Research and analysis of international standards and regulatory requirements for artificial intelligence se-curity, development of a security model for Ukraine
DOI:
https://doi.org/10.30837/rt.2025.2.221.02Keywords:
cybersecurity, security, artificial intelligence, technology, standardisation, information modelAbstract
The article presents a comprehensive analysis of international approaches to the regulation of artificial intelligence (AI) security and the potential for their application within the Ukrainian context. It examines contemporary cybersecurity challenges in the era of AI development, including threats of data breaches, attacks involving generative models, and the misuse of deepfake technologies. Key international standards are analyzed, such as the EU AI Act, the NIST AI Risk Management Framework, ISO/IEC 23894, as well as regulatory approaches implemented in the United States and the United Arab Emirates. Special emphasis is placed on the importance of a multi-level AI risk management system that takes into account technical, ethical, legal, and social aspects. Particular attention is given to the study of Ukraine’s strategic documents aimed at developing a national AI policy aligned with European requirements. The concept of gradual implementation of ethical, legal, and technical norms into AI regulation is highlighted, through mechanisms such as certification, the establishment of regulatory sandboxes, and public consultations. The proposed author's model for AI security in Ukraine is based on the principles of multilateral interaction among the state, businesses, the academic community, civil society, and international partners, involving the active engagement of all stakeholders in the process of policy and standards development. The model envisions a risk-oriented approach to the development and deployment of AI systems, the introduction of a public ethical AI registry, the participation of citizens in audit and monitoring processes for high-risk systems, and the promotion of the responsible use of emerging technologies in socially significant sectors. The article emphasizes that Ukraine has a unique opportunity to offer the world its own approach to the secure and ethical use of AI, which is flexible, open, and adaptive, based on the principles of trust, responsibility, digital resilience, and respect for human rights.
References
Cost of a Data Breach Report 2024. [Електронний ресурс]. Режим доступу: https://www.ibm.com/reports/data-breach.
IBM Report: Escalating Data Breach Disruption Pushes Costs to New Highs. [Електронний ресурс]. Режим доступу: https://newsroom.ibm.com/2024-07-30-ibm-report-escalating-data-breach-disruption-pushes-costs-to-new-highs?utm_source=chatgpt.com.
Атаки на основі штучного інтелекту: нові виклики для кібербезпеки. [Електронний ресурс]. Режим до-ступу: https://wezom.com.ua/ua/blog/ataki-na-osnovi-shtuchnogo-intelektu-novi-vikliki-dlya-kiberbezpeki.
5 реальних прикладів хакерських атак за допомогою ШІ. [Електронний ресурс]. Режим доступу: https://dev.ua/news/5-prykladiv-khakerskykh-atak-ai.
EU AI Act: first regulation on artificial intelligence. [Електронний ресурс]. Режим доступу: https://www.europarl.europa.eu/topics/en/article/20230601STO93804/eu-ai-act-first-regulation-on-artificial-intelligence.
Artificial Intelligence Risk Management Framework: Generative Artificial Intelligence Profile. [Електронний ресурс]. Режим доступу: https://nvlpubs.nist.gov/nistpubs/ai/NIST.AI.600-1.pdf.
Information technology – Artificial intelligence – Guidance on risk management [Електронний ресурс]. Ре-жим доступу: https://cdn.standards.iteh.ai/samples/77304/cb803ee4e9624430a5db177459158b24/ISO-IEC-23894-2023.pdf.
AI Watch: Global regulatory tracker – United Arab Emirates. [Електронний ресурс]. Режим доступу: https://www.whitecase.com/insight-our-thinking/ai-watch-global-regulatory-tracker-uae.
Дорожня карта з регулювання штучного інтелекту в Україні Bottom-Up Підхід. [Електронний ресурс]. Режим доступу: https://surli.cc/tyzbug.
Біла книга з регулювання ШІ в Україні: бачення Мінцифри. Режим доступу: https://thedigital.gov.ua/storage/uploads/files/page/community/docs/Регулювання%20ШІ.pdf.
Downloads
Published
How to Cite
Issue
Section
License
Authors who publish with this journal agree to the following terms:
1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).
