https://www.sakurasky.com/tags/aisvs/Recent content in Aisvs on Sakura Sky: Cloud, Data, SecurityHugoen-USSakura SkyTue, 26 May 2026 11:23:18 +0200https://www.sakurasky.com/blog/regulatory-stack-part-2/Thu, 21 May 2026 00:00:00 -0400https://www.sakurasky.com/blog/regulatory-stack-part-2/<style> .series-pull-quote { float: right; clear: both; width: 340px; margin-left: 2rem; margin-bottom: 1.5rem; border: 1px solid #e9ecef; border-radius: 6px; overflow: hidden; background-color: #ffffff; position: relative; z-index: 20; } @media (max-width: 768px) { .series-pull-quote { float: none; clear: both; width: 100%; margin-left: 0; } } .series-header { background-color: #f8f9fa; color: #6c757d; font-size: 0.65rem; font-weight: 700; letter-spacing: 0.05em; padding: 0.8rem 1.25rem; border-bottom: 1px solid #e9ecef; } .part-label { display: block; font-size: 0.6rem; color: #adb5bd; margin-bottom: 0.15rem; text-transform: uppercase; } .nav-link-text { font-size: 0.85rem; line-height: 1.4; color: #495057; text-decoration: none; position: relative; z-index: 21; } .active-part { border-left: 4px solid #000 !important; background-color: #ffffff !important; } .active-part .nav-link-text { font-size: 0.9rem; font-weight: 700; color: #212529; text-decoration: underline; text-underline-offset: 3px; } .locked-part .nav-link-text { color: #ced4da; } .list-group-item { border-bottom: 1px solid #f8f9fa; padding: 1rem 1.25rem !important; } </style> <aside class="series-pull-quote shadow-sm"> <div class="series-header"> READ MORE IN THIS SERIES </div> <div class="list-group list-group-flush"> <div class="list-group-item "> <div class="d-flex justify-content-between align-items-center"> <div> <a href="https://www.sakurasky.com/blog/regulatory-stack-part-1/" class="nav-link-text">Part 1 - AISVS Has 14 Categories. GATE Has 16 Controls. Here Is the Map.</a> </div> </div> </div> <div class="list-group-item active-part "> <div class="d-flex justify-content-between align-items-center"> <div> <a href="https://www.sakurasky.com/blog/regulatory-stack-part-2/" class="nav-link-text">Part 2 - Why the Boardroom Should Be Funding the Verification Layer in 2026</a> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 3 - How the EU AI Act Made Verification a Legal Question, Not a Best-Practice One</span> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 4 - Engineering Under the AI Act: Article 15 Cybersecurity in Practice</span> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 5 - The Cyber Resilience Act Closes the Last Loophole</span> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 6 - Building Under the CRA: A Reference Architecture</span> </div> </div> </div> </div> </aside> <p>The capital deployment decisions boards make this year will determine whether their autonomous AI systems are governable assets or existential liabilities by 2027. Here is the strategic case.</p>https://www.sakurasky.com/blog/regulatory-stack-part-1/Tue, 19 May 2026 00:00:00 -0400https://www.sakurasky.com/blog/regulatory-stack-part-1/<style> .series-pull-quote { float: right; clear: both; width: 340px; margin-left: 2rem; margin-bottom: 1.5rem; border: 1px solid #e9ecef; border-radius: 6px; overflow: hidden; background-color: #ffffff; position: relative; z-index: 20; } @media (max-width: 768px) { .series-pull-quote { float: none; clear: both; width: 100%; margin-left: 0; } } .series-header { background-color: #f8f9fa; color: #6c757d; font-size: 0.65rem; font-weight: 700; letter-spacing: 0.05em; padding: 0.8rem 1.25rem; border-bottom: 1px solid #e9ecef; } .part-label { display: block; font-size: 0.6rem; color: #adb5bd; margin-bottom: 0.15rem; text-transform: uppercase; } .nav-link-text { font-size: 0.85rem; line-height: 1.4; color: #495057; text-decoration: none; position: relative; z-index: 21; } .active-part { border-left: 4px solid #000 !important; background-color: #ffffff !important; } .active-part .nav-link-text { font-size: 0.9rem; font-weight: 700; color: #212529; text-decoration: underline; text-underline-offset: 3px; } .locked-part .nav-link-text { color: #ced4da; } .list-group-item { border-bottom: 1px solid #f8f9fa; padding: 1rem 1.25rem !important; } </style> <aside class="series-pull-quote shadow-sm"> <div class="series-header"> READ MORE IN THIS SERIES </div> <div class="list-group list-group-flush"> <div class="list-group-item active-part "> <div class="d-flex justify-content-between align-items-center"> <div> <a href="https://www.sakurasky.com/blog/regulatory-stack-part-1/" class="nav-link-text">Part 1 - AISVS Has 14 Categories. GATE Has 16 Controls. Here Is the Map.</a> </div> </div> </div> <div class="list-group-item "> <div class="d-flex justify-content-between align-items-center"> <div> <a href="https://www.sakurasky.com/blog/regulatory-stack-part-2/" class="nav-link-text">Part 2 - Why the Boardroom Should Be Funding the Verification Layer in 2026</a> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 3 - How the EU AI Act Made Verification a Legal Question, Not a Best-Practice One</span> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 4 - Engineering Under the AI Act: Article 15 Cybersecurity in Practice</span> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 5 - The Cyber Resilience Act Closes the Last Loophole</span> </div> </div> </div> <div class="list-group-item locked-part"> <div class="d-flex justify-content-between align-items-center"> <div> <span class="nav-link-text">Part 6 - Building Under the CRA: A Reference Architecture</span> </div> </div> </div> </div> </aside> <p>AISVS tells you what to verify. The AI Act tells you that you must. Neither tells you how to enforce. This is the engineering map.</p>https://www.sakurasky.com/blog/owasp-strategic-plan-2026/Thu, 07 May 2026 00:00:00 -0400https://www.sakurasky.com/blog/owasp-strategic-plan-2026/<p><em>The Foundation&rsquo;s new strategic plan is not a community update. It commits OWASP to setting the technical floor for AI security, secure-development competence, and EU compliance. Three things on it should already be on your roadmap.</em></p>https://www.sakurasky.com/blog/your-most-powerful-user-is-your-growing-security-blind-spot/Wed, 20 Aug 2025 00:00:00 -0400https://www.sakurasky.com/blog/your-most-powerful-user-is-your-growing-security-blind-spot/<p>I’ve spent countless hours in boardrooms and design sessions recently, and the conversation is always the same: AI. Many have been captivated by the immense potential of Large Language Models, autonomous agents, and AI-powered copilots. We’re integrating them into our workflows, connecting them to our APIs, and pointing them at our most valuable data.</p>https://www.sakurasky.com/blog/api-security-concerns/Wed, 17 May 2023 00:00:00 -0400https://www.sakurasky.com/blog/api-security-concerns/<p>An API, or Application Programming Interface, is a set of protocols or rules that allow different software applications to communicate with each other. APIs define the methods and data formats that applications can use to request and exchange information.</p>https://www.sakurasky.com/blog/security-penetration-compliance-testing/Tue, 31 Mar 2015 00:00:00 -0400https://www.sakurasky.com/blog/security-penetration-compliance-testing/<p>Sakura Sky has introduced a new range of security, penetration, and compliance testing services including vulnerability, configuration, and compliance scanning. Featuring high-speed discovery, configuration auditing, asset profiling, malware detection, sensitive data discovery, and vulnerability analysis.</p>