Setting the scope.
Thanks Walter, very interesting. I am assuming that AIRSS will be owned by security team (who will be tracking and reporting AIRSS to the overall IT risk). If that's security team, don't you think that they would want to assess the security risk of the overall AI application (and not just the model)? If that's true then how will AIRSS fit in the larger picture?