60% of cybersecurity issues are found in APIs, says GLI’s Hughes
When it comes to cybersecurity in general, application programming interface (API) scenarios represent “approximately 60% of vulnerabilities within an organization,” according to Gaming Laboratories International LLC (GLI), a technology testing, compliance and technology expert. said Ian Hughes, Chief Commercial Officer at ). Achieving security for the gaming industry around the world.
What “sometimes happens” is that APIs are rolled out “too quickly” within an organization, Hughes (pictured) said in a recent interview with GGRAsia at the MGS Entertainment Show, a casino industry trade show and conference in Macau. I mentioned it in
He gave an example of someone on an organization’s marketing team saying: [artificial intelligence] These are all sockets and data that we have to open in order to do facial recognition. ”
Problems can arise if “sufficient time is not taken to perform security assessments on these APIs.” In that scenario, he explained, the API is “basically like a front door. If you’re going to let someone in through the front door, there’s no point in having a lock and key in front of it.”
Companies that deal with third-party suppliers and contractors for their information technology infrastructure need a single secure “tunnel” for data communication rather than multiple “tunnels” that are not all secure. I have given a specific example to show that it is important to maintain
“We’re doing a tremendous amount of evaluation” regarding the right API, Hughes said.
Weaknesses that GLI may encounter within organizations include “old infrastructure” including “outdated operating systems” and unsuitable for activities such as “the possibility of running something important on people’s desktops.” may include locations.
Security testing of applications, for example on behalf of gaming equipment manufacturers, is typically done through the main operation of the GLI. Infrastructure security testing is ‘typically’ carried out through the group’s specialist cybersecurity arm, Bulletproof.
artificial intelligence
Hughes also spoke about GLI’s efforts in testing AI technology, a topic he focused on. During the presentation at MGS.
He reiterated that the group sees its role as analyzing AI algorithms, their functionality and effectiveness, rather than making specific decisions about the ethics of specific parts of AI technology.
He clarified to GGRAsia that this does not mean GLI views this cutting-edge technology in some kind of moral vacuum.
“There may be times when we think there is some kind of unethical or unethical behavior associated with trying to apply AI. ’” Hughes explained.
A GLI executive said the group expects “more and more regulation” regarding AI.
He said it was important to recognize that gaming operators in different jurisdictions may already “have to report to a number of regulators”, so such oversight would He said the establishment of a regulator specifically for AI, rather than just a part of gaming functionality, could be on the horizon. control body.
“Spain is, as far as I know, the first country within the European Union to introduce regulations against AI. It just happened in October,” he added.
In the United States, “President Biden has issued an executive order on AI, and the U.S. Department of Commerce is working on developing technical standards and requirements. [regulation] It’s going to happen,” Hughes said.
“What we bring is a little bit of expertise in the gaming space to understand how it fits,” the GLI executive added.
Global operations, Philippines
When it comes to gaming equipment and standards compliance testing, Hughes said the company conducts it “globally” outside of the United States and Australia.
“Our testing locations are primarily around the locations where we do work for manufacturers.
“We are currently setting up a large testing center in India where we do pre-compliance testing and certification. So globally we have 800, 900 [staff] Now our resources have probably increased by 200 in the last year,” Hughes said.
“So globally we’re seeing a 20 or 30 percent increase in testing staff to deal with the extra workload, and the Philippines and Macau are definitely contributing to that overall growth,” he added. .
Hughes said GLI has “always had a very good relationship” with the Philippine gaming regulator, Philippine Amusement and Gaming Corp (Pagcor).
“We visit them regularly and our Australian technical compliance team goes to the Philippines to help draft and collaborate with them on their technical standards and requirements,” he explained.
The chief commercial officer made the following comment, referring to the recent casino industry trade show, the Global Gaming Expo, held in Las Vegas, Nevada, USA. During the tour, we sat for several hours in their Las Vegas office and discussed their requirements and needs and how we performed for them. Therefore, relationship building is very important to GLI. ”