Security

Sunday, July 21, 2024
in GENAI, Security
6 min read

Apple Intelligence

Apple Intelligence : On Device Processing

Edge-AI Privacy Innovation / Security Blueprint from Apple WWDC24 Conference

Apple WWDC24 Keynote has some amazing GENAI Edge Innovation and brilliant engineering science on display which they talked about how on-device models that can outsource to Apple’s servers. Most notable is their approach to features that don’t work with an on-device model.

Apple Private Cloud Compute

Apple WWDC24 Keynote : Apple Intelligence Reference YouTube video at 1h14m43s

Apple-intelligence

When you make a request, Apple Intelligence analysis whether it can be processed on device. If it needs greater computational capacity, it can draw on Private Cloud Compute, and send only the data that’s relevant to your task to be processed on Apple Silicon servers.

Your data is never stored or made accessible to Apple. It’s used exclusively to fulfill your request. And just like your iPhone, independent experts can inspect the code that runs on the servers to verify this privacy promise.

In fact, Private Cloud Compute cryptographically ensures your iPhone, iPad, and Mac will refuse to talk to a server unless its software has been publicly logged for inspection.

This sets a brand new standard on Privacy and AI

Saturday, July 6, 2024
in GENAI, Security
3 min read

Google NapTime AI Vulnerability

Google's Naptime enhances LLM's ability to identify and analyze vulnerabilities in a manner that is both accurate and reproducible while ensuring optimal performance through its specialized toolset. This innovative framework represents an important step forward for AI-assisted vulnerability research, allowing security experts and practitioners to streamline their workflow and focus on the most critical aspects of their work—and maybe even take a well-deserved nap or two!

Google Naptime

Google Naptime Architecture

Tuesday, July 2, 2024
in Platform Engineering, Security
2 min read

Microsoft Dapr Zero Trust

Dapr : Zero Trust Security for Distributed Applications

Dapr improves the zero trust security posture of distributed systems out of the box by assigning application identities to all apps, ensuring that mTLS is enabled by default for all interservice and infrastructure communication.

The standards around security in software development are ever increasing in response to the need for greater protection. This article looks at the open source project Dapr, distributed application runtime, which contains a rich security feature set that allows developers to “shift left” with security and embed industry-standard best practices into their applications during development. Dapr provides a set of APIs to solve common distributed systems challenges around state management, workflow and data.

Dapr Architecture

Dapr Security Architecture

Dapr Security

Dapr Deployment Architecture vm-physical-containers