Litcius/Paper detail

A cybersecurity risk analysis framework for systems with artificial intelligence components

Jose Manuel Camacho, Aitor Couce‐Vieira, David Arroyo, David Rı́os Insua

2025International Transactions in Operational Research8 citationsDOIOpen Access PDF

Abstract

Abstract The introduction of the European Union Artificial Intelligence (AI) Act, the NIST AI Risk Management Framework, and related international norms and policy documents demand a better understanding and implementation of novel risk analysis issues when facing systems with AI components: dealing with new AI‐related impacts; incorporating AI‐based assets within the cyber architecture; considering AI‐based security and recovery controls within the cybersecurity portfolio; and managing novel AI‐based targeted attacks. This paper suggests solutions to such issues and integrates them within a broad novel framework to support risk analysis in systems with AI components and services. An example concerning automated driving systems illustrates the framework validating it conceptually.

Topics & Concepts

Computer scienceComputer securityRisk analysis (engineering)BusinessInformation and Cyber SecuritySmart Grid Security and ResilienceAdversarial Robustness in Machine Learning