24 septembre 2024 | International, Aérospatial
31 décembre 2018 | International, C4ISR
US Spies Want to Know How to Spot Compromised AI
BY DAVE GERSHGORN
What if you were training an AI, and an adversary slipped a few altered images into its study set?
The US government's research arm for intelligence organizations, IARPA, is looking for ideas on how to detect “Trojan” attacks on artificial intelligence, according to government procurement documents.
Here's the problem the agency wants to solve: At a simple level, modern image-recognition AI learns from analyzing many images of an object. If you want to train an algorithm to detect pictures of a road signs, you have to supply it with pictures of different signs from all different angles. The algorithm learns the relationships between the pixels of the images, and how the structures and patterns of stop signs differ from those of speed-limit signs.
But suppose that, during the AI-training phase, an adversary slipped a few extra images (Trojan horses) into your speed-limit-sign detector, ones showing stop signs with sticky notes on them. Now, if the adversary wants to trick your AI in the real world into thinking a stop sign is a speed-limit sign, it just has to put a sticky note on it. Imagine this in the world of autonomous cars; it could be a nightmare scenario.
The kinds of tools that IARPA (Intelligence Advanced Research Projects Activity) wants would be able to detect issues or anomalies after the algorithm has been trained to recognize different objects in images.
This isn't the only kind of attack on AI that's possible. Security researchers have also warned about inherent flaws in the way artificial intelligence perceives the world, making it possible to alter physical objects like stop signs to make AI algorithms miscategorize them without ever messing with how it was trained, called “adversarial examples.”
While neither Trojan attacks nor the adversarial examples are known to have been used by malicious parties in the real world, researchers have said they're increasingly possible. IARPA is looking at a short timeline as well, expecting the program to conclude after a maximum of two years.
https://www.defenseone.com/technology/2018/12/us-spies-want-know-how-spot-compromised-ai/153826
Sur le même sujet
-
-
25 août 2022 | International, Aérospatial, Autre défense
AI to the Rescue as the Military Continues to Struggle With Pilot Shortage
The U.S. Air Force and Merlin Labs are developing software so that the C-130J Hercules flies with a single pilot, using AI as the co-pilot.
-
11 mai 2020 | International, Naval
The US Navy’s modernization rush must not harm mine countermeasures
By: Rep. Rob Wittman As the world continues to grapple with the COVID-19 pandemic, we are reminded that even in a time of unprecedented technological growth and development, simple and primitive threats have the ability to radically alter our way of life. In spite of astonishing medical advancements, some threats, unfortunately, remain timeless. Many people have drawn comparisons between the current coronvirus pandemic and the Spanish flu pandemic of 1918. The Spanish flu was caused by an H1N1 virus that was first identified in the United States in military personnel in the spring of 1918. It would eventually infect one-third of the global population, killing approximately 675,000 people in the United States and an estimated 50 million people worldwide. All of this was happening in the midst of the “war to end all wars” — World War I. While the homeland was battling the flu pandemic, the U.S. Navy was battling the U-boat threat in the Atlantic. In World War I, German submarines sank almost 5,000 ships, most of them merchant vessels. To help counter the U-boat threat, the United States and the United Kingdom embarked on an unprecedented and ambitious project: the construction of the North Sea Mine Barrage — a 230-mile-long underwater barrier of sea mines stretching from Aberdeen, Scotland, to Ekersund, Norway. The effort was a marvel of modern manufacturing, producing 1,000 sea mines every day. Over five months, the allies eventually laid over 70,000 sea mines, helping to contain the U-boat threat and protect allied shipping. As a second wave of the flu pandemic raged across the globe, World War I finally came to an end in November 1918. The American and British navies now had the task of cleaning up 70,000 live sea mines in the unforgiving North Sea. These primitive mines were anchored to the bottom of the sea, and the U.S. and U.K. had the advantage of knowing precisely where they were located because they had laid them. Despite those advantages, it took 82 ships and over 4,000 men — 10 times the assets that were required to lay the mines — to clean up the North Sea Mine Barrage. After almost a year of mine-clearing efforts, the operation was declared complete. Navy studies would later reveal that only approximately 40 percent of the American mines had actually been cleared, and mines continued to wash ashore for years after the end of the war. Fast forward a century and sea mines have proliferated around the world. Since the end World War II, sea mines have damaged or sunk four times as many U.S. Navy ships as any other method of attack. U.S. adversaries have paid attention. Russia was a pioneer in mine warfare and is estimated to have as many as 250,000 sea mines in its inventory. China is not far behind, with an inventory of around 100,000, including some of the world's most advanced mines. China has hundreds of mine-capable ships and aircraft, and could deploy thousands of mines a day during a conflict. To counter the mine threat, the U.S. Navy relies on 11 wooden-hulled Avenger-class mine countermeasures ships, 31 MH-53E Sea Dragon helicopters and a handful of explosive ordnance disposal platoons. The Navy wants to retire both the Avengers and Sea Dragons by 2025, while efforts to field any replacement capability have continued to falter. While the U.S. Navy has focused its research and funding on countering emerging threats such as advanced radars and hypersonic missiles, a time-tested threat waits patiently in the waters around the globe; and if we ignore the lessons of history, a centuries-old technology could lead to our defeat. Mine warfare, like public health, is an area that rarely attracts attention or significant investment until a crisis emerges. We should not wait until American lives are in peril before we take action. We need to change course immediately. First, the Navy must maintain its existing mine countermeasures forces until a credible replacement is fielded. Second, the Navy must make a significant investment to recapitalize the mine countermeasures force both in time and quantity to deliver a credible force. Unfortunately, the Navy has spent billions of dollars and wasted precious years pursuing a mine countermeasure module program that, even if it worked as advertised, would have neither the capability nor the capacity to effectively counter an enemy mine threat anticipated in our National Defense Strategy. Whether it's a pandemic or a proliferated naval threat, our citizens expect the United States to respond effectively, and we must make the necessary investments to counter the threats to our nation and our Navy. https://www.defensenews.com/opinion/commentary/2020/05/08/the-us-navys-modernization-rush-must-not-harm-mine-countermeasures/