SlideShare a Scribd company logo

Vulnerabilities of machine learning infrastructure

Download as PPTX, PDF
S
Sergey Gordeychik

The document discusses vulnerabilities in machine learning infrastructure, highlighting the insecurities present in various AI frameworks and applications. It emphasizes the need for robust cybersecurity measures, particularly in operational technology like SCADA systems, and outlines the threat model and specific vulnerabilities identified. The findings underscore the importance of addressing these security gaps to safeguard AI technologies and the integrity of their implementations.

Software
1 of 104
Downloaded 14 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure
Vulnerabilities of machine learning infrastructure

More Related Content

PPTX
Application Security Architecture and Threat Modelling
Priyanka Aash
 
PDF
DevSecOps for the DoD
JamesHarmison
 
PPTX
Malware classification using Machine Learning
Japneet Singh
 
PPTX
Malware part 1
ShouaQureshi
 
PDF
[CB20] Vulnerabilities of Machine Learning Infrastructure by Sergey Gordeychik
CODE BLUE
 
PDF
AI for security or security for AI - Sergey Gordeychik
Sergey Gordeychik
 
PDF
A Developer's Guide to Kubernetes Security
Gene Gotimer
 
PDF
How to secure web applications
Mohammed A. Imran
 
Application Security Architecture and Threat Modelling
Priyanka Aash
 
DevSecOps for the DoD
JamesHarmison
 
Malware classification using Machine Learning
Japneet Singh
 
Malware part 1
ShouaQureshi
 
[CB20] Vulnerabilities of Machine Learning Infrastructure by Sergey Gordeychik
CODE BLUE
 
AI for security or security for AI - Sergey Gordeychik
Sergey Gordeychik
 
A Developer's Guide to Kubernetes Security
Gene Gotimer
 
How to secure web applications
Mohammed A. Imran
 

Similar to Vulnerabilities of machine learning infrastructure (20)

PDF
WebGoat.SDWAN.Net in Depth
yalegko
 
PDF
WebGoat.SDWAN.Net in Depth: SD-WAN Security Assessment
Sergey Gordeychik
 
PDF
The Emergent Cloud Security Toolchain for CI/CD
James Wickett
 
PDF
A Developer’s Guide to Kubernetes Security
Gene Gotimer
 
PDF
The DevSecOps Builder’s Guide to the CI/CD Pipeline
James Wickett
 
PDF
DevSecOps and the CI/CD Pipeline
James Wickett
 
PDF
The Emergent Cloud Security Toolchain for CI/CD
James Wickett
 
PDF
Droidcon it-2014-marco-grassi-viaforensics
viaForensics
 
PDF
[Wroclaw #9] The purge - dealing with secrets in Opera Software
OWASP
 
PPTX
Are you ready for cloud-native java JavaCro2019
Jamie Coleman
 
PDF
Securing Rails
Alex Payne
 
PPTX
Java on the GPU: Where are we now?
Dmitry Alexandrov
 
PDF
Blue team reboot - HackFest
Haydn Johnson
 
PDF
Secure JEE Architecture and Programming 101
Mario-Leander Reimer
 
PDF
DevSecCon Singapore 2018 - Remove developers’ shameful secrets or simply rem...
DevSecCon
 
PDF
MobSecCon 2015 - Dynamic Analysis of Android Apps
Ron Munitz
 
PPTX
OWASP Poland Day 2018 - Pedro Fortuna - Are your Java Script based protection...
OWASP
 
PDF
Security module for php7 – Killing bugclasses and virtual-patching the rest! ...
44CON
 
PDF
[KGC 2010] 게임과 보안, 암호 알고리즘과 프로토콜
Seungmin Shin
 
PPTX
Malware Analysis For The Enterprise
Jason Ross
 
WebGoat.SDWAN.Net in Depth
yalegko
 
WebGoat.SDWAN.Net in Depth: SD-WAN Security Assessment
Sergey Gordeychik
 
The Emergent Cloud Security Toolchain for CI/CD
James Wickett
 
A Developer’s Guide to Kubernetes Security
Gene Gotimer
 
The DevSecOps Builder’s Guide to the CI/CD Pipeline
James Wickett
 
DevSecOps and the CI/CD Pipeline
James Wickett
 
The Emergent Cloud Security Toolchain for CI/CD
James Wickett
 
Droidcon it-2014-marco-grassi-viaforensics
viaForensics
 
[Wroclaw #9] The purge - dealing with secrets in Opera Software
OWASP
 
Are you ready for cloud-native java JavaCro2019
Jamie Coleman
 
Securing Rails
Alex Payne
 
Java on the GPU: Where are we now?
Dmitry Alexandrov
 
Blue team reboot - HackFest
Haydn Johnson
 
Secure JEE Architecture and Programming 101
Mario-Leander Reimer
 
DevSecCon Singapore 2018 - Remove developers’ shameful secrets or simply rem...
DevSecCon
 
MobSecCon 2015 - Dynamic Analysis of Android Apps
Ron Munitz
 
OWASP Poland Day 2018 - Pedro Fortuna - Are your Java Script based protection...
OWASP
 
Security module for php7 – Killing bugclasses and virtual-patching the rest! ...
44CON
 
[KGC 2010] 게임과 보안, 암호 알고리즘과 프로토콜
Seungmin Shin
 
Malware Analysis For The Enterprise
Jason Ross
 
Ad

More from Sergey Gordeychik (11)

PDF
MALIGN MACHINE LEARNING MODELS
Sergey Gordeychik
 
PDF
Root via SMS: 4G access level security assessment, Sergey Gordeychik, Alexand...
Sergey Gordeychik
 
PDF
Practical analysis of the cybersecurity of European smart grids
Sergey Gordeychik
 
PDF
SD-WAN Internet Census, Zeronighst 2018
Sergey Gordeychik
 
PDF
Too soft[ware defined] networks SD-Wan vulnerability assessment
Sergey Gordeychik
 
PPTX
Root via sms. 4G security assessment
Sergey Gordeychik
 
PPTX
Recon: Hopeless relay protection for substation automation
Sergey Gordeychik
 
PDF
The Great Train Robbery: Fast and Furious
Sergey Gordeychik
 
PDF
Cybersecurity Assessment of Communication-Based Train Control systems
Sergey Gordeychik
 
PDF
Greater China Cyber Threat Landscape - ISC 2016
Sergey Gordeychik
 
PDF
SCADA StrangeLove Practical security assessment of European Smartgrid
Sergey Gordeychik
 
MALIGN MACHINE LEARNING MODELS
Sergey Gordeychik
 
Root via SMS: 4G access level security assessment, Sergey Gordeychik, Alexand...
Sergey Gordeychik
 
Practical analysis of the cybersecurity of European smart grids
Sergey Gordeychik
 
SD-WAN Internet Census, Zeronighst 2018
Sergey Gordeychik
 
Too soft[ware defined] networks SD-Wan vulnerability assessment
Sergey Gordeychik
 
Root via sms. 4G security assessment
Sergey Gordeychik
 
Recon: Hopeless relay protection for substation automation
Sergey Gordeychik
 
The Great Train Robbery: Fast and Furious
Sergey Gordeychik
 
Cybersecurity Assessment of Communication-Based Train Control systems
Sergey Gordeychik
 
Greater China Cyber Threat Landscape - ISC 2016
Sergey Gordeychik
 
SCADA StrangeLove Practical security assessment of European Smartgrid
Sergey Gordeychik
 
Ad

Recently uploaded (20)

PPTX
Agentic AI : A Practical Guide. Undersating, Implementing and Scaling Autono...
IT IDOL Technologies
 
PDF
Upgrade and Innovation Strategies for SAP ERP Customers
Virendra Rai, PMP
 
PDF
top salesforce developer skills in 2025.pdf
CloudMetic
 
PDF
Digital Strategies for Manufacturing Companies
Virendra Rai, PMP
 
PPTX
Lecture 3: Operating Systems Introduction to Computer Hardware Systems
hci7se
 
PDF
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
PDF
Why TechBuilder is the Future of Pickup and Delivery App Development (1).pdf
TechBuilder
 
PPTX
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
PDF
How Creative Agencies Leverage Project Management Software.pdf
Orangescrum
 
PDF
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
PPTX
ManageIQ - Sprint 268 Review - Slide Deck
ManageIQ
 
PDF
System and Network Administration Chapter 2
jaramharo
 
PPTX
ISO 45001 Occupational Health and Safety Management System
EHA Soft Solutions
 
PPTX
Online Work Permit System for Fast Permit Processing
SHEQ Network Limited
 
PDF
Addressing The Cult of Project Management Tools-Why Disconnected Work is Hold...
OnePlan Solutions
 
PDF
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
PDF
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
PDF
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
PDF
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
PPTX
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
Agentic AI : A Practical Guide. Undersating, Implementing and Scaling Autono...
IT IDOL Technologies
 
Upgrade and Innovation Strategies for SAP ERP Customers
Virendra Rai, PMP
 
top salesforce developer skills in 2025.pdf
CloudMetic
 
Digital Strategies for Manufacturing Companies
Virendra Rai, PMP
 
Lecture 3: Operating Systems Introduction to Computer Hardware Systems
hci7se
 
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
Why TechBuilder is the Future of Pickup and Delivery App Development (1).pdf
TechBuilder
 
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
How Creative Agencies Leverage Project Management Software.pdf
Orangescrum
 
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
ManageIQ - Sprint 268 Review - Slide Deck
ManageIQ
 
System and Network Administration Chapter 2
jaramharo
 
ISO 45001 Occupational Health and Safety Management System
EHA Soft Solutions
 
Online Work Permit System for Fast Permit Processing
SHEQ Network Limited
 
Addressing The Cult of Project Management Tools-Why Disconnected Work is Hold...
OnePlan Solutions
 
Navsoft: AI-Powered Business Solutions & Custom Software Development
Navsoft
 
How to Migrate SBCGlobal Email to Yahoo Easily
raymondjones7273
 
T3DD25 TYPO3 Content Blocks - Deep Dive by André Kraus
Andre Kraus
 
Design an Analysis of Algorithms II-SECS-1021-03
DilanEscobar1
 
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean