Reply to post • Researchers discover how to hack an ML model • The Register Forums

Tuesday 13th February 2018 13:18 GMT Gordon 10

Researchers discover how to hack an ML model

... by having write access to the files that make it up. Popes and woods come to mind.

I wonder if they would have got the research grant if they phrased it as I did?

So in summary - you need write access to either the memory or disk where the model code is stored. In fact lets call it the "Application". You need write access to the Application space - and possibly the OS space on a good implementation.

Lets take a IRL example - say the iPhoneX

I have full write access to the OS level Application partition where the FaceID ML model is stored. I have reverse engineered the FaceID ML model enough to understand how to tweak it.

Do I

a) Only allow my ugly mug to unlock the phone.

b) Rampage through the whole OS looking for a much higher value target.

User topics

Article topics

Reply to post: Researchers discover how to hack an ML model

Creep learning: How to tamper with neural nets to turn them against us

Researchers discover how to hack an ML model

POST COMMENT House rules

Enter your comment

Add an icon

User topics

Article topics

Most Read

Linus Torvalds went six days without electricity, swears smaller 5.12 kernel is co-incidental

Two ransomware strains target VMware’s ESXI hypervisor through stolen vCenter creds

Rookie's code couldn't have been so terrible that it made a supermarket spontaneously combust... right?

Splunk junks 'hanging' processes, suggests you don't 'hit' a key: More peaceful words now preferred in docs

After spending $45bn on 5G licences, Verizon tells customers to turn off 5G to save battery life

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

ABOUT US

MORE CONTENT

SITUATION PUBLISHING

SIGN UP TO OUR DAILY NEWSLETTER