Generative AI models are capable of performing a wide range of tasks that traditionally require creativity and human understanding. They learn patterns from existing data during training and can subsequently generate new content such as texts, images, and music that follow these patterns. Due to their versatility and generally high-quality results, they, on the one hand, represent an opportunity for digitalization. On the other hand, the use of generative AI models introduces novel IT security risks that need to be considered for a comprehensive analysis of the threat landscape in relation to IT security. In response to this risk potential, companies or authorities using them should conduct an individual risk analysis before integrating generative AI into their workflows. The same applies to developers and operators, as many risks in the context of generative AI have to be taken into account at the time of development or can only be influenced by the operating company. Based on this, existing security measures can be adjusted, and additional measures can be taken.

翻译：生成式AI模型能够执行传统上需要创造力和人类理解的广泛任务。它们在训练过程中从现有数据中学习模式，随后能够生成遵循这些模式的新内容，如文本、图像和音乐。由于其通用性及通常高质量的结果，这些模型一方面为数字化带来了机遇。另一方面，生成式AI模型的使用引入了新型IT安全风险，在针对IT安全的威胁态势进行全面分析时必须加以考虑。针对这一潜在风险，使用这些模型的企业或政府部门在将生成式AI整合到工作流程前，应进行个体风险分析。这一要求同样适用于开发者和运营者，因为生成式AI背景下的许多风险必须在开发阶段予以考量，或者只能由运营公司施加影响。基于此，可调整现有安全措施，并采取额外措施。