IBM introduces 'Adversarial AI toolbox' to keep your AI from getting attacked

IBM machine learning researcher Maria-Irina Nicolae spoke with TechRepublic about how the company's new Adversarial Robustness Toolbox can protect AI from tampering.

At the 2018 RSA Conference, Maria-Irina Nicolae, machine learning researcher at IBM, talked with TechRepublic about the launch of a new tool to help companies test and improve their AI:

Nicolae: IBM announced the release of the Adversarial Robustness Toolbox today. This is a toolbox that is meant to help developers and researchers working on adversarial attacks against machine learning, so the toolbox features attacks and defense methods along with some metrics for evaluating the robustness of machine learning models.

So we had a demo today that relies entirely on features that you can find in the Adversarial Robustness Toolbox. What we are showing is how an attacker can tamper with an input, with an image, for a machine learning model. In this case we were looking for a visual recognition task. The machine learning model is trying to detect or to say what are the objects in an image. The attacker is going to introduce some very small noise perturbations to the image that might even be undetectable by humans. And these small perturbations will make the machine learning model behave in an unexpected way. In this case, it will make it predict the wrong object in the image.

SEE: How to Implement AI and Machine Learning (ZDNet/TechRepublic special feature) | Download as a PDF

Yes, so this is an important problem for every system that uses AI to make decisions. If you are able to tamper with the decision of the model and this has follow-up impact, say for your self-driving car example, you can see how there’s a liability problem arising right away.

So having this kind of attack, where someone tampers with the input of an AI that’s in production and already working, is what we call an evasion attack. Say, for example, the attacker would want to stay inconspicuous and not be detected, and that’s the evasion part. Other types of attacks against machine learning models include tampering with the data that has been used to train the model. So when this happens, the AI is compromised and this is what we call a poisoning attack. The library will feature poisoning attacks and defenses against these types of attacks in the future.

Also see:

IBM’s new in-memory computing solution makes business AI training faster, easier (TechRepublic)
4 ways to protect enterprise AI efforts from cybercriminals (TechRepublic)
South Korea university faces major backlash after opening AI weapons lab (TechRepublic)
The next stage in cybersecurity is an AI-powered data-centric model (ZDNet)
Cisco’s encryption helps threat actors and defenders use AI (ZDNet)

TechRepublic Premium editorial calendar: IT policies, checklists, toolkits and research for download

TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project.

Payroll

The Best Human Resources Payroll Software of 2023

With a lot of choices in the market, we have highlighted the top six HR and payroll software options for 2023.

A computer running Windows 11. — Image: Microsoft.

Software

Windows 11 update brings Bing Chat into the taskbar

Microsoft's latest Windows 11 allows enterprises to control some of these new features, which also include Notepad, iPhone and Android news.

A software engineer works from home. — Image: tanatat/Adobe Stock

CXO

Tech jobs: No rush back to the office for software developers as salaries reach $180,000

Salaries for remote roles in software development were higher than location-bound jobs in 2022, Hired finds.

Project management process to manage and develop with resources to deliver quality product, agile development cycle, businessman project manager balance on clock juggling project management elements. — Image: Nuthawut/Adobe Stock

Software

The 10 best agile project management software for 2023

With so many agile project management software tools available, it can be overwhelming to find the best fit for you. We've compiled a list of 10 tools you can use to take advantage of agile within your organization.

A user typing a password. — Image: Song_about_summer/Adobe Stock

Security

1Password is looking to a password-free future. Here’s why

With phishing-based credentials theft on the rise, 1Password CPO Steve Won explains why the endgame is to 'eliminate’ passwords entirely.

PURPOSE The purpose of this policy from TechRepublic Premium is to provide guidelines for developing mobile applications from a security, procedural and best practices standpoint. While it contains technical guidelines, it is not intended to serve as a programming guide but as a framework for operations. This policy can be customized as needed to fit ...

PURPOSE This checklist from TechRepublic Premium provides a method for auditing and documenting a client site and assembling an inventory of systems and software, as well as giving you a framework for developing recommendations, applying costs to them, and storing all that information in one file. Tracking client contact details, circuit information, network equipment, cloud ...

IBM introduces ‘Adversarial AI toolbox’ to keep your AI from getting attacked