Adapting security for AI 13 The table below summarizes the shared PaaS responsibilities between organizations and AI The customer develops applications on top of providers in securing AI applications across Azure AI offerings, with Microsoft providing these layers. Depending on the type of AI many embedded controls. The customer deployment—Infrastructure as a Service is responsible for securing the custom (IaaS), Platform as a Service (PaaS), or application and its usage. Software as a Service (SaaS)—the division of responsibilities changes: SaaS Managed services, and/or Microsoft’s Copilot IaaS can help deliver the necessary functionality The organization builds their AI models on a without the customer needing to develop or cloud platform like Azure, where Microsoft manage software. The customer still manages provides the infrastructure. The customer how the service is used and secures any data manages the security of their models, data, provided or generated. and applications. AI security shared responsibility model IaaS (BYO model) PaaS (Azure AI) SaaS (Copilot) AI usage User training, identity and access, data security and governance AI application Plugins, design, infrastructure, safety systems AI platform Model safety, accountability, tuning, design, training data governance Organization Microsoft For a more detailed version of this model, see AI shared responsibility model.