Trust is the glue that binds us, both in personal relationships and business transactions. In human interactions, trust fosters connection, cooperation, and mutual respect, forming the foundation for meaningful relationships. Similarly, in business, trust is essential for building rapport with customers, partners, and employees.
With the wave of disruption brought on by advanced AI technologies, the business world is quickly learning the importance of trustworthy AI. Every technology has a dual use. If we are to truly benefit from the many advantages that AI promises to deliver, we must have confidence in the tools we use and the data that feeds it.
“Trust and governance are critical in our AI-driven solutions as an enterprise,” said Shannon Bell, Executive Vice President and Chief Digital Officer at OpenText. “As we get comfortable with AI usage at scale, our data needs to be meticulously governed to ensure the right permissions are established. Embracing an AI-first mindset means that our governance frameworks will need to evolve to encompass new protocols and standards to interact with LLMs so we can all confidently leverage AI to drive sound decisions and innovation.”
In every field across business, there are experiments going on with generative AI to drive productivity. As we embark upon the next wave, the garden of LLM models will be endless and domain specific. This means that the efficacy of the results depend on whether we can trust our own data to enable autonomous decisions. The debate is no longer about ethical AI; but for most enterprises, it will be a conversation around the right information governance to balance risks, rewards, and new ways of working.
Make your data trustworthy
Information management is the systematic process of collecting, organizing, storing, and distributing knowledge within an organization. It encompasses strategies, technologies, and policies to ensure data is accessible, secure, and used effectively to support decision-making and business processes.
Information management by definition is a prerequisite for AI. And knowledge management has found a new life with the democratization of AI. Automation of information flows in real time can help create complete, accurate, and secure data sets that feed AI. And prompt-based chat assistant interfaces will transform how knowledge is sought and retrieved across organizations of all sizes.
Consider these three simple steps for enabling trustworthy AI:
Cloud data strategy – form the foundation of what is needed to support AI across your organization; determine the landscape of applications, data repositories, and cloud infrastructure to host your AI (built and bought).
Information governance – organize data and information flows in a way that is conducive to iterative learning. The information we feed AI must be current, accurate, secure, complete, and compliant. Determine the right permissions and access to source information both to validate the results but also to ensure the right privacy standards are in place.
Autonomous decisions – determine how much work you’d like the machines to do. It will be up to business owners to draw the line and apply human logic to determining what decisions should be made by AI and what shouldn’t be made autonomously. Determining these parameters will be key to building trust in AI.
AI reflects reality
Trustworthy data is essential to AI success, but the AI journey doesn’t end there.
“AI is reflective of society,” says Karen Palmer, Storyteller from the Future, Award-winning XR Artist, and TED Speaker, in a recent talk. “So it’s very important for our society to reflect the best part of ourselves, because the AI is going to do that.”
The same, of course, is true for business–AI will generate and amplify a reflection of the organizational information it’s fed; in essence you are what AI says you are. Therefore, organizations must also consider what happens when AI leverages that trustworthy data–what is the image of your organization AI will portray to the world? Does your organization’s information reflect your values, your culture, your priorities?
AI will be a force multiplier for human potential. We’re starting today by automating workflows and gaining insights, but there’s much more to do. The AI revolution is a mindset and new way to think. With trust and data, people can raise creativity and efficiency. And lastly, by letting the machines do the work, error-proof processing becomes a tangible goal for the future.
From calculations to decision support to decision automation, artificial general intelligence will empower all of us to be smarter, be more creative, and live longer.
Learn more about why OpenText is your trusted partner for AI.
Today’s businesses are challenged to transition their services and offerings into a digital, frictionless customer experience with real-time insights, quick response times, and self-service experiences.
Low code platforms like Microsoft Power Platform (which include Power Pages for self-service portals, Power Automate for process data alignment) and business operation applications like Microsoft Dynamics 365 for operational efficiencies are key components for seamless customer experiences and key insights to business operations.
The challenges of process inefficiencies
These desired customer experiences rely on modern information workers who interact with customers and juggle too many different business applications.
The average desk worker uses 11 applications to complete their tasks, up from just six in 2019, according to a Gartner report published Wednesday based on a survey of 4,800 full-time employees.1 Application sprawl and business and process applications misalignment continue to be major productivity obstacles.
This process inefficiency is further complicated by research showing that 52% of an organization’s data is ‘dark’, meaning information is unclassified and invisible to the organization.2 Employees still spend 3 hours a day looking for information they can’t find in a timely manner.3 This reduces employee productivity, shrinks the bottom line, and taints customer experiences.
Streamline workflows and enhance efficiency
The key to achieving operational excellence is connecting business process applications with a customer-facing portal and real-time access to unified information and process data sources.
This translates into operational efficiencies such as:
Better processes – Content connected to relevant business processes enables streamlined workflows working with a single source of truth. Connectors for Power Automate streamlined routine tasks and eliminate manual labor-intensive tasks like data entry in Dynamics 365. Automation ensures up-to-date and uniform data across systems. OpenText™ Extended ECM efficiently manages documents, such as attaching contracts, and safeguards document integrity.
Elevated employee and customer experience – Employees get better insights into connected business processes and data sources to help find content whenever they need it instead of searching across silos. Customers use self-service portals or are served faster and experience a more personalized engagement by employees equipped with valuable customer insights.
Automated information governance – Critical content is automatically controlled to ensure compliance with company governance policies, and industry and government regulations.
Operational agility – Businesses can quickly transition to digital, frictionless services using low-code automation and connectivity. Low code offers high flexibility and faster ROI helping businesses adapt quickly to fluid market conditions.
Transform your customer interactions
By breaking down information silos with a centralized data source, OpenText improves access to relevant information and offers valuable customer insights and engagement. Streamlining workflows with low code connectors reduces IT burden and enhances operational agility with rapid adoption and automation of self-service and process automation. Robust controls ensure information flows where it needs to go and is always kept safe and secure.
Over two-thirds of organizations plan to increase their cloud computing spending in 20241. More than half of organizations attribute increased spending to factors including cloud services (such as AI), greater resource availability for new business ventures, and migration of workloads from on-premises or private data centers.
Most organizations struggle with challenges to their cloud migration, resulting in stalled projects and cost overruns. Some feel like outright roadblocks. Planning becomes problematic as the difficulties are hard to predict, and the talent needed to address surprises is in short supply.
Any cloud migration is enormously complex, so it’s essential to find solutions to simplify the task ahead with each application your organization is migrating.
OpenText™ InfoArchive is purpose-built to address these challenges head-on. InfoArchive is a direct response to an organization’s need to keep migration costs and project timelines to a minimum, simplify infrastructure, and manage long-term compliance and data access requirements.
Migrate legacy application data to the cloud with confidence.
Here are some common roadblocks posed by cloud migrations and how OpenText InfoArchive addresses each:
Not all applications can be migrated effectively or at all. Applications built on Visual Basic, older multi-tier architectures or even mainframes may be difficult to transfer to the cloud due to antiquated environmental assumptions or licensing issues. If these applications are not accumulating or processing data, InfoArchive can help you retire them and archive the data while providing search, viewing, security, storage, and compliance for this data.
Cost to maintain scalability and performance. Many existing applications may have scalability and performance characteristics that are unnecessarily costly as they don’t efficiently take advantage of cloud services. InfoArchive is designed expressly to exploit scalable, distributed cloud architectures and is integrated with native cloud databases and storage services. It scales resources in real-time, as necessary, to provide the most efficient use of computing and storage costs going forward.
Security requirements may be impossible to resolve. Due to limitations in the architecture, data security requirements may prevent legacy applications or data from being moved to the cloud. InfoArchive is a modern, cloud-first architecture that meets stringent security requirements and can encrypt data and content with a customer-managed key.
Transitioning dormant, business-complete data into modern cloud applications is expensive. Cloud applications may charge hefty fees for live data in applications no longer in use. InfoArchive can take on this dormant data’s long-term retention and legal hold requirements so that only active data is transferred to updated cloud alternatives.
Regulatory Compliance. Data retention, data sovereignty, privacy, legal hold, and security requirements evolve regularly and can create complexities for governance and IT that are struggling to comply. InfoArchive is designed with flexible data compliance for both structured and unstructured data that eases the load and provides the year-over-year flexibility necessary to keep up with changing requirements.
Skill gaps. Legacy applications often require highly specialized knowledge after retirement, even if virtualized in the cloud. These systems require maintenance, upgrades, and specialty user support each year. Maintaining this expert knowledge rather than shifting resources to active systems is a huge drain on IT budgets. InfoArchive consolidates and simplifies the infrastructure and usage of this data into a single platform with longevity, freeing resources to learn and support forward-looking applications.
At Dairy Farmers of America, we work with more than 6,200 affiliated farms across the country. As a milk marketing cooperative, we’re owned by the farmers who produce our products—and wherever you live, you’re probably not far from one of our thousands of farmer-owners.
Driving 24/7 operations
Because dairy products have a relatively short shelf life, our production processes must run seven days a week, 365 days a year. We have a nationwide logistics network that collects milk from farms across the country and transports it to our plants and our customers’ plants for processing and distribution. In 2022, this generated $22.5 billion in revenues, and keeping everything running like clockwork behind the scenes presents some complex challenges.
Replacing paper processes
One of the most important documents for our business is the ‘milk manifest,’ which includes up to 155 separate pieces of information about each shipment. We use milk manifests to help calculate payments for our farmer-owners, making these documents a vital part of our day-to-day operations.
Previously, milk manifests were almost always paper documents. Our haulers would carry copies when they visited our farmer-owners to pick up shipments of milk and fill out the required information on site. Later, our back-office teams would manually re-key the information into our accounting system to process payments to our farmer-owners. It was a time-consuming process.
Beginning the digital journey
We began our journey with OpenText ten years ago when we deployed SAP solutions for our milk marketing processes. Our initial use case was to streamline the way that the new SAP applications handled milk manifests. Working with OpenText, we created a digital workflow to capture the information from milk manifests and bring it into our SAP environment.
Replacing this manual, paper-based task with a digital workflow enabled us to deliver big benefits to our stakeholders. By combining OpenText capture technology with human reviews and approvals, we significantly reduced the risk of errors creeping into one of our most important processes. And by seamlessly integrating data from milk manifests with our SAP business applications, our back-office teams can work much more efficiently.
Moving to the cloud
We’re always looking for ways to improve our digital services—and our collaboration with OpenText remains a key enabler of that effort. Recently, we took the first step on our cloud journey with RISE for SAP. Because our SAP and OpenText solutions are so closely intertwined, it made perfect sense to bring our OpenText solutions to the cloud, too.
Today, the OpenText Private Cloud underpins many of the mission-critical services we provide to the business. The new cloud content management platform is 10 times more reliable than our old on-premises infrastructure—helping us to ensure that our digital services are always online when users need them.
Preparing for the future
Another big benefit of moving to the cloud is that my team has more time to build new digital capabilities for the business. For example, we recently developed a brand-new solution for plant maintenance, built on OpenText Business Workspaces. By digitizing equipment manuals and maintenance records, we empower our technicians to find the information they need faster—which in turn helps them to keep the assets in our plants running smoothly
We’ve used the OpenText platform to deliver valuable efficiencies in many business areas—from our production plants to our legal, HR and back-office teams—and we want to go even further. Next, we’re planning to build a new solution for our field representatives powered by OpenText™ Extended ECM integration with Salesforce®, and we’re excited for what the future holds.
We are excited to be a lead sponsor at the 2024 Payments Canada Summit! As we prepare for one of the most important events in payments, we understand that the financial services industry is undergoing significant changes, driven by standards like ISO 20022 and the rapid adoption of artificial intelligence. That’s why we’re committed to leading the discussion on these critical topics at The Summit. Join OpenText alongside an esteemed panel of industry experts, as we delve into real-world examples, insightful use cases, and thought leadership on these transformative subjects.
ISO 20022 is here to stay
ISO 20022 has become a topic that cannot be ignored in any payments related discussion, offering a standardized framework for financial messaging. At OpenText, we recognize that as the industry evolves, so do the demands for interoperability, compliance, and seamless communication across borders. We’re attending The Summit to share our expertise on ISO 20022 and discuss how this standard can be leveraged to create a strategic advantage. In our session, “Turning ISO 20022 into a Competitive Advantage,” you’ll hear from numerous industry leading thought leaders on how they have navigated their ISO 20022 journey, and out of the box uses cases that have been leveraged to achieve greater efficiency and growth.
Artificial intelligence is no longer just a buzzword, it is a topic that is being brought to life in more ways than one within the payments industry. AI is changing the way payments are processed, analyzed, and delivered to customers. As a leader in AI-powered solutions, OpenText is at the forefront, leading the charge. At The Summit, we’re bringing our AI experts to discuss the latest innovations and explore how AI can streamline your operations and enhance customer experiences. Join us for our breakout session, “Making the Most of AI in Payments,” where we’ll dive into the practical applications of AI and demonstrate how it can give your organization a competitive edge.
We understand the significance of addressing topics like ISO 20022 and AI, as both are poised to shape the future of payments. At OpenText, we are committed to providing products and solutions that empower banks and their clients to capitalize on the opportunities they present. Our presence at The Summit signifies our commitment to sharing our expertise, offering industry leading solutions, and collaborating with organizational leaders to deliver best in class experiences to banks and their corporate clients.
Secure your spot and join the conversation
Don’t miss your chance to connect with OpenText at the 2024 Payments Canada Summit! Visit us at Booth 7 and join our sessions to explore how our financial services solutions can support your journey.
As a continuation of our commitment to L.O.V.E., the OpenText customer engagement framework, we are pleased to announce the launch of ourdigital success portal (login required). This new portal is designed to deliver sustained customer engagement and satisfaction, driving growth and retention in the modern, interconnected marketplace.
The OpenText digital success portal supports all customers by providing free digital resources and best practices to enhance customer engagement and drive optimization of OpenText solutions.
OpenText is also pleased to announce a collection of success toolkits available from the portal.
The portal (login required for some links) features resources including:
In the coming months, you can look forward to regular updates as well as opportunities to provide input as we continue to develop and optimize the portal. Visit the digital success portal to check out these helpful resources and discover new ones as they are added. If you have feedback on the portal or content you would like to see added in the future, please contact us at opentextsuccess@opentext.com.
Technology innovation moves at a breakneck pace. Professionals who stay up to date with the latest developments have the opportunity to boost their job skills and become invaluable to their organizations. That’s why we’re making training and certification a central focus of OpenText World 2024.
Join us this November at The Venetian Resort Las Vegas to quickly get up to speed with the latest skills that are in high demand, then demonstrate your proficiency with certification.
Gain the skills you need to stand out
Pre-conference training classes cover the essential skills you need to be successful with OpenText products. Learn from experts as they walk you through hands-on activities and best practices.
The benefits of instructor-led training include:
Learning from instructors who are experts in their fields.
Taking advantage of in-person instruction for the fastest path to proficiency.
Immersing yourself in guided classroom experiences that remove distractions.
Studying alongside peers in similar roles.
All pre-conference training classes are two days in length and will be held on Sunday, November 17 and Monday, November 18 from 9:00 am–5:00 pm. Lunch, coffee, and snacks will be provided, and attendees are invited to a training reception to facilitate further networking. Training attendees will also get priority registration for the education track during OpenText World 2024 and a certification voucher ($500 USD value) in addition to the free certification exam that can be taken onsite during the conference.
Scroll through the list of offered courses and drill down into descriptions for more information, then register for pre-conference training November 17–18 and the OpenText World 2024 conference November 19–21. The pre-conference training package is available as an add-on to your full conference pass for an additional $1,599. See full pricing details here.
Validate your skills with certification
Become OpenText Certified and gain the benefits of being an in-demand information management expert. As part of your in-person conference pass, you are entitled to one free attempt at becoming a certified information management expert.
The benefits of becoming OpenText certified include:
Gaining a competitive advantage by validating skills and expertise.
Demonstrating relevant skills with role-based certification.
Establishing yourself as an expert across your professional network.
Earning an objective measurement of technical proficiency.
Feeling confident knowing your certification is valid for three years.
We have an extensive library of certifications for you to choose from, including enterprise content management, AI and analytics, cybersecurity, digital experience, IT operations, and DevOps. For additional information, take a look at our catalog here.
Join us for innovation, excitement, and education at OpenText World 2024 in Las Vegas.
OpenText World 2024
Join us this November in Las Vegas for our premier user conference! Explore the benefits of information management, AI, cloud, security and more.
At Air France-KLM, we’re one of the global leaders in international air transport. Through our subsidiaries Air France, KLM Royal Dutch Airlines, and Transavia, we offer passenger services, cargo transport, and aircraft maintenance flights to over 300 destinations.
To transport our 83 million passengers a year, it’s vital that we keep our modern fleet of 522 aircraft in top condition. Commercial aviation is one of the safest ways to travel for a very good reason; like all leading global airlines, Air France-KLM follows rigorous and tightly regulated inspection and maintenance processes for all aircraft and airside equipment.
Maintaining a world-class fleet
Our aircraft are made up of thousands of individual components, each of which requires planned as well as unplanned maintenance. Every asset inspection and repair we carry out is associated with documentation: maintenance manuals and tech logs, work instructions, engineering drawings, and much more. With reference to these documents, our mechanics and engineers can perform their duties safely, efficiently, and accurately.
For many years, all our documents were printed on paper, and our teams relied on hundreds of thousands of hard copies to do their work. New maintenance processes and airworthiness directives are released all the time—and with so many paper copies, it was a major effort to keep our records up to date. What’s more, the cost of storing all these paper documents was climbing and climbing every year. We knew we needed a different approach.
Driving digital transformation
That’s where our journey with OpenText™ began. Working together, we switched from paper records to digital documents, managed securely and efficiently in OpenText™ Documentum™. For more than two decades, Documentum has acted as the single source of truth for all our maintenance and engineering content—including data from industry vendors such as Airbus, Boeing, and General Electric.
Today, 15,000 employees across the business rely on data in Documentum to perform their day-to-day work. For our aircraft engineers particularly, the solution had a massive impact on efficiency. Gone are the days of leafing through filing cabinets to find vital maintenance information—today, all the information they need is right at their fingertips. They simply enter a part number into Documentum, and they can navigate to the associated records immediately.
We operate in a highly regulated industry, which makes OpenText the perfect fit for our compliance needs. The solution offers a watertight audit trial for every user action, helping us to demonstrate to our regulators that we are following the proper procedures for our maintenance activities.
Soaring into cloud
Documentum is such an important solution for our business that we continuously invest in extending and enhancing its capabilities. Over the years, we’ve integrated Documentum with our core business systems, including SAP® ERP and Salesforce®. One of our most recent projects was deploying Documentum D2 SmartView—a modern user experience that empowers our employees with personalized workspaces that make it even faster and easier to find the data they need. With some features still pending, we continue to partner with OpenText to help drive product roadmaps.
At the moment, we’re planning our next big Documentum project—a move to the cloud. By bringing the solution to Azure, we’ll unlock all the familiar benefits of cloud: easier management and maintenance, lower infrastructure costs, and tighter information security. As an early adopter, Professional Services is helping us navigate vulnerabilities as we containerize in Azure.
Exciting news! OpenText Project and Portfolio Management (PPM) achieved FedRAMP Ready and is currently FedRAMP in Process–plus it’s available on the FedRAMP Marketplace in the OpenText IT Management Platform (ITMX) package. This means PPM On-Cloud can easily be adopted by government agencies. The OpenText ITMX Platform featuring Service & Asset Management, Universal Discovery, CMDB, and Project & Portfolio Management is in the final stage of FedRAMP certification.
Organize, integrate, and protect data and content as it flows through business processes inside and outside your organization with the OpenText ITMX Platform. With ITMX, government agencies can reduce Tier 1 support, increase IT visibility, and reduce service disruptions, while accelerating application delivery through private generative AI and automation.
OpenText ITMX key capabilities include the following:
Single intuitive self-service portal for IT Service Management, AI-driven support, and a mobile app for empowering users and reducing service desk costs
Codeless configurations, ITIL-certified processes, plus technology-agnostic workflow and process automation to boost IT productivity
Powerful discovery of traditional IT assets and cloud services, change-risk analysis, and IT asset and software license management to reduce risks and control costs
Investment and strategy alignment through a top-down and bottom-up analytics approach to application portfolio and project management
What is FedRAMP?
The Federal Risk and Authorization Management Program (FedRAMP®) is a government-wide program that standardizes the security assessment, authorization, and continuous monitoring of cloud products and services used by federal agencies. FedRAMP certification provides assurance to federal agencies that the cloud services they use meet stringent security standards, thereby helping to protect sensitive government data from cyber threats and unauthorized access.
Why is FedRAMP certification important?
Cloud Service Offerings (CSO) that achieve FedRAMP authorization can be implemented by government agencies with confidence. FedRAMP certification offers several benefits for government agencies:
Enhanced Security: FedRAMP ensures that cloud services meet stringent security standards, protecting sensitive government data from cyber threats and unauthorized access.
Streamlined Procurement: FedRAMP certification streamlines the process of procuring cloud services by providing a standardized framework for security assessment and authorization, reducing duplication of efforts and saving time and resources.
Cost Savings: By leveraging FedRAMP-certified cloud services, government agencies can realize cost savings through reduced infrastructure and maintenance costs, as well as by avoiding the need for individual security assessments.
Facilitate Collaboration: By adhering to common security standards, FedRAMP promotes interoperability among government agencies and facilitates seamless data sharing and collaboration. This enhances efficiency, communication, and decision-making across different departments and agencies.
Compliance Assurance: FedRAMP certification provides assurance that cloud services comply with federal security and privacy regulations, helping government agencies meet their legal and regulatory obligations.
Learn more about OpenText PPM and how it can help government agencies strategically align projects with organizational objectives, optimize resource allocation, mitigate risks, facilitate informed decision-making, measure performance, and govern project portfolios efficiently. Follow us to stay in the loop on the OpenText ITMX Platform’s FedRAMP certification and authorization.
The recent IT leaders CIO MarketPulse survey by Foundry underscores that data must be ready for AI. If it’s not accurate, accessible, and secure, organizations won’t get the desired results. When it comes to the challenges organizations face in implementing AI, respondents listed issues related to data management as the most significant. Since AI relies on data to learn and improve, organizations must ensure their data is accurate, accessible, and secure. They must also build a solid data foundation, including a governance framework, to take full advantage of the benefits of AI.
CIOs are at the forefront of steering their organizations’ journey into the realm of artificial intelligence. A significant majority, 71%, are deeply involved in formulating AI applications, while an even higher percentage, 80%, are actively researching and evaluating potential AI integrations into their technology stack.
The OpenText™ Advantage
For decades, enterprises have turned to OpenText’s information management solutions to organize, connect, govern, and protect all data sets. Artificial Intelligence (AI) requires these foundational data strategies that OpenText is known for. Information management makes data better. And the better the data, the better the AI. From natural language processing to robotics to machine learning, our history of applying AI puts the future within your reach.
Every day, we see the power that excellent information management brings to our customers by connecting users to content and data and super-charging content-rich processes through intelligence and automation. The launch of OpenText™ Aviator brings the power of large language models (LLMs) and generative AI (GenAI) to information management users. At the same time, we must also protect sensitive information and deliver accurate information to the user. OpenText is widely recognized for bringing trusted and secure information governance to customer processes and increasing customers’ security posture.
The OWASP Top 10 for Large Language Model LLM Applications identifies three areas in particular that need to be addressed during the planning and operating phases of populating and accessing Large Language Models (LLMs):
Remove vast amounts of Personally Identifiable Information (PII) in large datasets.
Implement least-privilege access controls to protect LLMs from nefarious modification.
Check for existing vulnerabilities in the LLM model or supply chain.
OpenText™ Voltage Fusion Data Discovery & Protection
Personally Identifiable Information (PII) refers to any data that can be used to identify an individual. Examples include names, mailing addresses, phone numbers, social insurance numbers, and credit card details. When implementing GenAI and training language models (LLMs), businesses face the challenge of accidentally including PII in the training data. If PII is part of the model’s training dataset, it may generate responses to users, potentially leading to data breaches, privacy compromises, and violations of compliance regulations. OpenText Aviator and Voltage Fusion are equipped to help large industry sectors manage their regulatory landscapes, ensuring compliance with sector-specific standards like GDPR, PCI DSS, FCC, and evolving privacy laws.
OpenText Voltage Fusion is a cloud-first data security platform that protects sensitive data, including Personally Identifiable Information (PII). Here’s how it works:
AI-Driven Data Discovery: Voltage Fusion can detect regulated information, such as PII, across unstructured and structured data. This allows it to identify and classify sensitive data across your data estate. Contextually aware, AI-driven grammars reduce false positives and quickly identify high-value assets (e.g., contracts, intellectual property, patents, etc.) and personal or sensitive data types (e.g., PI/ PII, PCI, PHI, etc.).
Data Classification: It goes beyond simple risk scoring by connecting data discovery and classification to the potential monetary and business impact of a data breach or non-compliance. This helps prioritize risk reduction.
Data Protection Technologies: Voltage Fusion replaces manual remediation with automated, privacy-aligned data protection technologies that improve compliance and promote strong data ethics and business growth. It uses privacy-enhancing technologies, including format-preserving encryption, tokenization, hashing, and data masking. Voltage Fusion leverages Voltage SecureData’s industry-leading Format-Preserving Encryption (FPE), Secure Stateless Tokenization (SST) and Format-Preserving Hashing (FPH) technologies.
Test Data Management: Automates the privacy and protection of sensitive production and PII data, preparing it for testing, training, and LLM pipelines.
Masking, Format-Preserving Encryption and Tokenization: These technologies deidentify data to render it useless to attackers while maintaining its usability and referential integrity for data processes, applications, and services.
By implementing these measures, OpenText Voltage Fusion helps to prevent the leakage of PII data, thereby enhancing data security and privacy practices.
OpenText™ NetIQ Identity, Credential, and Access Management (ICAM)
To address the need for least-privilege access to the LLM application, OpenText NetIQ stands as a cornerstone in our Cybersecurity suite, championing identity-based privacy. It offers comprehensive data protection through risk-based adaptive authentication and seamless integration with OpenText Extended Content Management (xECM). A dynamic policy engine, capable of immediate response to organizational shifts during critical stages such as employee transitions, bolsters this integration. Furthermore, our Interset machine learning technology enhances Identity Governance and Administration, employing anomaly detection to elevate the governance risk score. This advanced approach enables proactive policy enforcement, effectively neutralizing threat actors by revoking access at the pivotal point of identity verification.
Training Data Stores Protection:
Safeguard access to training data stores. Unauthorized access could lead to data poisoning, introducing bias into the model.
Implement strict controls to prevent unauthorized modifications or exposure of training data.
LLM Models Access Control:
Control access to LLM models. Limit permissions to authorized personnel.
Properly configured access ensures model integrity and prevents unintended bias in outputs.
Sensitive Data Protection:
Shield sensitive data within training data stores and LLM models.
Robust access controls prevent accidental exposure or misuse of sensitive information.
AI System and Plugin Access:
Define precise permissions for AI systems and plugins interacting with downstream services.
Avoid granting excessive agency to prevent adverse effects on downstream systems.
Conducting security scans against large language models (LLMs) and machine learning models is crucial for several reasons:
Identify Vulnerabilities: Security scans can help identify potential model vulnerabilities. The complexity introduced by machine learning algorithms like language models, which leverage vast volumes of training data, can expose new security vulnerabilities.
Prevent Misuse: LLMs have significantly transformed the landscape of Natural Language Processing (NLP). However, they also introduce critical security and risk considerations1. Security scans can help prevent potential harm caused by misuse of LLMs.
Ensure Trustworthiness: As LLM usage expands and these models become more integrated into various applications and platforms, it’s crucial to address the challenges LLMs pose to ensure the trustworthiness and safety of LLM-driven systems.
Detect Threats: Code scanning will detect threats such as prompt injection, insecure output handling (which can include XSS), and insecure plugin design, which are security issues in AI.
Compliance with Regulations: Security scans can help ensure that using LLMs complies with data privacy regulations and standards.
Future-Proofing: Regular security scans can help keep up with the evolving nature of threats in the digital landscape.
Application Security scans are essential to responsible practices when deploying LLMs and other machine learning models.
Both Fortify Audit Assistant service and Fortify Static Code Analyzer can identify issues that come with the use of generative AI and large language models (LLMs) that are rapidly changing the solution space of the software industry and presenting new risks. The initial Fortify support covers Python projects that consume OpenAI API, Amazon Web Services (AWS), SageMaker, or LangChain. Fortify detects weaknesses resulting from the implicit trust of responses from AI/ML model APIs, plus some unique features around Cross-Site Scripting for applications developed using large language models (LLMs).
The Fortify Audit Assistant service also uses machine learning algorithms based on hundreds of millions of anonymous audit decisions. Using Audit Assistant, These decision models can automatically be applied to OpenText Fortify results. Audit Assistant gets better and better over time. The more you audit your vulnerabilities, the more the models learn what’s appropriate for your projects.
Conclusion
The integration of AI into business processes presents both opportunities and challenges. Accurate, accessible, and secure data is crucial for effective AI implementation. Organizations must establish a robust data governance framework to leverage AI’s full potential. CISOs/CIOs play a pivotal role in this transformation, with a majority actively involved in developing AI applications and exploring new AI integrations. With its long-standing expertise in information management, OpenText provides solutions that enhance data quality—essential for AI success. Their latest offering, OpenText™ Aviator, incorporates large language models and generative AI, empowering users while maintaining a commitment to data protection and governance. This approach positions OpenText as a leader in secure and trusted information management, ready to meet the demands of the AI-driven future.
Written by Gary Freeman, Manager Solution Consulting; Roland Kahl, Senior Solution Consultant; Pedro Garcia, Senior Solution Consultant; and Richard Cabana, Senior Solution Consultant
