stackconf 2024 | Generative AI Security — A Practical Guide to Securing Your AI Application by Puria Izady & Manuel Heinkel
NETWAYS
119 views
38 slides
Jul 08, 2024
Slide 1 of 38
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
About This Presentation
Generative AI offers immense opportunities while also introducing new security challenges. Security leaders must take concrete steps to enable rapid experimentation without compromising security. We will discuss key strategies for securing generative AI applications, including threat modeling, guard...
Slide Content
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved. 1
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Data Strategy for Generative AI Applications
Why Your Data is the Differentiator
Manuel Heinkel
Solutions Architect
AWS
2
Puria Izady
Solutions Architect
AWS
Data Strategy for Generative AI Applications
Why Your Data is the Differentiator
Manuel Heinkel
Solutions Architect
AWS
2
Puria Izady
Solutions Architect
AWS
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Innovation can
transform industries
GENERATIVE AI
Innovation can
transform industries
GENERATIVE AI
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Generative AI
Application
Generative AI
Application
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Generative AI
Application
Data
Foundation
Slide is animated
Generative AI
Application
Data
Foundation
Slide is animated
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Innovating beyond the foundation model
Innovating beyond the foundation model
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Innovating beyond the foundation model
Innovating beyond the foundation model
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Your data is the differentiator
020406080100120140160
Other
Data infrastructure
Changing employee behaviors or work processes
Data literacy and proficiency
Skills needed to develop, modify, or apply LLMs
Security and privacy
Guardrails around the effective and responsible use of…
Finding the right use case
Data quality
Question: In your opinion what is the biggest challenge for your organization
in realizing the potential of generative AI? (Select all that apply)
Your data is the differentiator
020406080100120140160
Other
Data infrastructure
Changing employee behaviors or work processes
Data literacy and proficiency
Skills needed to develop, modify, or apply LLMs
Security and privacy
Guardrails around the effective and responsible use of…
Finding the right use case
Data quality
Question: In your opinion what is the biggest challenge for your organization
in realizing the potential of generative AI? (Select all that apply)
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
GenerationQuestion
answering
Summarization
TranslationCorrectionClassification
TextImages
Video/AudioCode
Generative AI core capabilities
Capabilities Input/Output
GenerationQuestion
answering
Summarization
TranslationCorrectionClassification
TextImages
Video/AudioCode
Generative AI core capabilities
Capabilities Input/Output
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
The Year
of POCs
What does this mean for my business?What is a Foundation Model?
What is a Large Language Model?
What is generative AI?
Do I need to become a prompt engineer?Is this secure?
How do I choose a model?Where do I get started?
Which models should we try out?What is FM?
Slide is animated
The Year
of POCs
What does this mean for my business?What is a Foundation Model?
What is a Large Language Model?
What is generative AI?
Do I need to become a prompt engineer?Is this secure?
How do I choose a model?Where do I get started?
Which models should we try out?What is FM?
Slide is animated
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
The Year of
Production
(FOR SOME)
How do I prioritize my projects?
How can we move faster?
How do I make this real?How can I lower my costs?
How I can I scale this?Which models should I use?
How do I manage risks?Should I train my own model?
What customization method should I use?
Slide is animated
The Year of
Production
(FOR SOME)
How do I prioritize my projects?
How can we move faster?
How do I make this real?How can I lower my costs?
How I can I scale this?Which models should I use?
How do I manage risks?Should I train my own model?
What customization method should I use?
Slide is animated
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Generative AI lifecycle
Prompt
Engineering
RAG
Fine Tuning
Input
Output
Use Case
Validation
1
Development EnvironmentProduction Environment
Model
Selection
2
Model
Evaluation
3
Integrate to
Application
5Are
Results
OK?
4
a
b
c
No
Yes
Generative AI lifecycle
Prompt
Engineering
RAG
Fine Tuning
Input
Output
Use Case
Validation
1
Development EnvironmentProduction Environment
Model
Selection
2
Model
Evaluation
3
Integrate to
Application
5Are
Results
OK?
4
a
b
c
No
Yes
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
VisionTextAudio
MODALITY
Text
Processing
Information
RetrievalConversations
TEXT USECASES
Agents
Open SourceOpen WeightProprietary
OPEN OR CLOSED
SizeContext
WindowCost
KEY CHARACTERISTICS
LatencyQualityCustomization
Foundation model selection framework
VisionTextAudio
MODALITY
Text
Processing
Information
RetrievalConversations
TEXT USECASES
Agents
Open SourceOpen WeightProprietary
OPEN OR CLOSED
SizeContext
WindowCost
KEY CHARACTERISTICS
LatencyQualityCustomization
Foundation model selection framework
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
A more personal
virtualagent
An online travel agency wants to generate
personalized travel itineraries
The data
Past trips
Web history
Travel preferences
Flight and hotel inventory
Promotions
Similar traveler details
A more personal
virtualagent
An online travel agency wants to generate
personalized travel itineraries
The data
Past trips
Web history
Travel preferences
Flight and hotel inventory
Promotions
Similar traveler details
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Data strategy
Data strategy
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Value from data
VALUEDATA???
Value from data
VALUEDATA???
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Data management
VALUEDATA
Collect, store, ETL, analyze, deliver, ML models,
visualized reports, retain, delete, backup
Consistency, integrity, security, quality,
availability, usability, accountability of data
Data Management
Internal stakeholders
External stakeholders
Paid 3rd party data
Open data
Optimize Process
Reduce cost
New revenue stream
Improve customer experiences
Strategies, Principles, Policies, Procedures,
Roles & Responsibilities, Metrics, Tools, Data Ownership
Data Governance
Data Value Chain
Data management
VALUEDATA
Collect, store, ETL, analyze, deliver, ML models,
visualized reports, retain, delete, backup
Consistency, integrity, security, quality,
availability, usability, accountability of data
Data Management
Internal stakeholders
External stakeholders
Paid 3rd party data
Open data
Optimize Process
Reduce cost
New revenue stream
Improve customer experiences
Strategies, Principles, Policies, Procedures,
Roles & Responsibilities, Metrics, Tools, Data Ownership
Data Governance
Data Value Chain
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Deriving insights from data can be challenging
DATA
WAREHOUSE
DATA
LAKE
PEOPLE
DATA
People silosData silos
COST
COMPLIANCE
Business silos
Deriving insights from data can be challenging
DATA
WAREHOUSE
DATA
LAKE
PEOPLE
DATA
People silosData silos
COST
COMPLIANCE
Business silos
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
End-to-end data strategy
FoundationsConsumersProducers
Central IT
Select and deploy tools
Domain experts
Build curated data products
Business users
Drive business results
End-to-end data strategy
FoundationsConsumersProducers
Central IT
Select and deploy tools
Domain experts
Build curated data products
Business users
Drive business results
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Modern Data Strategy
Data Lake
Log Analytics Operational DB
Big Data
Processing
AI & ML
BI & Visualization
Data Warehouse
TECHNOLOGY
PEOPLE
PROCESS
MINDSET
Modern Data Strategy
Data Lake
Log Analytics Operational DB
Big Data
Processing
AI & ML
BI & Visualization
Data Warehouse
TECHNOLOGY
PEOPLE
PROCESS
MINDSET
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
How to provide your data to
generative AI applications?
How to provide your data to
generative AI applications?
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Example generative AI interaction
I’m interested in getting car insurance.
BOB
Good morning Bob, I’d be happy to help you with car insurance.
I have your car details on record.
You drive a 2021 BMW X3 and live at Landsberger Allee 26, Berlin.
Is that correct?
Here are the quotes I found for you:
ABC Insurance: USD 178 per month
XYZ Insurance: USD 198 per month
Would you like more details about any of these options?
Example generative AI interaction
I’m interested in getting car insurance.
BOB
Good morning Bob, I’d be happy to help you with car insurance.
I have your car details on record.
You drive a 2021 BMW X3 and live at Landsberger Allee 26, Berlin.
Is that correct?
Here are the quotes I found for you:
ABC Insurance: USD 178 per month
XYZ Insurance: USD 198 per month
Would you like more details about any of these options?
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Basic generative AI application
End-user Generative AI
applicationLLM
User input LLM prompt
App. responseLLM response
Basic generative AI application
End-user Generative AI
applicationLLM
User input LLM prompt
App. responseLLM response
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Prompt engineering behind the example
“I’m interested in getting car
insurance.”
User input
Prompt engineering behind the example
“I’m interested in getting car
insurance.”
User input
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
The human is Bob, lives at 123 Main
St, Anytown, FL, USA and owns a 2021
BMW X3. Household members include
Sarah (wife) and Jake (son).
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
Situational context
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
The human is Bob, lives at 123 Main
St, Anytown, FL, USA and owns a 2021
BMW X3. Household members include
Sarah (wife) and Jake (son).
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
Situational context
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
The human is Bob, lives at 123 Main
St, Anytown, FL, USA and owns a 2021
BMW X3. Household members include
Sarah (wife) and Jake (son).
Auto insurance is one of the most used
types of personal insurance. Most
states require that you purchase some
kind of insurance coverage to drive legally in the state. […]. Reference:
https://content.naic.org/consumer/auto
-insurance.htm
[…]
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
Situational context
Semantic context
derived using RAG
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
The human is Bob, lives at 123 Main
St, Anytown, FL, USA and owns a 2021
BMW X3. Household members include
Sarah (wife) and Jake (son).
Auto insurance is one of the most used
types of personal insurance. Most
states require that you purchase some
kind of insurance coverage to drive legally in the state. […]. Reference:
https://content.naic.org/consumer/auto
-insurance.htm
[…]
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
Situational context
Semantic context
derived using RAG
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
The human is Bob, lives at 123 Main
St, Anytown, FL, USA and owns a 2021
BMW X3. Household members include
Sarah (wife) and Jake (son).
Auto insurance is one of the most used
types of personal insurance. Most
states require that you purchase some
kind of insurance coverage to drive legally in the state. […]. Reference:
https://content.naic.org/consumer/auto
-insurance.htm
[…]
I’m interested in getting car
insurance.
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
Situational context
User prompt/question
Semantic context
derived using RAG
Prompt engineering behind the example
You are a conversation agent for the
HorizonGuard insurance marketplace.
Responses to questions are written to
be helpful and inform in a unbiased
manner. Ask human to confirm responses.
The human is Bob, lives at 123 Main
St, Anytown, FL, USA and owns a 2021
BMW X3. Household members include
Sarah (wife) and Jake (son).
Auto insurance is one of the most used
types of personal insurance. Most
states require that you purchase some
kind of insurance coverage to drive legally in the state. […]. Reference:
https://content.naic.org/consumer/auto
-insurance.htm
[…]
I’m interested in getting car
insurance.
Prompt engineering
Using prompt template, context from
structured data sources, and semantic
context
“I’m interested in getting car
insurance.”
User input
Instructions for the
model
Situational context
User prompt/question
Semantic context
derived using RAG
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Differentiating generative AI with your data
End-user Generative AI
applicationLLM
User inputEngineered prompt
App. responseLLM response
INSTRUCTIONS FOR THE MODEL
from prompt template
SITUATIONAL CONTEXT
Conversation history and
state
Data from purpose-built data
stores & APIs
SEMANTIC CONTEXT
from vector data stores and search
In-Context Learning (ICL) complemented
with Retrieval Augmented Generation (RAG) derived data
Differentiating generative AI with your data
End-user Generative AI
applicationLLM
User inputEngineered prompt
App. responseLLM response
INSTRUCTIONS FOR THE MODEL
from prompt template
SITUATIONAL CONTEXT
Conversation history and
state
Data from purpose-built data
stores & APIs
SEMANTIC CONTEXT
from vector data stores and search
In-Context Learning (ICL) complemented
with Retrieval Augmented Generation (RAG) derived data
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
What are vector embeddings?
30
Source domain
specific dataTokenizationVectorizationStore in vector
datastore
Perform
semantic
similarity
search
Include
semantically
similar context
in prompt
Embeddings: When vectors elements are semantic, used in Generative AI
collision coverage
policy premium
[],0.230.58,0.45,
[],0.560.71,0.36,
auto insurance
car insurance
collision coverage
uninsured motorist
policy premium
hazard
fire zone
umbrella policy
dwelling coverage
personal property
2-dimensional vector space (simplification)
Insurance
regulations
Policies and
rate sheets
What are vector embeddings?
30
Source domain
specific dataTokenizationVectorizationStore in vector
datastore
Perform
semantic
similarity
search
Include
semantically
similar context
in prompt
Embeddings: When vectors elements are semantic, used in Generative AI
collision coverage
policy premium
[],0.230.58,0.45,
[],0.560.71,0.36,
auto insurance
car insurance
collision coverage
uninsured motorist
policy premium
hazard
fire zone
umbrella policy
dwelling coverage
personal property
2-dimensional vector space (simplification)
Insurance
regulations
Policies and
rate sheets
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Moving the semantic context into the LLM
End-user Generative AI
application
User inputEngineered prompt
App. responseLLM response
INSTRUCTIONS FOR THE MODEL
from prompt template
SITUATIONAL CONTEXT
Conversation history and
state
Data from purpose-built data
stores & APIs
SEMANTIC
CONTEXT
from
labeled data
or raw
domain
specific data
Fine-tuned LLM
or
purpose-built
LLM
Fine-tuning or building your own LLM
combined with ICL
Moving the semantic context into the LLM
End-user Generative AI
application
User inputEngineered prompt
App. responseLLM response
INSTRUCTIONS FOR THE MODEL
from prompt template
SITUATIONAL CONTEXT
Conversation history and
state
Data from purpose-built data
stores & APIs
SEMANTIC
CONTEXT
from
labeled data
or raw
domain
specific data
Fine-tuned LLM
or
purpose-built
LLM
Fine-tuning or building your own LLM
combined with ICL
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
COMPLEX
EASIER
ADOPTION
Generative AI implementation patterns
Training
your own
purpose-built LLM
Fine-tuning a
Foundation Model
Context engineering
using RAG with
Foundation Models
PURPOSE BUILT
GENERIC MODEL
+ CONTEXT
GROUNDING
COMPLEX
EASIER
ADOPTION
Generative AI implementation patterns
Training
your own
purpose-built LLM
Fine-tuning a
Foundation Model
Context engineering
using RAG with
Foundation Models
PURPOSE BUILT
GENERIC MODEL
+ CONTEXT
GROUNDING
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Data architecture for context engineering
RAG pipeline
User
BATCH OR STREAMING PROCESSES ►◀ TRANSACTIONAL USER INTERACTIONS
Data Lake &
Warehouse
Conversation
history
Data processingIngestion
Structured data
Unstructured data
Generative AI
application
Generative AI
model (LLM)
Semantic context
Situational context
Prompt
templates
Data architecture for context engineering
RAG pipeline
User
BATCH OR STREAMING PROCESSES ►◀ TRANSACTIONAL USER INTERACTIONS
Data Lake &
Warehouse
Conversation
history
Data processingIngestion
Structured data
Unstructured data
Generative AI
application
Generative AI
model (LLM)
Semantic context
Situational context
Prompt
templates
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Hybrid architecture design pattern
Train a model using your domain specific data sets infrequently.
Fine-tune your models with updated domain specific data sets
occasionally.
Keep up with changes to your domain specific data sets and user
profiles in near real-time.
Hybrid architecture design pattern
Train a model using your domain specific data sets infrequently.
Fine-tune your models with updated domain specific data sets
occasionally.
Keep up with changes to your domain specific data sets and user
profiles in near real-time.
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.35
LLMReasoning
Traces
Reason only
LLMEnvironment
Act only
Reasoning
TracesLLMEnvironment
Actions
Observations
ReAct
Reason and act – ReAct !"#
LLMReasoning
Traces
Reason only
LLMEnvironment
Act only
Reasoning
TracesLLMEnvironment
Actions
Observations
ReAct
Reason and act – ReAct !"#
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Use ReAct to create agents leveraging tools
36
!"
ReAct Agent#
Knowledge
$
Tools/API%
Prompt
“How many active devices do we
currently have in our fleet?”
“How do I configure your product if I
want to use feature A & B at the same
time?”
“Find our most popular item for
January and start a 10% discount
campaign for it.
Situational Context
Semantic Context
Use ReAct to create agents leveraging tools
36
!"
ReAct Agent#
Knowledge
$
Tools/API%
Prompt
“How many active devices do we
currently have in our fleet?”
“How do I configure your product if I
want to use feature A & B at the same
time?”
“Find our most popular item for
January and start a 10% discount
campaign for it.
Situational Context
Semantic Context
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Evolving data strategy for generative AI
Manage both structured and unstructured data
Maintain both native and vector formats
Unify from disparate data sources
Prepare data for model training, fine-tuning, vectorization
Expand data security and compliance to prompts and
completions, data quality and Responsible AI
Integrated
Comprehensive
Governed
Evolving data strategy for generative AI
Manage both structured and unstructured data
Maintain both native and vector formats
Unify from disparate data sources
Prepare data for model training, fine-tuning, vectorization
Expand data security and compliance to prompts and
completions, data quality and Responsible AI
Integrated
Comprehensive
Governed
© 2024, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Thank you!
Manuel Heinkel
Solutions Architect
AWS
Puria Izady
Solutions Architect
AWS
38
Thank you!
Manuel Heinkel
Solutions Architect
AWS
Puria Izady
Solutions Architect
AWS
38
Download
Download Slideshow Get the original presentation fileQuick Actions
Statistics
- Views 119
- Slides 38
- Age 513 days
Related Slideshows
11
8-top-ai-courses-for-customer-support-representatives-in-2025.pptx
JeroenErne2
48 views
10
7-essential-ai-courses-for-call-center-supervisors-in-2025.pptx
JeroenErne2
47 views
13
25-essential-ai-courses-for-user-support-specialists-in-2025.pptx
JeroenErne2
37 views
11
8-essential-ai-courses-for-insurance-customer-service-representatives-in-2025.pptx
JeroenErne2
35 views
21
Know for Certain
DaveSinNM
23 views
17
PPT OPD LES 3ertt4t4tqqqe23e3e3rq2qq232.pptx
novasedanayoga46
26 views