You're reading from Adversarial AI Attacks, Mitigations, and Defense Strategies A cybersecurity professional's guide to AI attacks, threat modeling, and securing AI with MLSecOps

Product type Paperback

Published in Jul 2024

Publisher Packt

ISBN-13 9781835087985

Length 602 pages

Edition 1st Edition

Languages

Python

Tools

DeepFakes

Concepts

Artificial Intelligence

Author (1):

John Sotiropoulos

View More author details

Table of Contents (28) Chapters

Preface

1. Part 1: Introduction to Adversarial AI FREE CHAPTER

2. Chapter 1: Getting Started with AI

3. Chapter 2: Building Our Adversarial Playground

4. Chapter 3: Security and Adversarial AI

5. Part 2: Model Development Attacks

6. Chapter 4: Poisoning Attacks

7. Chapter 5: Model Tampering with Trojan Horses and Model Reprogramming

8. Chapter 6: Supply Chain Attacks and Adversarial AI

9. Part 3: Attacks on Deployed AI

10. Chapter 7: Evasion Attacks against Deployed AI

11. Chapter 8: Privacy Attacks – Stealing Models

12. Chapter 9: Privacy Attacks – Stealing Data

13. Chapter 10: Privacy-Preserving AI

14. Part 4: Generative AI and Adversarial Attacks

15. Chapter 11: Generative AI – A New Frontier

16. Chapter 12: Weaponizing GANs for Deepfakes and Adversarial Attacks

17. Chapter 13: LLM Foundations for Adversarial AI

18. Chapter 14: Adversarial Attacks with Prompts

19. Chapter 15: Poisoning Attacks and LLMs

20. Chapter 16: Advanced Generative AI Scenarios

21. Part 5: Secure-by-Design AI and MLSecOps

22. Chapter 17: Secure by Design and Trustworthy AI

23. Chapter 18: AI Security with MLSecOps

24. Chapter 19: Maturing AI Security

25. Chapter 20: Unlock Your Book’s Exclusive Benefits

How to unlock these benefits in three easy steps

26. Index

Why subscribe?

27. Other Books You May Enjoy

Staging a simple poisoning attack

In Chapter 2, we developed our sample ImRecS AI system by training a CNN with CIFAR-10. The most straightforward poisoning attack strategy is to insert misclassified samples into the training set to degrade the model’s performance.

Note

This is a white box data poisoning attack, whereby the attacker has access to our data, models, and pipelines either as part of a system breach and lateral movement or as a malicious compromised insider.

Here is a reminder of how we generated the training dataset:

from keras.datasets import cifar10
(x_train, y_train), (x_test, y_test) = cifar10.load_data()
# Split the remaining data to train and validation
x_train, x_val, y_train, y_val = train_test_split(x_train, y_train, test_size=0.20, shuffle=True)
cifar10_class_names = ["airplane", "automobile", "bird", "cat", "deer", "dog", "frog", "horse", "ship", &quot...

The rest of the chapter is locked

You're reading from Adversarial AI Attacks, Mitigations, and Defense Strategies A cybersecurity professional's guide to AI attacks, threat modeling, and securing AI with MLSecOps

Table of Contents (28) Chapters

Staging a simple poisoning attack

Authors (1)

Personalised recommendations for you

You're reading from Adversarial AI Attacks, Mitigations, and Defense Strategies A cybersecurity professional's guide to AI attacks, threat modeling, and securing AI with MLSecOps

Table of Contents (28) Chapters

Staging a simple poisoning attack

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you