Securing AI Systems Questions
Practice questions for Securing AI Systems topic in CompTIA SecAI+. 39 questions covering this domain.
A security team is reviewing an AI model that was fine-tuned using a third-party dataset downloaded from a public repository. Before approving product...
An organization wants to prevent an AI model from being retrained with a hidden trigger that causes it to misclassify specific inputs — a technique kn...
An AI model serving endpoint has been identified as vulnerable to a model inversion attack because it returns detailed confidence scores for all outpu...
Which type of attack targets a deployed AI model by querying it with inputs designed to extract information about its internal architecture, hyperpara...
A team is deploying an AI model in a hybrid cloud environment where some inference happens on-premises and some in a public cloud. Which control ensur...
Which security control type is specifically designed to protect the confidentiality and integrity of training data used to build AI models?
An organization wants to prevent sensitive personal data used during AI model training from being extractable from the trained model via membership in...
During a security review, a team discovers that their AI model training pipeline pulls data from a shared internal data lake with no integrity verific...
A security engineer is designing the deployment architecture for an AI-based threat intelligence platform that will process sensitive customer data. T...
A security architect is designing guardrails for a customer-facing AI chatbot that handles sensitive financial inquiries. Users must not be able to ma...
A security team is hardening an AI model API that is externally accessible. They want to prevent automated enumeration attacks where adversaries query...
A cloud-hosted AI model serving endpoint has been receiving a high volume of queries from an external IP range that appears to be systematically probi...
Which practice involves reviewing and auditing an AI model's decision-making process to ensure its outputs can be explained and understood by security...
A security engineer needs to ensure that the AI inference service can only be invoked by approved internal microservices and not by arbitrary external...
A financial institution's AI-based loan approval model is suspected of having a backdoor that approves all applications containing a specific unusual ...
What is the term for an attack in which a threat actor deliberately introduces malicious examples into an AI model's training dataset to corrupt its l...
An AI model is deployed in a Kubernetes cluster and the security team wants to ensure the model's container runs with the minimum privileges necessary...
An organization runs an AI pipeline where a third-party vendor provides pre-trained model weights that are periodically updated. A security team wants...
Which security practice involves training an AI model on both clean data and intentionally crafted adversarial examples to improve its robustness agai...
A DevSecOps team is integrating AI model training and deployment into a CI/CD pipeline. The security team wants to ensure that security checks are enf...
Sign in to see all 39 questions
Create a free account to browse all questions — completely free during our launch phase.