GitHub and AI ethics | ISO 27001:2022
CyberInsights #67
GitHub uses public code repos for AI training
It strengthens the case for a regulatory framework around AI
People write open source code and release it on GitHub for others to use. A strong philosophy of sharing connects the open source community together. Millions of programmers upload billions of lines on code on to public forums - GitHub being the most popular.
When GitHub launched an AI driven coding assistance service called GitHub CoPilot, it’s USP was that the AI was trained using billions of lines of code:
Read this extensive coverage on it by Vice.
What is the harm is using open source code to suggest code to others? Well, it’s complicated. Read this website dedicated to investigating if GitHub (read Microsoft) did anything that is against the open source spirit.
ISO/ IEC 27001:2022 released
If you want to understand the changes in ISO 27001, read ISO 27002.
It took nearly a decade but it happened. ISO 27001 has a shiny new 2022 version. Buy the latest version here.
Last month, the International Organisation for Standardisation (ISO) released the ISO 27002 document, which listed down controls for information security and cybersecurity. These controls form a part of Annexure A - the part of ISO 27001 from where an organisation can choose applicable controls. This is the document you should study to understand the changes.
Enjoyed reading? Receive this in your email every week.