The European Telecommunications Standards Institute (ETSI) has released a new European Standard that addresses a growing concern for security teams working with AI. The standard, ETSI EN 304 223, sets baseline cybersecurity requirements for AI models and systems intended for real-world use. ETSI EN 304 223 treats AI as a distinct category of technology from a security perspective. AI systems introduce risks tied to their data pipelines, model behavior, and operational environments. These include data poisoning, model obfuscation, indirect prompt injection, and weaknesses linked to complex training and deployment practices. ETSI EN 304 223 brings established cybersecurity practices together with measures designed for these AI-specific risks. The result is a structured set of requirements that security teams can apply to AI models and systems across their operational lifespan.

Full report : A new European standard outlines security requirements for AI.