{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,4]],"date-time":"2026-06-04T18:06:19Z","timestamp":1780596379419,"version":"3.54.1"},"reference-count":44,"publisher":"IEEE","license":[{"start":{"date-parts":[[2024,5,28]],"date-time":"2024-05-28T00:00:00Z","timestamp":1716854400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2024,5,28]],"date-time":"2024-05-28T00:00:00Z","timestamp":1716854400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100000780","name":"European Union","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100000780","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024,5,28]]},"DOI":"10.23919\/cycon62501.2024.10685644","type":"proceedings-article","created":{"date-parts":[[2024,9,25]],"date-time":"2024-09-25T17:30:06Z","timestamp":1727285406000},"page":"123-140","source":"Crossref","is-referenced-by-count":3,"title":["Artificial Intelligence System Risk Management Methodology Based on Generalized Blueprints"],"prefix":"10.23919","author":[{"given":"Dan","family":"Bogdanov","sequence":"first","affiliation":[{"name":"Information Security Research Institute,Cybernetica,Estonia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Paula","family":"Etti","sequence":"additional","affiliation":[{"name":"Information Security Research Institute,Cybernetica,Estonia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Liina","family":"Kamm","sequence":"additional","affiliation":[{"name":"Information Security Research Institute,Cybernetica,Estonia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Fedor","family":"Stomakhin","sequence":"additional","affiliation":[{"name":"Information Security Research Institute,Cybernetica,Estonia"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.3403\/30374629"},{"key":"ref2","article-title":"Proposal for a Regulation of the European Parliament and of the Council laying down harmonised rules on artificial intelligence (AI Act)","volume-title":"2021\/0106(COD), European Commission","year":"2021"},{"key":"ref3","article-title":"Recommendation of the Council on artificial intelligence. Amended on: 08\/11\/2023","year":"2023","journal-title":"OECD Legal Instruments, OECD"},{"key":"ref4","article-title":"Blueprint for an AI Bill of Rights: Making Automated Systems Work for the American People","year":"2023","journal-title":"The White House"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-02006-4_314-1"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.6028\/nist.sp.800-37r2"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.3403\/30389122"},{"key":"ref8","article-title":"NIST Cybersecurity Framework 1.1","year":"2018","journal-title":"NIST"},{"key":"ref9","year":"2023","journal-title":"Artificial Intelligence - Guidance on Risk Management"},{"key":"ref10","article-title":"NIST AI Risk Management Framework 1.0","year":"2023","journal-title":"NIST"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.3403\/30389122"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.6028\/nist.sp.800-53r5"},{"key":"ref13","article-title":"Fact sheet: President Biden issues executive order on safe, secure, and trustworthy artificial intelligence","volume-title":"The White House","year":"2023"},{"key":"ref14","article-title":"Interim Measures for the Management of Generative Artificial Intelligence (AI) Services","volume-title":"Cyberspace Administration of China","year":"2023"},{"key":"ref15","article-title":"AI Act: Deal on comprehensive rules for trustworthy AI","volume-title":"European Parliament","year":"2023"},{"key":"ref16","article-title":"Proposal for a Directive of the European Parliament and of the Council on adapting non-contractual civil liability rules to artificial intelligence (AI Liability Directive)","volume-title":"2022\/0303(COD), European Commission","year":"2022"},{"key":"ref17","first-page":"1","article-title":"Regulation of the European Parliament and of the Council of 10 May 2023 on General Product Safety","volume":"135","year":"2023","journal-title":"Official Journal"},{"key":"ref18","article-title":"Proposal for a Directive of the European Parliament and of the Council on liability for defective products","volume-title":"2022\/0302(COD), European Commission","year":"2022"},{"key":"ref19","first-page":"1","article-title":"Regulation (EU) 2016\/679 of the European Parliament and of the Council of 27 April 2016","volume":"119","year":"2016","journal-title":"(General Data Protection Regulation), Official Journal"},{"key":"ref20","article-title":"Proposal for a Regulation of the European Parliament and of the Council laying down additional procedural rules relating to the enforcement of Regulation (EU) 2016\/679)","volume-title":"2023\/0202(COD)","year":"2023"},{"key":"ref21","first-page":"89","article-title":"Directive (EU) 2016\/680 of the European Parliament and of the Council of 27 April 2016","volume":"119","year":"2016","journal-title":"Official Journal"},{"key":"ref22","first-page":"39","article-title":"Regulation (EU) 2018\/1725 of the European Parliament and of the Council of 23 October 2018","volume":"295","year":"2018","journal-title":"Official Journal"},{"key":"ref23","year":"1979","journal-title":"Berne Convention for the Protection of Literary and Artistic Works"},{"key":"ref24","journal-title":"WIPO Copyright Treaty"},{"key":"ref25","first-page":"80","article-title":"Directive (EU) 2022\/2555 of the European Parliament and of the Council of 14 December 2022","volume":"333","year":"2022","journal-title":"Official Journal"},{"key":"ref26","article-title":"Proposal for a Regulation of the European Parliament and of the Council on horizontal cybersecurity requirements for products with digital elements and amending Regulation (EU) 2019\/1020","year":"2022","journal-title":"European Commission"},{"key":"ref27","first-page":"63","article-title":"European Parliament Resolution of 20 October 2020 with Recommendations to the Commission on a Framework of Ethical Aspects of Artificial Intelligence","volume":"404","year":"2021","journal-title":"Robotics and Related Technologies (2020\/2012(INL)), Official Journal"},{"key":"ref28","article-title":"Guidelines 07\/2020 on the concepts of controller and processor in the GDPR","year":"2021","journal-title":"European Data Protection Board"},{"key":"ref29","article-title":"Privacy enhancing technology concept","author":"Bogdanov","year":"2023","journal-title":"Cybernetica, Estonian Ministry of Economic Affairs and Communications, Tallinn, Estonia"},{"key":"ref30","article-title":"Roadmap for deploying privacy enhancing technologies in Estonia","author":"Bogdanov","year":"2023","journal-title":"Cybernetica, Estonian Ministry of Economic Affairs and Communications, Tallinn, Estonia"},{"key":"ref31","article-title":"AI security concerns in a nutshell-practical AI-security guide","year":"2023","journal-title":"Federal Office for Information Security"},{"key":"ref32","article-title":"OWASP top 10 for large language model applications. Version 1.1","year":"2023","journal-title":"OWASP Foundation"},{"key":"ref33","author":"Liu","year":"2024","journal-title":"Prompt injection attack against LLM-integrated applications"},{"key":"ref34","article-title":"Universal and transferable adversarial attacks on aligned language models","author":"Zou","year":"2023","journal-title":"arXiv.2307.15043"},{"key":"ref35","article-title":"Explaining and harnessing adversarial examples","author":"Goodfellow","year":"2014","journal-title":"arXiv.1412.6572"},{"key":"ref36","article-title":"ML attack models: Adversarial Attacks and Data poisoning attacks","author":"Lin","year":"2021","journal-title":"arXiv.2112.02797"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/sp.2017.41"},{"key":"ref38","article-title":"Membership inference attacks against synthetic data through overfitting detection","author":"Breugel","year":"2023","journal-title":"arXiv.2302.12580"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/cvpr52729.2023.01572"},{"key":"ref40","article-title":"Variational model inversion attacks","author":"Wang","year":"2022","journal-title":"arXiv.2201.10787"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1109\/SP54263.2024.00207"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/tpami.2022.3162397"},{"key":"ref43","author":"Brown","year":"2023","journal-title":"Expert explainer: Allocating accountability in AI supply chains"},{"key":"ref44","article-title":"A study of the risks and controls for artificial intelligence and machine learning technologies 1.0","author":"Bogdanov","year":"2024","journal-title":"Cybernetica, Estonian Information System Authority"}],"event":{"name":"2024 16th International Conference on Cyber Conflict: Over the Horizon (CyCon)","location":"Tallinn, Estonia","start":{"date-parts":[[2024,5,28]]},"end":{"date-parts":[[2024,5,31]]}},"container-title":["2024 16th International Conference on Cyber Conflict: Over the Horizon (CyCon)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/10685513\/10685558\/10685644.pdf?arnumber=10685644","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,9,26]],"date-time":"2024-09-26T05:55:12Z","timestamp":1727330112000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10685644\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,5,28]]},"references-count":44,"URL":"https:\/\/doi.org\/10.23919\/cycon62501.2024.10685644","relation":{},"subject":[],"published":{"date-parts":[[2024,5,28]]}}}