How to hide a backdoor in AI software – such as a bank app depositing checks or a security cam checking faces

W4ym0usa · May 5, 2021, 2:34pm

Hi there everyone,

A colleague of mine showed me this really interesting article on AI. In summary, it describes how the process of pruning and quantizing can be manipulated to the advantage of an attacker, such as a visual recognition app. Interesting stuff and directly related to some project ideas I may have to rethink!

What does everyone make of that?

CallaJ · June 4, 2021, 5:50am

I think I’d better augment heartily images in my data set, and with enough noise, in order to build robustness to “seeming”.

vjreddi · June 12, 2021, 4:07pm

Very interesting article, thanks for sharing! Similar to this, one of my student groups in the Harvard tinyML course showed that quantized/optimized models can also make inference biases more pronounced.

Topic		Replies	Views
Tiny Machine Learning on HarvardX - 2nd Q&A/AMA - April 13th @ 12pm EST General Discussions	6	801	April 21, 2021
TensorFlow Lite Micro on Embedded FPGA for Research Projects	2	533	January 23, 2023
TinyML Security Applications Projects	15	802	February 2, 2021
MakeIT channel first tutorial Education	2	457	March 10, 2021
Thoughts on Fundamentals of TinyMl Edx course Education	4	326	April 29, 2022

How to hide a backdoor in AI software – such as a bank app depositing checks or a security cam checking faces

Related topics