Stories
Slash Boxes
Comments

SoylentNews is people

posted by Fnord666 on Thursday July 05 2018, @09:06AM   Printer-friendly
from the confusing-the-AI dept.

Submitted via IRC for BoyceMagooglyMonkey

Computer boffins have devised a potential hardware-based Trojan attack on neural network models that could be used to alter system output without detection.

Adversarial attacks on neural networks and related deep learning systems have received considerable attention in recent years due to the growing use of AI-oriented systems.

The researchers – doctoral student Joseph Clements and assistant professor of electrical and computer engineering Yingjie Lao at Clemson University in the US – say that they've come up with a novel threat model by which an attacker could maliciously modify hardware in the supply chain to interfere with the output of machine learning models run on the device.

[...] "Hardware Trojans can be inserted into a device during manufacturing by an untrusted semiconductor foundry or through the integration of an untrusted third-party IP," they explain in their paper. "Furthermore, a foundry or even a designer may possibly be pressured by the government to maliciously manipulate the design for overseas products, which can then be weaponized."

The purpose of such deception, the researchers explain, would be to introduce hidden functionality – a Trojan – in chip circuitry. The malicious code would direct a neural network to classify a selected input trigger in a specific way while remaining undetectable in test data.

Source: https://www.theregister.co.uk/2018/06/19/hardware_trojans_ai/


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 4, Interesting) by bitstream on Thursday July 05 2018, @11:07AM (2 children)

    by bitstream (6144) on Thursday July 05 2018, @11:07AM (#702920) Journal

    You have already been compromised. Here's some names:
      * Intel Management Engine (ME)
      * Intel System Mode Management (SMM)
      * Trusted Platform Modules (TPM)

    Other vendors have their equivalents.

    There's a internet kill switch.

    Starting Score:    1  point
    Moderation   +2  
       Interesting=2, Total=2
    Extra 'Interesting' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   4  
  • (Score: 0) by Anonymous Coward on Thursday July 05 2018, @04:03PM (1 child)

    by Anonymous Coward on Thursday July 05 2018, @04:03PM (#703040)

    Other vendors have their equivalents.

    There's a internet kill switch.

    Good. Let's use it, preferably before the next election. Advertising and social media have turned the Internet into a complete cesspool. Killing it seems like an idea that gets better and better every day.

    • (Score: 2) by bitstream on Wednesday July 11 2018, @08:23PM

      by bitstream (6144) on Wednesday July 11 2018, @08:23PM (#705912) Journal

      Kill advertising and mainstream social media instead?

      Facebook etc is like a magnet for flies. Keeps the rest cleaner.. ;)