An official website of the United States government
A .gov website belongs to an official government organization in the United States.
A lock (lock ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Press Release | May 22, 2025

NSA’s AISC Releases Joint Guidance on the Risks and Best Practices in AI Data Security

FORT MEADE, Md. – The National Security Agency’s Artificial Intelligence Security Center (AISC) is releasing the joint Cybersecurity Information Sheet (CSI), “AI Data Security: Best Practices for Securing Data Used to Train & Operate AI Systems,” to provide best practices and recommendations for the data security of AI systems.
 
The data utilized throughout the development, testing, and operation of an AI system is a vital element of the AI supply chain; protecting this data is critical in the successful development and deployment of AI systems.
 
As organizations continue to increase their reliance on AI-driven outcomes, ensuring data security becomes increasingly crucial for maintaining accuracy, reliability, and integrity. 
 
The CSI offers general best practices organizations can implement to secure and protect the data used in AI-based systems, such as employing digital signatures to authenticate trusted revisions, tracking data provenance, and leveraging trusted infrastructure. The CSI also emphasizes the necessity of robust data protection strategies throughout the entire AI system lifecycle.
 
Additionally, the CSI highlights potential risks to the security of AI data and provides detailed risk information and mitigations for: data supply chain; maliciously modified data; and data drift.
 
The CSI is critically relevant for organizations—especially system owners and administrators within the Department of Defense, National Security Systems, and the Defense Industrial Base—that already use AI systems in their day-to-day operations and those that are seeking to integrate AI into their infrastructure. These organizations are encouraged to adopt these best practices and mitigation strategies into their mission environments to fortify their AI systems and safeguard sensitive and critical data.
 
Co-sealing this CSI are the National Security Agency (NSA); Cybersecurity and Infrastructure Agency (CISA); Federal Bureau of Investigation (FBI); Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC); New Zealand’s National Cyber Security Centre (NCSC-NZ); and United Kingdom’s National Cyber Security Centre (NCSC-UK).

Read the full report here. 

Visit our full library for more cybersecurity information and technical guidance.
 

NSA Media Relations
MediaRelations@nsa.gov
443-634-0721

Related Press Advisories

NSA and Others Publish Advisory Warning of Russian State-sponsored Cyber Campaign Targeting Western Logistics and Technology Entities
NSA Publishes Recommendations for Smart Controller Security Controls and Technical Requirements for OT Environments
NSA and partners Issue Guidance on Fast Flux as a National Security Threat
CSI AI AI Data Security data security aisc Artificial Intelligence artificial intelligence security center nss DIB
Hosted by Defense Media Activity - WEB.mil Veterans Crisis Line number. Dial 988 then Press 1