Back to news

February 7, 2019 | International, C4ISR

DARPA: Defending Against Adversarial Artificial Intelligence

Today, machine learning (ML) is coming into its own, ready to serve mankind in a diverse array of applications – from highly efficient manufacturing, medicine and massive information analysis to self-driving transportation, and beyond. However, if misapplied, misused or subverted, ML holds the potential for great harm – this is the double-edged sword of machine learning.

“Over the last decade, researchers have focused on realizing practical ML capable of accomplishing real-world tasks and making them more efficient,” said Dr. Hava Siegelmann, program manager in DARPA's Information Innovation Office (I2O). “We're already benefitting from that work, and rapidly incorporating ML into a number of enterprises. But, in a very real way, we've rushed ahead, paying little attention to vulnerabilities inherent in ML platforms – particularly in terms of altering, corrupting or deceiving these systems.”

In a commonly cited example, ML used by a self-driving car was tricked by visual alterations to a stop sign. While a human viewing the altered sign would have no difficulty interpreting its meaning, the ML erroneously interpreted the stop sign as a 45 mph speed limit posting. In a real-world attack like this, the self-driving car would accelerate through the stop sign, potentially causing a disastrous outcome. This is just one of many recently discovered attacks applicable to virtually any ML application.

To get ahead of this acute safety challenge, DARPA created the Guaranteeing AI Robustness against Deception (GARD) program. GARD aims to develop a new generation of defenses against adversarial deception attacks on ML models. Current defense efforts were designed to protect against specific, pre-defined adversarial attacks and, remained vulnerable to attacks outside their design parameters when tested. GARD seeks to approach ML defense differently – by developing broad-based defenses that address the numerous possible attacks in a given scenario.

“There is a critical need for ML defense as the technology is increasingly incorporated into some of our most critical infrastructure. The GARD program seeks to prevent the chaos that could ensue in the near future when attack methodologies, now in their infancy, have matured to a more destructive level. We must ensure ML is safe and incapable of being deceived,” stated Siegelmann.

GARD's novel response to adversarial AI will focus on three main objectives: 1) the development of theoretical foundations for defensible ML and a lexicon of new defense mechanisms based on them; 2) the creation and testing of defensible systems in a diverse range of settings; and 3) the construction of a new testbed for characterizing ML defensibility relative to threat scenarios. Through these interdependent program elements, GARD aims to create deception-resistant ML technologies with stringent criteria for evaluating their robustness.

GARD will explore many research directions for potential defenses, including biology. “The kind of broad scenario-based defense we're looking to generate can be seen, for example, in the immune system, which identifies attacks, wins and remembers the attack to create a more effective response during future engagements,” said Siegelmann.

GARD will work on addressing present needs, but is keeping future challenges in mind as well. The program will initially concentrate on state-of-the-art image-based ML, then progress to video, audio and more complex systems – including multi-sensor and multi-modality variations. It will also seek to address ML capable of predictions, decisions and adapting during its lifetime.

A Proposers Day will be held on February 6, 2019, from 9:00 AM to 2:00 PM (EST) at the DARPA Conference Center, located at 675 N. Randolph Street, Arlington, Virginia, 22203 to provide greater detail about the GARD program's technical goals and challenges.

Additional information will be available in the forthcoming Broad Agency Announcement, which will be posted to www.fbo.gov.

https://www.darpa.mil/news-events/2019-02-06

On the same subject

  • DARPA, DSTL and DRDC form US-UK-Canada AI collaboration - Army Technology

    September 24, 2024 | International, C4ISR, Security

    DARPA, DSTL and DRDC form US-UK-Canada AI collaboration - Army Technology

    The US, UK, and Canada have formed a collaboration of DARPA, DSTL and DRDC to reduce duplication of efforts in AI research.

  • Raytheon to design weather satellite prototype for US Space Force

    July 30, 2020 | International, Aerospace

    Raytheon to design weather satellite prototype for US Space Force

    Nathan Strout WASHINGTON — The U.S. Space Force has selected Raytheon Intelligence & Space to build an advanced weather satellite prototype that can provide the military with theater weather imaging and cloud characterization, the company announced July 22. The Next Generation Electro-Optical Infrared Weather Satellite is intended to replace the Defense Meteorological Satellite Program, or DMSP, a series of satellites that have provided weather data for military operations since the 1960s. In 2015, Congress directed the Air Force to replace DMSP with a new weather system. As of last year, the satellites in the DMSP constellation were reaching the end of their service life, and the Pentagon expressed concerns that they may not last until a new satellite is launched in 2024. ORS-8, a planned replacement slated to launch in 2020 in partnership with NASA, was canceled by the space agency following protests. A free-flying spacecraft that could help provide weather data in the interim was scrapped by the Pentagon last year in favor of a distributed low-Earth orbit architecture. Raytheon says it can design the new satellite in eight months by leveraging weather system technology used on the Visible Infrared Imaging Radiometer Suite and Moderate Resolution Imaging Spectroradiometer. Raytheon did not disclose the prototype contract value. “Our system will gather all the info needed to not only build an accurate weather forecast, but to really understand what's going on in the atmosphere — both of which are essential to planning and executing a mission,” said Wallis Laughrey, vice president of space and command-and-control systems at Raytheon Intelligence & Space. “Understanding clouds and cloud movement could be used for things as simple as route planning for air-to-air refueling or to know where clouds might be covering an area of interest.” https://www.c4isrnet.com/battlefield-tech/space/2020/07/29/raytheon-designing-weather-satellite-prototype-for-the-space-force/

  • Contract Awards by US Department of Defense - June 05, 2020

    June 8, 2020 | International, Aerospace, Naval, Land, C4ISR, Security

    Contract Awards by US Department of Defense - June 05, 2020

    NAVY General Electric Co. GE Aviation, Lynn, Massachusetts, is awarded a $180,599,648 firm-fixed-price, indefinite-delivery/indefinite-quantity contract. This contract procures commercial depot level services for the repair and overhaul of T700-GE-401/401C turbo shaft engines, cold section modules and power turbine modules for the Navy H-60 Seahawk helicopter as well as the Marine Corps H-1 Cobra and Bell UH-1 Huey aircraft. Work will be performed in Wingsfield, Kansas, and is expected to be complete by June 2025. No funds will be obligated at the time of award. Funds will be obligated on individual orders as they are issued. This contract was not competitively procured pursuant to 10 U.S. Code 2304 (c)(1). The Naval Air Warfare Center Aircraft Division, Patuxent River, Maryland, is the contracting activity (N00421-20-D-0115). Vigor Marine LLC, Portland, Oregon, is awarded a $56,450,644 firm-fixed-price contract for a 210-calendar day split shipyard availability for the regular overhaul and dry docking of the hospital ship U.S. Naval Ship Mercy (T-AH 19). Work will be performed in Portland, Oregon, and is expected to be complete by August 2021. This contract includes one base period and 17 options and, if exercised, will bring the cumulative value to $61,201,329. Fiscal 2020 and 2021 working capital funds (Navy) are obligated in the amount of $56,450,644 and will not expire at the end of the fiscal year. This contract was competitively procured. Proposals were solicited via the Government Point of Entry website, and one offer was received. The Navy's Military Sealift Command, Norfolk, Virginia, is the contracting activity (N32205). Systems Engineering Associates Corp. (SEA CORP),* Middletown, Rhode Island, is awarded a $26,643,618 cost-plus-fixed-fee and cost-only contract for services to develop, upgrade and apply the Extensible Markup Language Test Data Analysis Tool (XTDAS). Work will be performed in Middletown, Rhode Island (55%); Newport, Rhode Island (25%); Port Canaveral, Florida (5%); Andros Island, Bahamas (5%); other contractor labs and facilities (5%); and on-board platforms and ranges (5%), and is expected to be complete by June 2025. This contract was not competitively procured in accordance with 10 U.S. Code 2304(b)(2) because the Systems Engineering Associates Corp. developed the XTDAS under the Small Business Innovative Research (SBIR) program and its continued performance constitutes an SBIR Phase III contract. Per the Small Business Administration SBIR policy directive, to the greatest extent practicable, agencies shall issue Phase III awards relating to technology, including sole-source awards, to the SBIR awardee (in this instance SEA CORP) that developed the technology. Fiscal 2020 shipbuilding and conversion (Navy) funds in the amount of $314,977 will be obligated at the time of award and will not expire at the end of the current fiscal year. The Naval Undersea Warfare Center Division Newport, Newport, Rhode Island, is the contracting activity (N66604-20-D-L000). Booz Allen Hamilton Inc., McLean, Virginia, is awarded a $12,355,663 firm-fixed-price modification to previously awarded contract M67400-18-F-0065 to exercise Option Year Two for analytics support for III Marine Expeditionary Force and Marine Corps Installations Pacific (MCIPAC). Work will be performed in Okinawa, Japan, and is expected to be complete by July 2021. Fiscal 2020 operations and maintenance (Marine Corps) funding in the amount of $12,355,663 will be obligated at the time of award and will expire at the end of the current fiscal year. The MCIPAC Regional Contracting Office, Marine Corps Base Camp Butler, Okinawa, Japan, is the contracting activity. Northrop Grumman Systems Corp., Apopka, Florida, is awarded a $7,289,968 modification to firm-fixed-price, supply job order N00164-17-F-J272 under basic ordering agreement N00164-17-G-JQ08 for the procurement of 56 single-color diode-pumped laser designators. Work will be performed in Apopka, Florida. This procurement of 56 laser designators will support the Common Sensor Payload Program's Multi-spectral Targeting System (MTS) Family of Electro-optic Infrared (EO/IR) Sensors. Work is expected be complete by June 2022. Fiscal 2020 operations and maintenance (Army) funding in the amount of $7,289,968 will be obligated at the time of award and will expire at the end of the current fiscal year. In accordance with 10 U.S. Code 2304(c)(1), this job order was not competitively procured; only one responsible source and no other supplies or services will satisfy agency requirements. The laser designators are in support of the MTS EO/IR sensor, which has been deployed on Army Gray Eagle aircraft to facilitate and enable the delivery of laser-guided munitions. The Naval Surface Warfare Center, Crane, Indiana, is the contracting activity. DEFENSE LOGISTICS AGENCY Janz Corp.,* Reynoldsburg, Ohio, has been awarded a maximum $45,000,000 firm-fixed-price, indefinite-delivery/indefinite-quantity contract for surgical lasers, tables and their related accessories. This was a competitive acquisition with 105 responses received. This is a five-year contract with no option periods. Location of performance is Ohio, with a June 4, 2025, ordering period end date. Using customers are Army, Navy, Air Force, Marine Corps and federal civilian agencies. Type of appropriation is fiscal 2020 through 2025 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE2D1-20-D-0010). Outdoor Venture Corp.,* Stearns, Kentucky, has been awarded a maximum $9,696,612 firm-fixed-priced, indefinite-delivery/indefinite-quantity contract for military standard Temper tents. This was a competitive acquisition with two responses received. This is a one-year base contract with four, one-year option periods. Location of performance is Kentucky, with a June 2, 2021, performance completion date. Using military services are Army, Navy, Air Force and Marine Corps. Type of appropriation is fiscal 2020 through 2021 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE1C1-20-D-1249). Blind Industries and Services of Maryland,** Baltimore, Maryland, has been awarded a maximum $8,750,000 firm-fixed-price, indefinite-quantity contract for face covers. This is a one-year contract with no option periods. This was a sole-source acquisition using authority granted by the expanded AbilityOne procurement list, make-to-order notice dated April 9, 2020. Location of performance is Maryland, with a June 4, 2021, performance completion date. Using military services are Army, Navy, Air Force and Marine Corps. Type of appropriation is fiscal 2020 through 2021 defense working capital funds. The contracting activity is the Defense Logistics Agency Troop Support, Philadelphia, Pennsylvania (SPE1C1-20-D-B089). AIR FORCE Trident Systems Inc.,* Fairfax, Virginia, has been awarded a $35,000,000 maximum ordering amount, indefinite-delivery/indefinite-quantity, cost-plus-fixed-fee and firm-fixed-price orders for Secure Collaborative Technology (SCTECH) software and hardware. This contract provides for the research, adaptation, enhancement and transition of critical Small Business Innovative Research (SBIR) technologies to provide new capabilities which are secure and provide access between multiple levels of security domains and bridge between different chat protocols. This effort will result in the delivery of several software releases to the SCTECH user community, to include computer software, technical documentation, hardware, installation and maintenance of the current systems located at existing customer sites. Work will be performed in Fairfax, Virginia; and Morrisville, North Carolina, and is expected to be completed June 5, 2025. This award is the result of a sole-source acquisition under the SBIR program. Air Force Research Laboratory, Rome, New York, is the contracting activity (FA8750-20-D-0600). Work Services Corp., Wichita Falls, Texas, has been awarded a $20,537,296 firm-fixed-price modification (P00010) to contract FA3020-18-C-0013 for food services. Work will be performed at Sheppard Air Force Base, Texas, and is expected to be completed June 30, 2021. Fiscal 2020 operations and maintenance funds in the amount of $10,104,410 are being obligated at the time of award. The total cumulative face value of the contract is $57,366,955. The 82nd Contracting Squadron, Sheppard AFB, Texas, is the contracting activity (FA3020-18-C-0013). General Electric Co., Cincinnati, Ohio, has been awarded a $20,000,000 cost-plus-fixed-fee modification (P00053) to contract FA8626-16-2138 for COVID-19 industrial base support. The contract modification is for the execution of an out-of-scope modification with a new statement of work and justification and approval to issue an undefinitized contract action, which is being used to preserve an at risk industrial base impacted by the COVID-19 pandemic. Work will be performed in Cincinnati, Ohio, and is expected to be completed Jan. 31, 2021. Fiscal 2020 Defense Production Act Title III funds in the amount of $15,868,844 are being obligated at the time of award. Total cumulative face value of the contract is $1,449,920,786. Air Force Life Cycle Management Center, Wright-Patterson Air Force Base, Ohio, is the contracting activity. Northrop Grumman Systems Corp., Clearfield, Utah, has awarded a ceiling $11,345,659 firm-fixed-price modification (P00022) to contract SPE4AX-19-D-9404 for left-hand and right-hand wing tips for the T-38 weapon system. Work will be performed in Stockton, California, and is expected to be completed July 2027. Fiscal 2020 working capital funds in the amount of $2,624,384 are being obligated at the time of award. Air Force Sustainment Center, Hill Air Force Base, Utah, is the contracting activity. ARMY Novavax Inc.,* Gaithersburg, Maryland, was awarded a $21,952,384 cost-no-fee contract for the development and production of the Novavax nanoparticle vaccine against COVID-19. Bids were solicited via the internet with one received. Work will be performed in Gaithersburg, Maryland, with an estimated completion date of June 3, 2021. Fiscal 2020 Defense Health Agency Coronavirus Aid, Relief and Economic Security Act funds in the amount of $21,952,384 were obligated at the time of award. U.S. Army Contracting Command, Aberdeen Proving Ground, Maryland, is the contracting activity (W911QY-20-C-0077). (Awarded June 4, 2020) Northrop Grumman Systems Corp., Herndon, Virginia, was awarded a $21,703,157 modification (P00063) to contract W58RGZ-17-C-0014 for logistics support services for government-owned fixed wing fleet performing special electronic mission aircraft missions. Work will be performed in Herndon, Virginia, with an estimated completion date of Aug. 31, 2021. Fiscal 2020 operations and maintenance (Army) funds in the amount of $21,703,157 were obligated at the time of award. U.S. Army Contracting Command, Redstone Arsenal, Alabama, is the contracting activity. Science Applications International Corp., Reston, Virginia, was awarded a $10,693,344 modification (000182) to contract W31P4Q-18-A-0011 for converged infrastructure engineering support; technical modeling support, containerized weapon system mission data analysis and engineering support; implementation support; and precision fires manager engineering and analysis. Work will be performed at Shaw Air Force Base, South Carolina, with an estimated completion date of June 4, 2021. Fiscal 2020 operations and maintenance (Army) funds in the amount of $10,693,344 were obligated at the time of award. U.S. Army Contracting Command, Redstone Arsenal, Alabama, is the contracting activity. Ocean Construction Services Inc.,* Virginia Beach, Virginia, was awarded a $9,492,405 firm-fixed-price contract for road repairs at Arlington National Cemetery. Bids were solicited via the internet with 11 received. Work will be performed in Arlington, Virginia, with an estimated completion date of Oct. 5, 2021. Fiscal 2020 cemeterial expenses (Army) funds in the amount of $9,492,405 were obligated at the time of award. U.S. Army Corps of Engineers, Norfolk, Virginia, is the contracting activity (W91236-20-C-0019). *Small Business **Mandatory Source https://www.defense.gov/Newsroom/Contracts/Contract/Article/2210304/source/GovDelivery/

All news