The workshop will focus on the application of AI to problems in cyber-security. Cyber systems generate large volumes of data, utilizing this effectively is beyond human capabilities. Additionally, adversaries continue to develop new attacks. Hence, AI methods are required to understand and protect the cyber domain. These challenges are widely studied in enterprise networks, but there are many gaps in research and practice as well as novel problems in other domains.

This year the AICS emphasis will be on practical considerations in the real world when deploying AI systems for security with a special focus on convergence of AI and cyber-security in the biomedical field.

In general, AI techniques are still not widely adopted in the real world. Reasons include: (1) a lack of certification of AI for security, (2) a lack of formal study of the implications of practical constraints (e.g., power, memory, storage) for AI systems in the cyber domain, (3) known vulnerabilities such as evasion, poisoning attacks, (4) lack of meaningful explanations for security analysts, and (5) lack of analyst trust in AI solutions. There is a need for the research community to develop novel solutions for these practical issues.

The biomedical space has seen a flurry of activity recently, and cyber criminals have amplified their efforts with health-related phishing attacks, spreading misinformation, and intruding into health infrastructure. These lead to security considerations: (1) securing personal health information, genetic material, intellectual property, and digital health records, (2) balancing privacy rights and data ownership concerns in solutions using network and mobile data, (3) defending AI for biology use cases to deter automated attacks at scale.