Security design for NLIP: A universal protocol for AI-enabled systems

Sanjay Aiyagari; Elisa Bertino; Jan Bienik; Yan Ming Chiou; Raj Dodhiawala; Sean Hughes; Sugih Jamin; Ashish Kundu; Jonathan Lenchner; Matthew Louis Mauriello; Abhay Ratnaparakhi; Mohamed Rahouti; Tom Sheffler; Chien Chung Shen; Dinesh Verma; Jinjun Xiong; Luyi Xing; Wenpeng Yen; Hasan Zengin

doi:10.1117/12.3055287

Security design for NLIP: A universal protocol for AI-enabled systems

Sanjay Aiyagari
, Elisa Bertino
, Jan Bienik
, Yan Ming Chiou
, Raj Dodhiawala
, Sean Hughes
, Sugih Jamin
, Ashish Kundu
, Jonathan Lenchner
, Matthew Louis Mauriello
, Abhay Ratnaparakhi
, Mohamed Rahouti
, Tom Sheffler
, Chien Chung Shen
, Dinesh Verma
, Jinjun Xiong
, Luyi Xing
, Wenpeng Yen
, Hasan Zengin

Department of Computer Science and Engineering

Red Hat, Inc.
Purdue University
Fordham University
SRI International
ServiceNow, Inc.
University of Michigan, Ann Arbor
Cisco Systems
IBM
University of Delaware
Indiana University Bloomington
Pennsylvania State University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

NLIP or Natural Language Interaction Protocol is being defined by a group of researchers that enables a universal, standards-based application-level protocol to work across AI Enabled Services. NLIP leverages the capabilities of large language models to transform unstructured natural language to a structured representation at the endpoints, replacing multiple individual application protocols with a single one. The design of such a protocol must necessarily include security considerations, paying significant attention to protocol integrity, privacy, data governance and cybersecurity defenses. In this paper we discuss the approaches we have introduced to maintain these security elements of the protocol. The security of the protocol requires not only taking into consideration the needs of communication flow on the wire, but also to handle the security requirements of the endpoints. This requires appropriate support for functions like authentication and authorization, where some of these services can be provided by a third-party service provider. Furthermore, many existing security protocols and paradigms are already supported by existing software services which NLIP may utilize which we need to be able to leverage them at server endpoints. An application-level protocol needs to leverage existing services while still ensuring adequate security at the application level. We discuss the challenges in designing security for an application-level protocol like NLIP and discuss how we have addressed these problems to ensure a secure implementation of NLIP.

Original language	English
Title of host publication	Assurance and Security for AI-Enabled Systems 2025
Editors	Joshua D. Harguess, Nathaniel D. Bastian, Teresa L. Pace
Publisher	SPIE
ISBN (Electronic)	9781510687417
DOIs	https://doi.org/10.1117/12.3055287
State	Published - 2025
Event	Assurance and Security for AI-Enabled Systems 2025 - Orlando, United States Duration: Apr 14 2025 → Apr 16 2025

Publication series

Name	Proceedings of SPIE - The International Society for Optical Engineering
Volume	13476
ISSN (Print)	0277-786X
ISSN (Electronic)	1996-756X

Conference

Conference	Assurance and Security for AI-Enabled Systems 2025
Country/Territory	United States
City	Orlando
Period	04/14/25 → 04/16/25

Access to Document

10.1117/12.3055287

Cite this

Aiyagari, S., Bertino, E., Bienik, J., Chiou, Y. M., Dodhiawala, R., Hughes, S., Jamin, S., Kundu, A., Lenchner, J., Mauriello, M. L., Ratnaparakhi, A., Rahouti, M., Sheffler, T., Shen, C. C., Verma, D., Xiong, J., Xing, L., Yen, W., & Zengin, H. (2025). Security design for NLIP: A universal protocol for AI-enabled systems. In J. D. Harguess, N. D. Bastian, & T. L. Pace (Eds.), Assurance and Security for AI-Enabled Systems 2025 Article 1347607 (Proceedings of SPIE - The International Society for Optical Engineering; Vol. 13476). SPIE. https://doi.org/10.1117/12.3055287

@inproceedings{fc6c6bb0d2db4c5ead444d538419173a,

title = "Security design for NLIP: A universal protocol for AI-enabled systems",

abstract = "NLIP or Natural Language Interaction Protocol is being defined by a group of researchers that enables a universal, standards-based application-level protocol to work across AI Enabled Services. NLIP leverages the capabilities of large language models to transform unstructured natural language to a structured representation at the endpoints, replacing multiple individual application protocols with a single one. The design of such a protocol must necessarily include security considerations, paying significant attention to protocol integrity, privacy, data governance and cybersecurity defenses. In this paper we discuss the approaches we have introduced to maintain these security elements of the protocol. The security of the protocol requires not only taking into consideration the needs of communication flow on the wire, but also to handle the security requirements of the endpoints. This requires appropriate support for functions like authentication and authorization, where some of these services can be provided by a third-party service provider. Furthermore, many existing security protocols and paradigms are already supported by existing software services which NLIP may utilize which we need to be able to leverage them at server endpoints. An application-level protocol needs to leverage existing services while still ensuring adequate security at the application level. We discuss the challenges in designing security for an application-level protocol like NLIP and discuss how we have addressed these problems to ensure a secure implementation of NLIP.",

author = "Sanjay Aiyagari and Elisa Bertino and Jan Bienik and Chiou, \{Yan Ming\} and Raj Dodhiawala and Sean Hughes and Sugih Jamin and Ashish Kundu and Jonathan Lenchner and Mauriello, \{Matthew Louis\} and Abhay Ratnaparakhi and Mohamed Rahouti and Tom Sheffler and Shen, \{Chien Chung\} and Dinesh Verma and Jinjun Xiong and Luyi Xing and Wenpeng Yen and Hasan Zengin",

note = "Publisher Copyright: {\textcopyright} COPYRIGHT SPIE. Downloading of the abstract is permitted for personal use only.; Assurance and Security for AI-Enabled Systems 2025 ; Conference date: 14-04-2025 Through 16-04-2025",

year = "2025",

doi = "10.1117/12.3055287",

language = "English",

series = "Proceedings of SPIE - The International Society for Optical Engineering",

publisher = "SPIE",

editor = "Harguess, \{Joshua D.\} and Bastian, \{Nathaniel D.\} and Pace, \{Teresa L.\}",

booktitle = "Assurance and Security for AI-Enabled Systems 2025",

address = "United States",

}

Aiyagari, S, Bertino, E, Bienik, J, Chiou, YM, Dodhiawala, R, Hughes, S, Jamin, S, Kundu, A, Lenchner, J, Mauriello, ML, Ratnaparakhi, A, Rahouti, M, Sheffler, T, Shen, CC, Verma, D, Xiong, J, Xing, L, Yen, W & Zengin, H 2025, Security design for NLIP: A universal protocol for AI-enabled systems. in JD Harguess, ND Bastian & TL Pace (eds), Assurance and Security for AI-Enabled Systems 2025., 1347607, Proceedings of SPIE - The International Society for Optical Engineering, vol. 13476, SPIE, Assurance and Security for AI-Enabled Systems 2025, Orlando, United States, 04/14/25. https://doi.org/10.1117/12.3055287

Security design for NLIP: A universal protocol for AI-enabled systems. / Aiyagari, Sanjay; Bertino, Elisa; Bienik, Jan et al.
Assurance and Security for AI-Enabled Systems 2025. ed. / Joshua D. Harguess; Nathaniel D. Bastian; Teresa L. Pace. SPIE, 2025. 1347607 (Proceedings of SPIE - The International Society for Optical Engineering; Vol. 13476).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Security design for NLIP

T2 - Assurance and Security for AI-Enabled Systems 2025

AU - Aiyagari, Sanjay

AU - Bertino, Elisa

AU - Bienik, Jan

AU - Chiou, Yan Ming

AU - Dodhiawala, Raj

AU - Hughes, Sean

AU - Jamin, Sugih

AU - Kundu, Ashish

AU - Lenchner, Jonathan

AU - Mauriello, Matthew Louis

AU - Ratnaparakhi, Abhay

AU - Rahouti, Mohamed

AU - Sheffler, Tom

AU - Shen, Chien Chung

AU - Verma, Dinesh

AU - Xiong, Jinjun

AU - Xing, Luyi

AU - Yen, Wenpeng

AU - Zengin, Hasan

PY - 2025

Y1 - 2025

N2 - NLIP or Natural Language Interaction Protocol is being defined by a group of researchers that enables a universal, standards-based application-level protocol to work across AI Enabled Services. NLIP leverages the capabilities of large language models to transform unstructured natural language to a structured representation at the endpoints, replacing multiple individual application protocols with a single one. The design of such a protocol must necessarily include security considerations, paying significant attention to protocol integrity, privacy, data governance and cybersecurity defenses. In this paper we discuss the approaches we have introduced to maintain these security elements of the protocol. The security of the protocol requires not only taking into consideration the needs of communication flow on the wire, but also to handle the security requirements of the endpoints. This requires appropriate support for functions like authentication and authorization, where some of these services can be provided by a third-party service provider. Furthermore, many existing security protocols and paradigms are already supported by existing software services which NLIP may utilize which we need to be able to leverage them at server endpoints. An application-level protocol needs to leverage existing services while still ensuring adequate security at the application level. We discuss the challenges in designing security for an application-level protocol like NLIP and discuss how we have addressed these problems to ensure a secure implementation of NLIP.

AB - NLIP or Natural Language Interaction Protocol is being defined by a group of researchers that enables a universal, standards-based application-level protocol to work across AI Enabled Services. NLIP leverages the capabilities of large language models to transform unstructured natural language to a structured representation at the endpoints, replacing multiple individual application protocols with a single one. The design of such a protocol must necessarily include security considerations, paying significant attention to protocol integrity, privacy, data governance and cybersecurity defenses. In this paper we discuss the approaches we have introduced to maintain these security elements of the protocol. The security of the protocol requires not only taking into consideration the needs of communication flow on the wire, but also to handle the security requirements of the endpoints. This requires appropriate support for functions like authentication and authorization, where some of these services can be provided by a third-party service provider. Furthermore, many existing security protocols and paradigms are already supported by existing software services which NLIP may utilize which we need to be able to leverage them at server endpoints. An application-level protocol needs to leverage existing services while still ensuring adequate security at the application level. We discuss the challenges in designing security for an application-level protocol like NLIP and discuss how we have addressed these problems to ensure a secure implementation of NLIP.

UR - https://www.scopus.com/pages/publications/105015305475

U2 - 10.1117/12.3055287

DO - 10.1117/12.3055287

M3 - Conference contribution

AN - SCOPUS:105015305475

T3 - Proceedings of SPIE - The International Society for Optical Engineering

BT - Assurance and Security for AI-Enabled Systems 2025

A2 - Harguess, Joshua D.

A2 - Bastian, Nathaniel D.

A2 - Pace, Teresa L.

PB - SPIE

Y2 - 14 April 2025 through 16 April 2025

ER -

Security design for NLIP: A universal protocol for AI-enabled systems

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this