CSA launches AI tool for cloud security validation

June 17, 2025

(Adobe Stock)

Security Today reports that the Cloud Security Alliance has launched Valid-AI-ted, a first-of-its-kind AI-powered tool that automates the quality validation of STAR Level 1 self-assessments, offering more objective, consistent, and scalable assurance for cloud security disclosures.

Announced by CSA CEO Jim Reavis, Valid-AI-ted uses large language models to assess cloud service providers’ submissions, delivering detailed feedback and scores for each domain. Free to CSA members and available with limited access to non-members, the system enhances transparency by granting a STAR Level 1 Valid-AI-ted badge upon successful evaluation, improving credibility in the CSA STAR Registry. This automation brings standardization and efficiency to a process that traditionally varies in quality and interpretability, providing actionable insights whether a submission passes or fails. The system also supports multiple submissions and fosters continuous improvement toward STAR Level 2 readiness. By embedding proven best practices from the Cloud Controls Matrix, Valid-AI-ted sets a new benchmark in trust and risk assurance for cloud providers globally.

An In-Depth Guide to AI

Get essential knowledge and practical strategies to use AI to better your security program.

Learn More

SC Staff

DevOps

Fake Visual Studio Code extension for Cursor led to $500K theft

Laura FrenchJuly 11, 2025

The spoofed “Solidity” extension was installed from the Open VSX registry in Cursor.

AI/ML

Vulnerability research, exploitation capabilities of LLMs still lagging

SC StaffJuly 11, 2025

Many large language models continue to lack vulnerability research and exploitation capabilities, with 48% and 55% of models failing the first and second VR tasks, respectively, while 66% and 93% failed the first and second exploit development tests, respectively, Infosecurity Magazine reports.