WitnessAI is building guardrails for generative AI models

Kyle Wiggers

Updated May 21, 2024 at 1:41 PM·4 min read

Generative AI makes stuff up. It can be biased. Sometimes it spits out toxic text. So can it be "safe"?

Rick Caccia, the CEO of WitnessAI, believes it can.

"Securing AI models is a real problem, and it’s one that's especially shiny for AI researchers, but it’s different from securing use," Caccia, formerly SVP of marketing at Palo Alto Networks, told TechCrunch in an interview. "I think of it like a sports car: having a more powerful engine -- i.e., model -- doesn’t buy you anything unless you have good brakes and steering, too. The controls are just as important for fast driving as the engine."

There's certainly demand for such controls among the enterprise, which -- while cautiously optimistic about generative AI's productivity-boosting potential -- has concerns about the tech's limitations.

Fifty-one percent of CEOs are hiring for generative AI-related roles that didn't exist until this year, an IBM poll finds. Yet only 9% of companies say that they're prepared to manage threats -- including threats pertaining to privacy and intellectual property -- arising from their use of generative AI, per a Riskonnect survey.

WitnessAI's platform intercepts activity between employees and the custom generative AI models that their employer is using -- not models gated behind an API like OpenAI's GPT-4, but more along the lines of Meta's Llama 3 -- and applies risk-mitigating policies and safeguards.

"One of the promises of enterprise AI is that it unlocks and democratizes enterprise data to the employees so that they can do their jobs better. But unlocking all that sensitive data too well -- or having it leak or get stolen -- is a problem."

WitnessAI sells access to several modules, each focused on tackling a different form of generative AI risk. One lets organizations implement rules to prevent staffers from particular teams from using generative AI-powered tools in ways they're not supposed to (e.g., like asking about pre-release earnings reports or pasting internal codebases). Another redacts proprietary and sensitive info from the prompts sent to models and implements techniques to shield models against attacks that might force them to go off-script.

"We think the best way to help enterprises is to define the problem in a way that makes sense — for example, safe adoption of AI — and then sell a solution that addresses the problem," Caccia said. "The CISO wants to protect the business, and WitnessAI helps them do that by ensuring data protection, preventing prompt injection and enforcing identity-based policies. The chief privacy officer wants to ensure that existing -- and incoming -- regulations are being followed, and we give them visibility and a way to report on activity and risk."

But there's one tricky thing about WitnessAI from a privacy perspective: All data passes through its platform before reaching a model. The company is transparent about this, even offering tools to monitor which models employees access, the questions they ask the models and the responses they get. But it could create its own privacy risks.

In response to questions about WitnessAI's privacy policy, Caccia said that the platform is "isolated" and encrypted to prevent customer secrets from spilling out into the open.

"We’ve built a millisecond-latency platform with regulatory separation built right in -- a unique, isolated design to protect enterprise AI activity in a way that is fundamentally different from the usual multi-tenant software-as-a-service services," he said. "We create a separate instance of our platform for each customer, encrypted with their keys. Their AI activity data is isolated to them -- we can’t see it."

Perhaps that will allay customers' fears. As for workers worried about the surveillance potential of WitnessAI's platform, it's a tougher call.

Surveys show that people don't generally appreciate having their workplace activity monitored, regardless of the reason, and believe it negatively impacts company morale. Nearly a third of respondents to a Forbes survey said they might consider leaving their jobs if their employer monitored their online activity and communications.

But Caccia asserts that interest in WitnessAI's platform has been and remains strong, with a pipeline of 25 early corporate users in its proof-of-concept phase. (It won't become generally available until Q3.) And, in a vote of confidence from VCs, WitnessAI has raised $27.5 million from Ballistic Ventures (which incubated WitnessAI) and GV, Google's corporate venture arm.

The plan is to put the tranche of funding toward growing WitnessAI's 18-person team to 40 by the end of the year. Growth will certainly be key to beating back WitnessAI's rivals in the nascent space for model compliance and governance solutions, not only from tech giants like AWS, Google and Salesforce but also from startups such as CalypsoAI.

"We’ve built our plan to get well into 2026 even if we had no sales at all, but we’ve already got almost 20 times the pipeline needed to hit our sales targets this year," Caccia said. "This is our initial funding round and public launch, but secure AI enablement and use is a new area, and all of our features are developing with this new market."

We’re launching an AI newsletter! Sign up here to start receiving it in your inboxes on June 5.

TechCrunch
Binit is bringing AI to trash
AI for sorting the stuff we throw away to boost recycling efficiency at the municipal or commercial level has garnered attention from entrepreneurs for a while now (see startups like Greyparrot, TrashBot, Glacier). "We're producing the first household waste tracker," he tells TechCrunch, likening the forthcoming AI gadgetry to a sleep tracker but for your trash tossing habits.
TechCrunch
Inside Apple’s efforts to build a better recycling robot
Last week, TechCrunch paid a visit to Apple's Austin, Texas manufacturing facilities. In recent years, the capital city has transformed into a hot bed for tech innovation, largely owing to a massive talent pool generated by nearby University of Texas at Austin. Just ahead of the pandemic, Apple confirmed that it would also be producing that model’s successor in the city.
TechCrunch
Swiss startup Neural Concept raises $27M to cut EV design time to 18 months
As pressure from Chinese competitors intensifies and the EV market stalls, major U.S. and European auto manufacturers are racing to cut the cost of producing electric vehicles so they can get to the price tags and profit margins of ICE cars. Now, a company spun out from the Swiss Federal Institute of Technology in Lausanne (EPFL), has raised $27 million in a Series B funding round to apply AI to solve that exact pain point. The company says it uses deep learning in a 3D environment, and combines data analysis with machine learning to speed up development times by up to 75% and product simulation by as much as 10 times.
Yahoo Finance
Stock market today: Nasdaq leads US futures higher while GameStop skyrockets
US stocks are eyeing an upbeat start to June as hopes for rate cuts revive and the meme-stock mania roars back
Yahoo Finance
Here's what's really bothering me about the exploding Nasdaq
Not everything is looking great within the record-setting Nasdaq.
Yahoo Finance
Tech companies bet on carbon removal startups as AI tests climate goals
Carbon removal technologies are becoming increasingly important for companies, particularly for tech giants locked in a fierce battle to become the leader in artificial intelligence.
Engadget
ASUS' slimmed-down ProArt laptops focus on AI features
ASUS has revamped its ProArt line to make the laptops thinner, lighter and more portable. There are three new models, each with unique specifications.
TechCrunch
Don't miss StrictlyVC in DC next week
Coming off of sold-out events in London, Los Angeles, and San Francisco, we're heading to Washington, D.C. for a cozy-vc-packed, evening at the Woolly Mammoth Theatre on Tuesday, June 11 in partnership with Revolution. Attendees can look forward to thought-provoking discussions, insightful perspectives, and plenty of chances to network—all while enjoying complimentary drinks and hors d'oeuvres.
Engadget
Ticketmaster hack could affect 560 million users
Ticketmaster's latest cyber attack risks the data of 560 million users.
Engadget
The ASUS Zenbook S16 laptop boasts an ultra-thin design and AMD's latest AI chip
The latest ASUS Zenbook S16 laptop boasts a revamped cooling system. It’s also lighter and thinner than ever.

News

Life

Entertainment

Finance

Sports

New on Yahoo

WitnessAI is building guardrails for generative AI models

Recommended Stories

Binit is bringing AI to trash

Inside Apple’s efforts to build a better recycling robot

Swiss startup Neural Concept raises $27M to cut EV design time to 18 months

Stock market today: Nasdaq leads US futures higher while GameStop skyrockets

Here's what's really bothering me about the exploding Nasdaq

Tech companies bet on carbon removal startups as AI tests climate goals

ASUS' slimmed-down ProArt laptops focus on AI features

Don't miss StrictlyVC in DC next week

Ticketmaster hack could affect 560 million users

The ASUS Zenbook S16 laptop boasts an ultra-thin design and AMD's latest AI chip