Large language models (LLMs) are not just shaping the trajectory of AI, they're also unveiling a new era of security challenges. This practical book takes you straight to the heart of these threats. Author Steve Wilson, chief product officer at Exabeam, focuses exclusively on LLMs, eschewing generalized AI security to delve into the unique characteristics and vulnerabilities inherent in these models.

Complete with collective wisdom gained from the creation of the OWASP Top 10 for LLMs list—a feat accomplished by more than 400 industry experts—this guide delivers real-world guidance and practical strategies to help developers and security teams grapple with the realities of LLM applications. Whether you're architecting a new application or adding AI features to an existing one, this book is your go-to resource for mastering the security landscape of the next frontier in AI.

You'll learn:

• Why LLMs present unique security challenges
• How to navigate the many risk conditions associated with using LLM technology
• The threat landscape pertaining to LLMs and the critical trust boundaries that must be maintained
• How to identify the top risks and vulnerabilities associated with LLMs
• Methods for deploying defenses to protect against attacks on top vulnerabilities
• Ways to actively manage critical trust boundaries on your systems to ensure secure execution and risk minimization

Table of Contents

Chapter 1. Chatbots Breaking Bad

Chapter 2. The OWASP Top 10 for LLM Applications

Chapter 3. Architectures and Trust Boundaries

Chapter 4. Prompt Injection

Chapter 5. Can Your LLM Know Too Much?

Chapter 6. Do Language Models Dream of Electric Sheep?

Chapter 7. Trust No One

Chapter 8. Don't Lose Your Wallet

Chapter 9. Find the Weakest Link

Chapter 10. Learning from Future History

Chapter 11. Trust the Process

Chapter 12. A Practical Framework for Responsible Al Security

About the Author

Steve Wilson is a recognized leader in the emerging field of security for Large Language Models (LLMs). In his role as head of the open-source “Top 10 List for LLM Applications” at the Open Web Application Security Project (OWASP) Foundation, Steve built a team of over 400 experts who contributed to the creation of the first industry-standard, comprehensive look at security threats to applications using LLM technology. In his role as Chief Product Officer at Contrast Security, Steve owns all Product Development for a highly recognized company providing code security technology to the world’s largest, most security conscious organizations. Steve has over 25 years of experience building software platforms at multi-billion-dollar technology companies such as Citrix, Oracle and Sun Microsystems.

Steve is the author of “Java Platform Performance: Strategies and Tactics” and “The Father/Daughter Guide to Cryptocurrency Mining” series. He is a popular speaker on future of work and artificial intelligence topics and has recently presented at RSA, The Churchill Club, Silicon Valley Leadership Group, DLA Piper Global Technology Summit, IDG Agenda, SAP TechEd and WSJ Tech D.Live.