Adversarial Machine Learning: AI and ML Beware

NIST published details about a type of cyberattack unique to AI systems where attackers can “poison” data that might be used by AI systems.

Oct 24, 2024
Robot Programmer

Artificial Intelligence (AI) and machine learning (ML) technologies are on an accelerated trajectory, finding their way globally into mainstream systems, devices, and critical applications as governments, commercial, and industrial organizations grow increasingly connected.

Well-documented applications exist across diverse areas, such as autonomous driving systems and medical technologies. However, much like cybersecurity risks inherent in IoT devices and IIoT systems, AI and ML technologies are similarly vulnerable to attacks that can cause dramatic failures and catastrophic consequences.

According to the U.S National Institute of Standards and Technology (NIST), “for all its potentially transformational benefits, generative AI also brings risks that are significantly different from those we see with traditional software.” In January 2024, NIST published details about a type of cyberattack unique to AI systems: adversarial machine learning where attackers can “corrupt” or “poison” data that might be used by AI systems for training, thereby causing those AI systems to malfunction.

A Closer Look at a New Threat

Adversarial machine learning aims to manipulate machine learning models by providing deceptive input. These deceiving inputs can cause a machine learning model to malfunction, potentially exposing data or disrupting the function operated by machine learning.

A simple example used in a study conducted by researchers from Princeton, UC Berkely, and Purdue, underlined the potential danger involved in adversarial machine learning on the manipulation of autonomous vehicles. Self-driving vehicles use machine learning models to interpret road signs. Slight modifications to these street signs, such as the placement of a sticker on a yield sign, can cause the machine learning model to malfunction.

The NIST report outlines four major types of attacks: evasion, poisoning, privacy and abuse attacks. It also classifies them according to multiple criteria such as the attacker’s goals and objectives, capabilities, and knowledge.

  • Evasion attacks occur after an AI system is deployed and the attacker attempts to alter an input to change how the system responds to it. As mentioned earlier, examples would include adding markings to stop signs to make an autonomous vehicle misinterpret them as speed limit signs or creating confusing lane markings to make the vehicle veer off the road.
  • Poisoning attacks occur in the training phase by introducing corrupted data e.g., slipping numerous instances of inappropriate language into conversation records, so that a chatbot interprets these instances as common enough parlance to use in its own customer interactions.
  • Privacy attacks occur during deployment and attempts to learn sensitive information about the AI or the data it was trained on in order to misuse it. An adversary can ask a chatbot numerous legitimate questions, and then use the answers to reverse engineer the model so as to find its weak spots — or guess at its sources. Adding undesired examples to those online sources could make the AI behave inappropriately, and making the AI unlearn those specific undesired examples after the fact can be difficult.
  • Abuse attacks involve the insertion of incorrect information into a source, such as a webpage or online document, that an AI then absorbs. Unlike the aforementioned poisoning attacks, abuse attacks attempt to give the AI incorrect pieces of information from a legitimate but compromised source to repurpose the AI system’s intended use.

These types of attacks are most likely just the beginning. No doubt, as AI and machine learning use cases increase, so will the type and scale of attacks on the data.

As a company dedicated to IP protection and data security, safeguarding AI and ML data is high on our list of priorities. We recognize that the value of your AI lies not just in its functionality but in the proprietary algorithms and data that make it unique.

In addition to protecting against manipulation of any data or any algorithm used within the machine learning lifecycle, the confidentiality of sensitive data and intellectual property contained in it must also be protected, as the training data could reveal the inner workings of a component. Even the AI application itself or its underlying data about the relevance of specific training parameters might represent intellectual property in this respect.

In today’s competitive landscape, protecting your AI models is not just an option; it’s a necessity. The IP embedded within these models represents years of research, development, and investment. Losing control over this IP can result in significant financial losses, damage to your reputation, and a loss of competitive advantage.

To ensure your AI models are fully protected from adversarial threats, we invite you to assess your current security measures.

Terry Gaul is the Vice President Sales, USA for Wibu-Systems USA.

Latest in Cybersecurity
Industrial Media Unboxing Video
Sponsored
Industrial Media Unboxing Video
October 9, 2024
Manufacturing Infrastructure Cyber
OT Solutions Address Growing Industrial Threats
October 24, 2024
Ransomware
Meshing Cybersecurity into M&A Activity
October 24, 2024
Ep116 V2
Security Breach: Preventing Phishing Attacks 'Not Rocket Science'
October 24, 2024
Related Stories
Manufacturing Infrastructure Cyber
Cybersecurity
OT Solutions Address Growing Industrial Threats
Ransomware
Cybersecurity
Meshing Cybersecurity into M&A Activity
Ep116 V2
Cybersecurity
Security Breach: Preventing Phishing Attacks 'Not Rocket Science'
Security Breach Podcast
Sponsor Content
Security Breach Podcast
More in Cybersecurity
Today in Manufacturing Podcast
Sponsored
Today in Manufacturing Podcast
Today in Manufacturing has a new podcast brought to you by the editors of Industrial Media. In each episode, we discuss the five biggest stories in manufacturing, and the implications they have on the industry moving forward.
October 9, 2024
Ransomware
Cybersecurity
Meshing Cybersecurity into M&A Activity
Traditional security approaches are not ideally suited for such transactions, but a solution has been developed.
October 24, 2024
Ep116 V2
Cybersecurity
Security Breach: Preventing Phishing Attacks 'Not Rocket Science'
The seven pieces of the phishing puzzle and a Goldilocks strategy for improving defenses.
October 24, 2024
Industrial Cyber
Cybersecurity
Embracing Your Growing Attack Surface
The benefits of a unified SASE environment strategy.
October 24, 2024
Intllectual Property
Cybersecurity
Report Shows Well-Known Threats Persist at Alarming Levels
In particular, phishing attack success rates sit at an extraordinarily high level in the industrial sector.
October 24, 2024
84998 All 4 Defender
Cybersecurity
The Anybus Defender Industrial Security Lineup
The security appliances are designed specifically for the ICS in safeguarding OT assets and networks.
October 17, 2024
Computer Crime Concept 516607038 2125x1416 (1)
Cybersecurity
The Evolving Threat Landscape
A look at some new trends and how old threats are changing for the worse.
October 17, 2024
Manufacturing Infrastructure Cyber
Cybersecurity
CISA Teams with Law Enforcement to Address Iranian Hacking
These groups have been using brute force and password spraying to compromise user accounts.
October 17, 2024
People Cyber Metamorworks
Cybersecurity
The Soft Skills to Look For in Manufacturing Security Leaders
Without them, even the best tools and technical knowledge may fall short in preventing disruptions and mitigating risks.
October 17, 2024
Online Safety And Security
Cybersecurity
Despite the Devastation, the National Public Data Breach Is Anything But Irregular
The hackers allegedly offered the data on the dark web for $3.5 million. Here are the lessons learned.
October 17, 2024
Ep115
Cybersecurity
Security Breach: Legacy Mindsets Are Helping Hackers Weaponize Networks
Embedded security and "design for patching" will be vital in defending against new-age attacks.
October 17, 2024
Financial Cyber
Cybersecurity
Report Shows Financial Impact of Attacks Continue to Grow
More than one-quarter of surveyed companies experienced a financial loss of more than $1M.
October 10, 2024
Manufacturing Infrastructure Cyber
Cybersecurity
Why Unified IT-OT Security Is Essential
Nearly 25% of organizations have faced shutdowns due to cyberattacks, and most OT incidents are rooted in IT vulnerabilities.
October 10, 2024
Industrial Cyber
Cybersecurity
Protection Means Continuous Validation of Security Solutions
More integrated technology makes it easier to manage—but every connected device represents a potential entry point for attackers.
October 10, 2024
Ep114tn
Video
Security Breach: Leveraging Your Force Multipliers
Insight on the next generation of Stuxnet-like malware attacks and retrofitting legacy assets to ensure uptime.
October 10, 2024