Securing Generative AI

Securing Generative AI

位教师：Pearson

访问权限由 Coursera Learning Team 提供

1个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

7 小时完成

灵活的计划

自行安排学习进度

1个模块

深入了解一个主题并学习基础知识。

中级等级

推荐体验

7 小时完成

灵活的计划

自行安排学习进度

您将学到什么

Explore security for deploying and developing AI applications, RAG, agents, and other AI implementations
Learn hands-on with practical skills of real-life AI and machine learning cases
Incorporate security at every stage of AI development, deployment, and operation

您将获得的技能

Security Controls
AI Security
Open Web Application Security Project (OWASP)
MITRE ATT&CK Framework
Threat Modeling
Retrieval-Augmented Generation
Application Security
Security Testing
Large Language Modeling
Generative AI
Secure Coding
Threat Management
Prompt Engineering
AI Orchestration
Embeddings
AI Workflows
Vector Databases
LangChain
Responsible AI
技能部分已折叠。显示 8 项技能，共 19 项。

要了解的详细信息

可分享的证书

添加到您的领英档案

作业

7 项作业

授课语言：英语（English）

了解顶级公司的员工如何掌握热门技能

了解关于 Coursera for Business 的更多信息

Petrobras, TATA, Danone, Capgemini, P&G 和 L'Oreal 的徽标

该课程共有1个模块

This course offers a comprehensive exploration into the crucial security measures necessary for the deployment and development of various AI implementations, including large language models (LLMs) and Retrieval-Augmented Generation (RAG). It addresses critical considerations and mitigations to reduce the overall risk in organizational AI system development processes. Experienced author and trainer Omar Santos emphasizes “secure by design” principles, focusing on security outcomes, radical transparency, and building organizational structures that prioritize security. You will be introduced to AI threats, LLM security, prompt injection, insecure output handling, and Red Team AI models. The course concludes by teaching you how to protect RAG implementations. You learn about orchestration libraries such as LangChain, LlamaIndex, and others, as well as securing vector databases, selecting embedding models, and more.

This module provides a comprehensive overview of generative AI security, covering threats and mitigation strategies for large language models and related systems. Topics include prompt injection, insecure output handling, training data poisoning, model denial of service, supply chain vulnerabilities, sensitive information disclosure, insecure plugin design, excessive agency, overreliance, model theft, red teaming, and securing Retrieval Augmented Generation (RAG) implementations. Learners gain practical knowledge of industry frameworks, best practices, and tools to safeguard AI technologies in production environments.

涵盖的内容

36个视频7个作业

36个视频总计220分钟

Introduction 3分钟
Learning objectives 1分钟
Understanding the Significance of LLMs in the AI Landscape 7分钟
Exploring the Resources for this Course - GitHub Repositories and Others 3分钟
Introducing Retrieval Augmented Generation (RAG) 12分钟
Understanding the OWASP Top-10 Risks for LLMs 6分钟
Exploring the MITRE ATLAS (Adversarial Threat Landscape for Artificial-Intelligence Systems) Framework 6分钟
Understanding the NIST Taxonomy and Terminology of Attacks and Mitigations 7分钟
Learning objectives 1分钟
Defining Prompt Injection Attacks 12分钟
Exploring Real-life Prompt Injection Attacks 4分钟
Using ChatML for OpenAI API Calls to Indicate to the LLM the Source of Prompt Input 10分钟
Enforcing Privilege Control on LLM Access to Backend Systems 6分钟
Best Practices Around API Tokens for Plugins, Data Access, and Function-level Permissions 3分钟
Understanding Insecure Output Handling Attacks 3分钟
Using the OWASP ASVS to Protect Against Insecure Output Handling 5分钟
Learning objectives 1分钟
Understanding Training Data Poisoning Attacks 4分钟
Exploring Model Denial of Service Attacks 3分钟
Understanding the Risks of the AI and ML Supply Chain 9分钟
Best Practices when Using Open-Source Models from Hugging Face and Other Sources 13分钟
Securing Amazon BedRock, SageMaker, Microsoft Azure AI Services, and Other Environments 16分钟
Learning objectives 1分钟
Understanding Sensitive Information Disclosure 3分钟
Exploiting Insecure Plugin Design 3分钟
Avoiding Excessive Agency 4分钟
Learning objectives 1分钟
Understanding Overreliance 5分钟
Exploring Model Theft Attacks 5分钟
Understanding Red Teaming of AI Models 14分钟
Learning objectives 1分钟
Understanding the RAG, LangChain, Llama Index, and AI Orchestration 17分钟
Securing Embedding Models 10分钟
Securing Vector Databases 12分钟
Monitoring and Incident Response 8分钟
Securing Generative AI: Summary 2分钟

7个作业总计210分钟

Introduction to AI Threats and LLM Security Quiz 30分钟
Understanding Prompt Injection & Insecure Output Handling Quiz 30分钟
Training Data Poisoning, Model Denial of Service & Supply Chain Vulnerabilities Quiz 30分钟
Sensitive Information Disclosure, Insecure Plugin Design, and Excessive Agency Quiz 30分钟
Overreliance, Model Theft, and Red Teaming AI Models Quiz 30分钟
Protecting Retrieval Augmented Generation (RAG) Implementations Quiz 30分钟
End of Course Assessment 30分钟