IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Microsoft spearheads industry-wide charter against AI cyber attacks

Security professionals can rely on the framework to fight cyber attacks targeting corporate machine learning systems

security warning data

Some of the tech industry’s biggest names, including IBM and Nvidia, have teamed up with Microsoft to launch an industry-focused open framework to empower security analysts to fight against advanced cyber threats.

The Adversarial ML Threat Matrix sees more than 11 organisations, as well as the not-for-profit MITRE, pool resources into drafting a playbook for detecting, responding to and remediating threats against machine learning systems.

With the rise of AI and machine learning systems being deployed by businesses across the world, cyber criminals and hackers are increasingly pivoting to finding ways to disrupt these business-critical platforms. 

There’s a significant gap between how these systems are being increasingly targeted and how vulnerable they are due to a lack of protection, according to Microsoft, which is spearheading these efforts.

“When it comes to Machine Learning security, the barriers between public and private endeavors and responsibilities are blurring; public sector challenges like national security will require the cooperation of private actors as much as public investments,” said director of machine learning research with MITRE, Mikel Rodriguez. 

“So, in order to help address these challenges, we at MITRE are committed to working with organizations like Microsoft and the broader community to identify critical vulnerabilities across the machine learning supply chain. This framework is a first step in helping to bring communities together to enable organizations to think about the emerging challenges in securing machine learning systems more holistically.”

This initiative is seen as the first step in empowering security teams to defend against attacks on machine learning systems, with the framework systematically organising the techniques used by adversaries. These tabulated tactics and techniques will be available to cyber security professionals as a resource they can use to monitor strategies around protecting their businesses’ machine learning deployments.

The matrix is structured like the ATT&CK framework, another widely-adopted cyber security framework, so that security analysts don’t have to learn anything new or different to understand how to manage machine learning threats. 

Microsoft is also seeding the framework with a curated set of vulnerabilities and adversary behaviours that itself and MITRE have betted to be effective against production systems. Analysts can, therefore, focus on realistic and tangible threats to machine learning systems rather than abstract or hypothetical dangers.

Featured Resources

Join the 90% of enterprises accelerating to the cloud

Business transformation through digital modernisation

Free Download

Delivering on demand: Momentum builds toward flexible IT

A modern digital workplace strategy

Free download

Modernise the workforce experience

Actionable insights and an optimised experience for both IT and end users

Free Download

The digital workplace roadmap

A leader's guide to strategy and success

Free Download

Recommended

Solve cyber resilience challenges with storage solutions
Whitepaper

Solve cyber resilience challenges with storage solutions

4 Jul 2022
Storage's role in addressing the challenges of ensuring cyber resilience
Whitepaper

Storage's role in addressing the challenges of ensuring cyber resilience

4 Jul 2022
Introducing IBM Security QRadar XDR
Whitepaper

Introducing IBM Security QRadar XDR

4 Jul 2022
The Total Economic Impact™ of IBM Security MaaS360 with Watson
Whitepaper

The Total Economic Impact™ of IBM Security MaaS360 with Watson

4 Jul 2022

Most Popular

Universities are fighting a cyber security war on multiple fronts
cyber security

Universities are fighting a cyber security war on multiple fronts

4 Jul 2022
Hackers claim to steal personal data of over a billion people in China
data breaches

Hackers claim to steal personal data of over a billion people in China

4 Jul 2022
Raspberry Pi launches next-gen Pico W microcontroller with networking support
Hardware

Raspberry Pi launches next-gen Pico W microcontroller with networking support

1 Jul 2022