production systems.

According to the recently released “State of Smart Manufacturing Report,” AI ranks as the top feature manufacturers believe will drive the biggest business outcomes. In fact, 83 percent of manufacturers expect to use generative AI in their operations in 2024. As part of this collaboration, the Rockwell Automation PartnerNetwork now includes NVIDIA, giving Rockwell customers more applications to help make their operations more resilient, agile, and sustainable.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Rockwell Automation to Advance Intelligent Automation, Mobile Robotics first appeared on AI-Tech Park.

Today, Cyberhaven released a new report shedding light on AI adoption trends and their correlation to heightened risk. The analysis from Cyberhaven Labs draws on a robust dataset derived from the actual usage patterns of 3 million workers, providing an unprecedented lens through which we can examine the adoption and implications of AI in the corporate environment.

“The fast rise of AI mirrors past transformative shifts like the internet and cloud computing. But just as early cloud adopters navigated new challenges, today’s companies must contend with the complexities introduced by widespread AI adoption,” Howard Ting, CEO of Cyberhaven.  Our research on AI usage and risks not only highlights the impact of these technologies but also underscores the emerging risks that could parallel those encountered during significant technological upheavals in the past.”

Click here to download the report.

Key findings:

AI usage in the workplace is accelerating

• The amount of corporate data workers put into AI tools increased 485% from March 2023 to March 2024, and it is increasing exponentially.
• In March 2024, 23.6% of tech workers put corporate data into an AI tool (the highest of any industry).
• We’re still early in the adoption curve. Just 4.7% of employees at financial firms, 2.8% in pharma and life sciences, and 0.6% at manufacturing firms are using AI tools.

End users are outpacing corporate IT, fueling use of risky “shadow AI” accounts

• 73.8% of ChatGPT usage at work is through non-corporate accounts, that unlike enterprise versions incorporate whatever you share in public models.
• The percentage of non-corporate accounts is even higher for Gemini (94.4%) and Bard (95.9%) usage.
• AI usage is dominated by products from the big 3: OpenAI, Google, and Microsoft AI products account for 96.0% of AI usage at work.

Broadening usage of AI encompasses more types of sensitive company data

• AI adoption is reaching new departments and use cases involving sensitive data: 27.4% of data employees put into AI tools is sensitive, up from 10.7% a year ago.
• The top sensitive data type put into AI tools is customer support (16.3% of sensitive data), which includes confidential information customers share in support tickets.
• Other forms of sensitive data include source code (12.7%), research and development materials (10.8%), HR and employees records (3.9%), and financial documents (2.3%).

A large volume of sensitive company data is going to “shadow AI” accounts

• Workers are putting company data into personal “shadow AI” accounts that, unlike enterprise versions, incorporate whatever you share with them in public models.
• 82.8% of legal documents employees put into AI tools are going to non-corporate accounts, potentially exposing the information publicly.
• Roughly half of source code (50.8%), research and development materials (55.3%), and HR and employees records (49.0%) put into AI are sent to non-corporate accounts.

AI-generated content is being used in potentially risky ways

• 3.4% of research and development materials created in March 2024 originated from AI tools, potentially creating risk if patented material was introduced.
• 3.2% of source code insertions are generated by AI outside of coding tools (which have enterprise approved coding copilots), potentially creating the risk of vulnerabilities.
• 3.0% of graphics and design content originated from AI, which can be a problem since AI tools can output trademarked material.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Surge in ‘Shadow AI’ Accounts Poses Fresh Risks to Corporate Data first appeared on AI-Tech Park.

With this investment Velotix plans to further revolutionize automated policy management and enhance secure data access at scale, setting new standards for innovation, privacy compliance, and data integrity.

Dr. Adi Hod, Co-Founder, and CEO of Velotix commented on the collaboration, stating, “This investment marks a pivotal moment for Velotix, validating our commitment to delivering a cutting-edge data security solution powered by AI. This investment from Barclays, a global leader in finance, reinforces our continued leadership and innovative approach in the industry”.

Kester Keating, Head of US Principal Investments at Barclays, shared his perspective on the investment, stating, “As an alumni of the bank’s Rise Growth Academy, Barclays is pleased to support Velotix in its mission to revolutionize data security. We believe that together, we can create significant value and drive innovation in the financial services sector.”

Alex Pinchev, Capri Ventures Founder shared, “Velotix’s commitment to revolutionizing data security through advanced AI-driven solutions is truly impressive. We believe that their innovative approach not only addresses current data security challenges but also sets new standards for the industry. Capri Ventures is excited to be part of Velotix’s journey and contribute to their continued success in reshaping the data security landscape.”

Velotix cements its premier status in data security, rapidly expanding as a leading company with its AI-driven platform. The company remains dedicated to pushing the boundaries of data security, specifically automating policy enforcement, and providing context-based access to data through advanced AI algorithms. The investment further solidifies its position as the leading choice for forward-thinking financial institutions worldwide.

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post Velotix Secures Strategic Investment from Barclays Bank & Capri Ventures first appeared on AI-Tech Park.

BigID, the pioneer in AI-augmented data security, compliance, and privacy for modern cloud-first enterprises, launches its data security posture management integration with ServiceNow’s Security Posture Control. This integration enables joint customers to streamline security, compliance, and operational efficiency for ServiceNow’s Security Posture Control, enhancing security vulnerability identification and prioritization.

Modern data environments require a holistic view of IT assets and their associated data context. Fragmented data across siloed systems hinders effective security, compliance, and IT workflows. BigID’s Service Graph Connector integration with ServiceNow enables organizations to easily bridge this gap, reduce risk, and streamline their data controls.

Key benefits to this unique integration include:

• A Unified IT and Data Asset Inventory via BigID’s unique bi-directional CMDB integration
• ITSM and ITSecurity Ops enrichment with data information from BigID
• Integrated risk management enrichment in ServiceNow with granular context from BigID
• Ability to identify gaps and prioritize remediation workflows across ServiceNow Security, Risk and Privacy workflows.
• Full workflow integration across BigID and the ServiceNow platform to streamline compliance, reporting, and notifications.
• Data enrichment for ServiceNow’s Security Posture Control
• Enhanced support via ServiceNow Service Graph Connector.

“By combining BigID with ServiceNow, organizations gain a single pane of glass for both IT assets and their associated data. This powerful integration streamlines workflows, accelerates time-to-value, and boosts trust in the accuracy and consistency of CMDB data,” said Jim Brown, Director of Global Partner Management.  “Organizations can leverage data-driven automation for security, risk, privacy, and operational efficiency – all within their existing ServiceNow environment.”

To learn more:

• Request a Demo today and unlock the power of unified data management.
  
• BigID.com/blog 

Explore AITechPark for the latest advancements in AI, IOT, Cybersecurity, AITech News, and insightful updates from industry experts!

The post BigID launches integration with ServiceNow’s Security Posture Control first appeared on AI-Tech Park.