# 05. Secure AI Development | ÿ™ÿ∑ŸàŸäÿ± ÿßŸÑÿ∞ŸÉÿßÿ° ÿßŸÑÿßÿµÿ∑ŸÜÿßÿπŸä ÿßŸÑÿ¢ŸÖŸÜ

## üìö Learning Objectives

By completing this notebook, you will:
- Understand the key concepts of this topic
- Apply the topic using Python code examples
- Practice with small, realistic datasets or scenarios

## üîó Prerequisites

- ‚úÖ Basic Python
- ‚úÖ Basic NumPy/Pandas (when applicable)

---

## Official Structure Reference

This notebook supports **Course 06, Unit 3** requirements from `DETAILED_UNIT_DESCRIPTIONS.md`.

---


# 05. Secure AI Development | ÿ™ÿ∑ŸàŸäÿ± ÿßŸÑÿ∞ŸÉÿßÿ° ÿßŸÑÿßÿµÿ∑ŸÜÿßÿπŸä ÿßŸÑÿ¢ŸÖŸÜ

## üö® THE PROBLEM: We Need Secure AI Systems | ÿßŸÑŸÖÿ¥ŸÉŸÑÿ©: ŸÜÿ≠ÿ™ÿßÿ¨ ÿ£ŸÜÿ∏ŸÖÿ© ÿ∞ŸÉÿßÿ° ÿßÿµÿ∑ŸÜÿßÿπŸä ÿ¢ŸÖŸÜÿ©

**Remember the limitation from the previous notebook?**

We learned GDPR compliance requirements and practices. But we discovered:

**How do we build secure AI systems that protect against attacks and vulnerabilities?**

**The Problem**: Secure AI systems also need:
- ‚ùå **Security measures** against attacks (adversarial, data poisoning)
- ‚ùå **Vulnerability management** (identify and fix security issues)
- ‚ùå **Secure coding practices** (prevent security bugs)
- ‚ùå **Security testing** (penetration testing, security audits)

**We've learned:**
- ‚úÖ How to use basic data protection (Notebook 1)
- ‚úÖ How to use advanced privacy technologies (Notebook 2)
- ‚úÖ How to use differential privacy (Notebook 3)
- ‚úÖ How to ensure GDPR compliance (Notebook 4)
- ‚úÖ Privacy and compliance practices

**But we haven't learned:**
- ‚ùå How to **protect against adversarial attacks**
- ‚ùå How to **manage security vulnerabilities**
- ‚ùå How to **implement secure coding practices**
- ‚ùå How to **test for security issues**

**We need secure development practices** to:
1. Protect against adversarial attacks
2. Manage security vulnerabilities
3. Implement secure coding practices
4. Test for security issues

**This notebook solves that problem** by teaching you secure AI development practices!

---

## üìö Prerequisites (What You Need First) | ÿßŸÑŸÖÿ™ÿ∑ŸÑÿ®ÿßÿ™ ÿßŸÑÿ£ÿ≥ÿßÿ≥Ÿäÿ©

**BEFORE starting this notebook**, you should have completed:
- ‚úÖ **Example 1: Data Protection** - Understanding basic protection
- ‚úÖ **Example 2: Privacy Technologies** - Understanding PETs
- ‚úÖ **Example 3: Differential Privacy** - Understanding privacy guarantees
- ‚úÖ **Example 4: GDPR Compliance** - Understanding regulatory compliance
- ‚úÖ **Basic Python knowledge**: Functions, data manipulation

**If you haven't completed these**, you might struggle with:
- Understanding why security matters for AI
- Knowing common security vulnerabilities
- Understanding secure coding practices

---

## üîó Where This Notebook Fits | ŸÖŸÉÿßŸÜ Ÿáÿ∞ÿß ÿßŸÑÿØŸÅÿ™ÿ±

**This is the FIFTH and FINAL example in Unit 3** - it teaches you secure development!

**Why this example LAST?**
- **Before** you can secure systems, you need privacy techniques (Examples 1-3)
- **Before** you can secure systems, you need compliance (Example 4)
- **Before** you can deploy systems, you need security

**Builds on**: 
- üìì Example 1: Data Protection (basic protection strategies)
- üìì Example 2: Privacy Technologies (advanced PETs)
- üìì Example 3: Differential Privacy (privacy guarantees)
- üìì Example 4: GDPR Compliance (regulatory compliance)

**Leads to**: 
- üìì Unit 4: Transparency and Accountability (next unit in the course!)

**Why this order?**
1. Secure development provides **security practices** (needed for safe deployment)
2. Secure development teaches **vulnerability management** (critical for protection)
3. Secure development shows **complete security workflow** (development to deployment)

---

## The Story: Building Secure Systems | ÿßŸÑŸÇÿµÿ©: ÿ®ŸÜÿßÿ° ÿ£ŸÜÿ∏ŸÖÿ© ÿ¢ŸÖŸÜÿ©

Imagine you're building a house. **Before** you finish, you need security - locks, alarms, fire safety. **After** implementing security, you have a safe, protected house!

Same with AI: **Before** we have privacy and compliance but may not be secure, now we learn secure development - protect against attacks, manage vulnerabilities, implement secure coding! **After** secure development, we have secure, private, and compliant AI systems!

---

## Why Secure Development Matters | ŸÑŸÖÿßÿ∞ÿß ŸäŸáŸÖ ÿßŸÑÿ™ÿ∑ŸàŸäÿ± ÿßŸÑÿ¢ŸÖŸÜÿü

Secure development is essential for ethical AI:
- **Protection**: Protect against adversarial attacks and vulnerabilities
- **Trust**: Build user confidence in secure systems
- **Compliance**: Meet security requirements
- **Risk Mitigation**: Prevent security breaches and data exposure
- **Best Practices**: Follow industry security standards

## Learning Objectives | ÿ£ŸáÿØÿßŸÅ ÿßŸÑÿ™ÿπŸÑŸÖ
1. Understand security vulnerabilities in AI systems
2. Learn secure coding practices
3. Understand adversarial attacks and defenses
4. Implement security testing
5. Create security incident response plans
6. Understand secure deployment practices

In [1]:
"""
Unit 3: Privacy, Security, and Data Protection
Example 5: Secure AI Development Practices
This example demonstrates secure AI development practices:
- Security vulnerabilities in AI systems
- Secure coding practices
- Security testing
- Incident response
"""
import numpy as np
import pandas as pd


import matplotlib.pyplot as plt
import seaborn as sns
import warnings
warnings.filterwarnings('ignore')
plt.rcParams['font.size'] = 10
plt.rcParams['figure.figsize'] = (14, 8)
sns.set_style("whitegrid")
# ============================================================================
# SECURITY VULNERABILITIES
# ============================================================================
def identify_security_vulnerabilities():
    """
    Identify common security vulnerabilities in AI systems
    """
    vulnerabilities = {
        'Adversarial Attacks': {
            'severity': 'High', 'impact': 9,
            'likelihood': 7,
            'description': 'Malicious inputs designed to fool AI models'
        },
        'Model Inversion': {
            'severity': 'High',
            'impact': 8,
            'likelihood': 6,
            'description': 'Reconstructing training data from model outputs'
        },
        'Membership Inference': {
            'severity': 'Medium',
            'impact': 7,
            'likelihood': 7,
            'description': 'Determining if specific data was in training set'
        },
        'Data Poisoning': {
            'severity': 'High',
            'impact': 9,
            'likelihood': 5,
            'description': 'Injecting malicious data into training set'
        },
        'Model Theft': {
            'severity': 'Medium',
            'impact': 6,
            'likelihood': 6,
            'description': 'Stealing model architecture and parameters'
        },
        'Insufficient Access Controls': {
            'severity': 'High',
            'impact': 8,
            'likelihood': 8,
            'description': 'Unauthorized access to models or data'
        }
    }
    return vulnerabilities
# ============================================================================
# SECURE DEVELOPMENT PRACTICES
# ============================================================================
def secure_development_practices():
    """
    Define secure AI development practices
    """
    practices = {
        'Input Validation': {
            'phase': 'Development',
            'importance': 10,
            'implementation': 'Validate and sanitize all inputs'
        },
        'Output Sanitization': {
            'phase': 'Development',
            'importance': 9,
            'implementation': 'Sanitize model outputs before use'
        },
        'Access Control': {
            'phase': 'Deployment',
            'importance': 10,
            'implementation': 'Implement role-based access control'
        },
        'Encryption': {
            'phase': 'All Phases',
            'importance': 10,
            'implementation': 'Encrypt data at rest and in transit'
        },
        'Security Testing': {
            'phase': 'Testing',
            'importance': 9,
            'implementation': 'Regular security audits and penetration testing'
        },
        'Monitoring': {
            'phase': 'Operations',
            'importance': 9,
            'implementation': 'Monitor for anomalies and attacks'
        },
        'Incident Response': {
            'phase': 'Operations',
            'importance': 8,
            'implementation': 'Have response plan for security incidents'
        }
    }
    return practices
# ============================================================================
# SECURITY RISK MATRIX
# ============================================================================
def create_risk_matrix(vulnerabilities):
    """
    Create risk matrix for security vulnerabilities
    """
    risk
matrix = []
    for vuln, info in vulnerabilities.items():
        risk
score = info['impact'] * info['likelihood']
        risk_matrix.append({
            'vulnerability': vuln, 'impact': info['impact'],
            'likelihood': info['likelihood'],
            'risk_score': risk_score,
            'severity': info['severity']
        })
    return risk_matrix
# ============================================================================
# VISUALIZATIONS
# ============================================================================
def plot_security_vulnerabilities(vulnerabilities):
    """
    Plot security vulnerabilities analysis
    """
    fig, axes = plt.subplots(1, 2, figsize=(16, 6))
    vuln
names = list(vulnerabilities.keys())
    impacts = [v['impact'] for v in vulnerabilities.values()]
    likelihoods = [v['likelihood'] for v in vulnerabilities.values()]
    # Risk matrix
    scatter = axes[0].scatter(likelihoods, impacts, s=300, alpha=0.7, 
                             c=impacts, cmap='RdYlGn_r', edgecolors='black', linewidth=2)
    for i, name in enumerate(vuln_names):
        axes[0].annotate(name, (likelihoods[i], impacts[i]), 
                        xytext=(5, 5), textcoords='offset points', fontsize=8)
    axes[0].set_xlabel('Likelihood (1-10)', fontsize=11, fontweight='bold')
    axes[0].set_ylabel('Impact (1-10)', fontsize=11, fontweight='bold')
    axes[0].set_title('Security Risk Matrix', fontsize=12, fontweight='bold')
    axes[0].grid(alpha=0.3)
    axes[0].set_xlim([0, 11])
    axes[0].set_ylim([0, 11])
    plt.colorbar(scatter, ax=axes[0], label='Impact')
    # Severity distribution
    severity
counts = {}
    for v in vulnerabilities.values():
        sev = v['severity']
        severity_counts[sev] = severity
counts.get(sev, 0) + 1
    colors = {'High': '#e74c3c', 'Medium': '#f39c12', 'Low': '#2ecc71'}
    axes[1].bar(severity_counts.keys(), severity_counts.values(), color=[colors[s] for s in severity_counts.keys()], alpha=0.8)
    axes[1].set_title('Vulnerability Severity Distribution', fontsize=12, fontweight='bold')
    axes[1].set_ylabel('Count')
    axes[1].grid(axis='y', alpha=0.3)
    plt.tight_layout()
    plt.savefig('unit3-privacy-security', dpi=300, bbox
inches ='tight')
    print("‚úÖ Saved: security_vulnerabilities.png")
    plt.close()
def plot_secure_practices(practices):
    """
    Plot secure development practices by phase
    """
    phases = {}
    for practice, info in practices.items():
        phase = info['phase']
        if phase not in phases:
            phases[phase] = []
        phases[phase].append((practice, info['importance']))
    fig, ax = plt.subplots(figsize=(12, 8))
    y
pos = 0
    colors = ['#3498db', '#2ecc71', '#f39c12', '#9b59b6']
    color
idx = 0
    for phase, items in phases.items():
        practices
list = [item[0] for item in items]
        importance
list = [item[1] for item in items]
        x
start = y
pos
        for i, (practice, importance) in enumerate(items):
            ax.barh(y_pos, importance, left=0, color=colors[color_idx % len(colors)], alpha=0.7, edgecolor='black')
            ax.text(importance/2, y_pos, practice, ha='center', va='center', 
                   fontsize=9, fontweight='bold')
            y_pos += 1
        # Add phase label
        ax.text(-0.5, (x_start + y_pos - 1)
2, phase, ha='right', va='center',
               fontsize=10, fontweight='bold', rotation=0)
        y_pos += 0.5
        color_idx += 1
    ax.set_xlabel('Importance (1-10)', fontsize=11, fontweight='bold')
    ax.set_title('Secure Development Practices by Phase', fontsize=12, fontweight='bold')
    ax.set_xlim([0, 11])
    ax.grid(axis='x', alpha=0.3)
    ax.set_yticks([])
    plt.tight_layout()
    plt.savefig('unit3-privacy-security', dpi=300, bbox
inches ='tight')
    print("‚úÖ Saved: secure_practices.png")
    plt.close()
# ============================================================================
# MAIN EXECUTION
# ============================================================================
if_
name__ == "__main__":
    print("="*80)
    print("Unit 3 - Example 5: Secure AI Development Practices")
    print("="*80)
    # Security Vulnerabilities
    print("\n1. Security Vulnerabilities in AI Systems:")
    vulnerabilities = identify
security
vulnerabilities()
    for vuln, info in vulnerabilities.items():
        print(f"\n{vuln}:")
        print(f"  Severity: {info['severity']}")
        print(f"  Impact: {info['impact']}")
        print(f"  Likelihood: {info['likelihood']}")
        print(f"  Description: {info['description']}")
    # Secure Practices
    print("\n" + "="*80)
    print("2. Secure Development Practices:")
    print("="*80)
    practices = secure
development
practices()
    for practice, info in practices.items():
        print(f"\n{practice} ({info['phase']}):")
        print(f"  Importance: {info['importance']}")
        print(f"  Implementation: {info['implementation']}")
    # Risk Matrix
    print("\n" + "="*80)
    print("3. Security Risk Matrix:")
    print("="*80)
    risk
matrix = create
risk
matrix(vulnerabilities)
    for risk in sorted(risk_matrix, key=lambda x: x['risk_score'], reverse=True):
        print(f"\n{risk['vulnerability']}:")
        print(f"  Risk Score: {risk['risk_score']}")
        print(f"  Impact: {risk['impact']}, Likelihood: {risk['likelihood']}")
    # Create visualizations
    print("\n" + "="*80)
    print("Creating Visualizations...")
    print("="*80)
    plot_security_vulnerabilities(vulnerabilities)
    plot_secure_practices(practices)
    # Summary
    print("\n" + "="*80)
    print("SUMMARY")
    print("="*80)
    print("\nKey Takeaways:")
    print("1. AI systems face unique security vulnerabilities")
    print("2. Secure development practices should be applied throughout the lifecycle")
    print("3. Risk assessment helps prioritize security measures")
    print("4. Security testing and monitoring are essential")
    print("5. Incident response plans should be prepared in advance")
    print("="*80 + "\n")

Unit 3 - Example 5: Secure AI Development Practices

1. Security Vulnerabilities in AI Systems:

Adversarial Attacks:
  Severity: High
  Impact: 9
  Likelihood: 7
  Description: Malicious inputs designed to fool AI models

Model Inversion:
  Severity: High
  Impact: 8
  Likelihood: 6
  Description: Reconstructing training data from model outputs

Membership Inference:
  Severity: Medium
  Impact: 7
  Likelihood: 7
  Description: Determining if specific data was in training set

Data Poisoning:
  Severity: High
  Impact: 9
  Likelihood: 5
  Description: Injecting malicious data into training set

Model Theft:
  Severity: Medium
  Impact: 6
  Likelihood: 6
  Description: Stealing model architecture and parameters

Insufficient Access Controls:
  Severity: High
  Impact: 8
  Likelihood: 8
  Description: Unauthorized access to models or data

2. Secure Development Practices:

Input Validation (Development):
  Importance: 10
  Implementation: Validate and sanitize all inputs

Output Sanitiz

‚úÖ Saved: security_vulnerabilities.png
‚úÖ Saved: secure_practices.png

SUMMARY

Key Takeaways:
1. AI systems face unique security vulnerabilities
2. Secure development practices should be applied throughout the lifecycle
3. Risk assessment helps prioritize security measures
4. Security testing and monitoring are essential
5. Incident response plans should be prepared in advance



---

## ‚û°Ô∏è Transition to Unit 4: Transparency and Accountability | ÿßŸÑÿßŸÜÿ™ŸÇÿßŸÑ ÿ•ŸÑŸâ ÿßŸÑŸàÿ≠ÿØÿ© 4: ÿßŸÑÿ¥ŸÅÿßŸÅŸäÿ© ŸàÿßŸÑŸÖÿ≥ÿßÿ°ŸÑÿ©

### What We've Accomplished

We've completed Unit 3: Privacy and Security! We've learned:
- ‚úÖ How to protect data (encryption, anonymization)
- ‚úÖ How to use advanced privacy technologies (homomorphic encryption, SMPC)
- ‚úÖ How to use differential privacy (mathematical guarantees)
- ‚úÖ How to ensure GDPR compliance (regulatory requirements)
- ‚úÖ How to build secure AI systems (security practices)

### The Next Challenge: Transparency and Accountability

**Privacy and security are important, but they're not the only ethical concerns!**

As we build AI systems, we also need to consider:
- **Transparency**: How do we explain AI decisions?
- **Accountability**: Who is responsible for AI outcomes?
- **Explainability**: How do we make AI understandable?
- **Auditability**: How do we track and verify AI behavior?

**The Problem**: We've learned about privacy and security, but **AI systems also raise transparency and accountability concerns**:
- AI systems make decisions that affect people
- AI systems may be "black boxes" that are hard to understand
- AI systems need to be explainable and auditable
- AI systems need clear accountability mechanisms

**This is exactly what we'll learn in Unit 4: Transparency and Accountability!**

---

## ‚û°Ô∏è Next Steps | ÿßŸÑÿÆÿ∑Ÿàÿßÿ™ ÿßŸÑÿ™ÿßŸÑŸäÿ©

**You've completed Unit 3!** Now you understand:
- ‚úÖ How to protect data and ensure privacy
- ‚úÖ How to comply with regulations
- ‚úÖ How to build secure AI systems

**Next Unit**: `unit4-transparency-accountability/`
- Learn about explainable AI (XAI)
- Understand accountability frameworks
- Master transparency requirements
- Build explainable and accountable AI systems

**Congratulations!** üéâ You've completed Unit 3 and learned how to build private, secure, and compliant AI systems!
