Securing the LLM Backend: Mitigating Emerging Threats and Ensuring Data Privacy for AI-Powered Financial Applications on AWS
DOI:
https://doi.org/10.56127/ijst.v2i2.2334Keywords:
LLM security, AWS, data privacy, AI governance, financial technology, cloud compliance, threat mitigation, backend architecture, fintech AI, data protectionAbstract
Large Language Models (LLMs) have a significant impact on the financial technology (fintech) industry as the rapid growth of these automation types has simplified the processes of automation, customer interaction, and predictive analytics. Still, such breakthroughs bring a series of cybersecurity and privacy risk factors that compromise the data integrity, regulatory adherence, and institutional trust. This paper analyzes the security risk factors that are inherent to LLM backbend’s that are deployed in AI-based financial applications on Amazon Web Services (AWS). Using a hybrid-methodology combining qualitative threat modeling with quantitative analysis of AWS-specific security settings, we use the STRIDE and MITRE ATT&CK framework to name key vulnerabilities, such as prompt injection, data exfiltration, model inversion, and privilege escalation. The next steps that we take are to assess the effectiveness of the AWS-native mitigation aspects like in-use encryption, granular Identity and Access Control (IAM) controls, network segregation, and continuous auditing. The findings show that the integration of the governance of LLM with the cloud security architecture of AWS significantly increases data confidentiality and contributes to the international financial regulation, in particular, GDPR and PCI-DSS. This paper introduces a security-by-design model of LLM backends, where explainability and data minimization as well as proactive monitoring are crucial. Therefore, the paper highlights the critical importance of safe AI-cloud integration in privacy, robustness, and trust protection in financial ecosystems
References
[1] Shethiya, A. S. (2023). Rise of LLM-Driven Systems: Architecting Adaptive Software with Generative AI. Spectrum of Research, 3(2).
[2] Cases, B. U., & Figueiredo, M. (2023). Generative AI with SAP and Amazon Bedrock. SAP Technical Documentation.
[3] Malempati, M. (2021). Developing End-to-End Intelligent Finance Solutions Through AI and Cloud Integration. Available at SSRN 5278350.
[4] Lai, T., Shi, Y., Du, Z., Wu, J., Fu, K., Dou, Y., & Wang, Z. (2023). Psy-llm: Scaling up global mental health psychological services with ai-based large language models. arXiv preprint arXiv:2307.11991.
[5] Lai, T., Shi, Y., Du, Z., Wu, J., Fu, K., Dou, Y., & Wang, Z. (2023). Supporting the demand on mental health services with AI-based conversational large language models (LLMs). BioMedInformatics, 4(1), 8-33.
[6] Chakraborty, U., Roy, S., & Kumar, S. (2023). Rise of Generative AI and ChatGPT: Understand how Generative AI and ChatGPT are transforming and reshaping the business world (English Edition). BPB Publications.
[7] Devi, K. V., Manjula, V., & Pattewar, T. (2023). ChatGPT: Comprehensive study on generative AI tool. Academic Guru Publishing House.
[8] Ravindran, A. A. (2023). Internet-of-things edge computing systems for streaming video analytics: Trails behind and the paths ahead. IoT, 4(4), 486-513.
[9] Ilieva, G., Yankova, T., Klisarova-Belcheva, S., Dimitrov, A., Bratkov, M., & Angelov, D. (2023). Effects of generative chatbots in higher education. Information, 14(9), 492.
[10] Sainio, K. (2023). Generative Artificial Intelligence Assisting in Agile Project Pain Points (Doctoral dissertation, Master’s Thesis, Faculty of Management and Business, Tampere University, Finland).
[11] Ravindran, A. A. (2023). Edge Computing Systems for Streaming Video Analytics: Trail Behind and the Paths Ahead.
[12] Xie, Q. (2023). Deep learning based chatbot in fintech applications (Doctoral dissertation, University of Maryland, Baltimore County).
[13] Shoeibi, N. (2023). Evaluating the effectiveness of human-centered AI systems in education.
[14] Thukral, V., Latvala, L., Swenson, M., & Horn, J. (2023). Customer journey optimisation using large language models: Best practices and pitfalls in generative AI. Applied Marketing Analytics, 9(3), 281-292.
[15] Ravindran, A. A. (2023). Internet-of-things edge computing systems for streaming video analytics: Trails behind and the paths ahead. IoT, 4(4), 486-513.
Downloads
Published
How to Cite
Issue
Section
License
Copyright (c) 2023 Gunjan Kumar
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
