A healthcare organization deploys an AI system to analyze medical images and detect anomalies. During a routine audit, the security team discovers that the AI model occasionally returns results that include data from patients who have opted out of data sharing. Which security control should be implemented to prevent this violation?
Trap 1: Implement role-based access control (RBAC) on the AI model's…
RBAC controls who can access the model, but it does not prevent the model from returning data from opt-out patients.
Trap 2: Use differential privacy during model training.
Differential privacy reduces memorization but does not guarantee complete removal of specific patient data from model outputs.
Trap 3: Encrypt the training data at rest and in transit.
Encryption protects data from unauthorized access but does not prevent the model from memorizing and outputting sensitive data.
- A
Apply data anonymization techniques to the training dataset.
Anonymization removes personally identifiable information, ensuring that the model cannot output data linked to specific patients.
- B
Implement role-based access control (RBAC) on the AI model's inference API.
Why wrong: RBAC controls who can access the model, but it does not prevent the model from returning data from opt-out patients.
- C
Use differential privacy during model training.
Why wrong: Differential privacy reduces memorization but does not guarantee complete removal of specific patient data from model outputs.
- D
Encrypt the training data at rest and in transit.
Why wrong: Encryption protects data from unauthorized access but does not prevent the model from memorizing and outputting sensitive data.