|
|
|
|
|
|
by richdougherty
534 days ago
|
|
|
"The cost-effective nature of AI makes it highly plausible we're moving towards an agent vs agent future." Sounds right. I assume we will all have AI agents triaging our emails trying to protect us. Maybe we will need AI to help us discern what is really true when we search for or consume information as well. The amount and quality of plausible but fake information is only going to increase. "However, the possibilities of jailbreaks and prompt injections pose a significant challenge to using language models to prevent phishing." Gives a hint at the arms race between attack and defense. |
|
|
For instance, there is a very good classical algorithm for preventing password brute-forcing - exponential backoff on failure per IP address, maybe with some additional per-account backoff as well. Combined with sane password rules (e.g. correct horse battery staple, not "you must have one character from every language in Madagascar), make password brute-forcing infeasible, and force attackers to try other approaches - which in the security world counts as success. No AI needed.