From “Can We Use AI?” to “Can We Prove It’s Under Control?”

Why AI Governance and Data Sovereignty Are Becoming the Same Conversation A few months ago, a large global bank appointed its first Chief AI Officer. Within the announcement was a number worth sitting with: over 600 AI use cases already in production, with generative AI named a strategic investment priority for the years ahead. ThatContinue reading “From “Can We Use AI?” to “Can We Prove It’s Under Control?””

Where Does AI Classification Custody Attach?

I encounter this question on a daily basis recently, even when I am not actively thinking about AI: Assume an AI reads compartmented information and produces a lower-control (a lower-classification output you could genuinely publish!). Where should classification custody attach? To the File, to the Prompt, to the Memory, to the Output, or the wholeContinue reading “Where Does AI Classification Custody Attach?”

AI Risk Management for Organizations Using AI Systems

Artificial Intelligence is no longer confined to experimental environments—it is embedded in everyday business operations. While much attention is given to those who develop AI systems, organizations that use these systems face their own distinct and equally critical set of risks. This article outlines a practical, organization-centric approach to AI risk management, focusing on enterprisesContinue reading “AI Risk Management for Organizations Using AI Systems”

ASP.Net Core and IIS: Use web.config to authorize Users/AD Groups

As a very fast and dirty solution to the authorization problem for an internally used web application (developed using asp.net core 2.1), I could put the old web.config file to good use: to allow certain users, add the following section: Similarly, to allow members of a certain AD group add the follwoing: For more information,Continue reading “ASP.Net Core and IIS: Use web.config to authorize Users/AD Groups”