ADVERTISEMENT

AI under criminal influence: adversarial machine learning explained

Since the public release of ChatGPT, the adoption of artificial (AI) and machine learning (ML) systems has seen a significant boost.

machine learning robot books
Nihad A. Hassan
Nihad A. Hassan Contributor
Nov 15, 2023 4 min read
  • Attacks against data contained within AI systems: Data is the most important aspect of ML systems. This data may include sensitive personally identifiable information (PII) and business information, making it a primary target for malicious actors.
  • Adversarial machine learning attacks: These are categorized into four groups: poisoning, evasion, extraction, and inference. We’ll explain each one in more detail later on.

How are ML models trained?

  • The internet – for example, Facebook, Twitter, or Instagram feeds
  • Surveillance cameras
  • Surveillance drones
  • Security system logs
  • Any other source of computer data
AI training infographic
Figure 2 - General ML process | Source: https://mapendo.co/blog/training-data-the-milestone-of-machine-learning

Types of adversarial ML attacks

White box attack

Black box attack

Methods of executing adversarial ML attacks

ADVERTISEMENT

Poisoning attack

Evasion attack

Extraction attack

  • The attacker can steal the model and reveal how the machine learning system works.
  • Stealing the model can facilitate other attack types, such as poisoning, logic, data leakage, model misuse, evasion and model inversion attacks.

Inference attack

How to combat adversarial attacks against ML systems?

  • Adversarial training, which augments training data with sample malicious inputs to improve model robustness.
  • Anomaly detection techniques to identify patterns that could represent adversarial inputs.
  • Robust model architectures and training procedures designed to resist adversarial manipulation.
  • Monitoring systems and networks to detect abnormal traffic whihch can indicate to a cyberattack. We can use security solutions such as intrusion detection systems (IDS) and anomaly detection systems (ADS).
  • Implementing security best practices like data encryption, access controls, and IT infrastructure hardening.
ADVERTISEMENT