[FEEDBACK]: Sync attack names between LLMT10 and MLT10 where appropriate

OWASP / www-project-machine-learning-security-top-10

OWASP Machine Learning Security Top 10 Project

http://owasp.org/www-project-machine-learning-security-top-10/

Other

71 stars 23 forks source link

[FEEDBACK]: Sync attack names between LLMT10 and MLT10 where appropriate #187

Open kapsolas opened 10 months ago

kapsolas commented 10 months ago

Type

Suggestions for Improvement

What would you like to report?

I would like to make the suggestion that we consolidate the terms used in the LLM and ML top 10 documents.

Many of the top 10 items in each are closely related or even the same. Where possible, the same term should be used (i.e. Model Theft vs Model Stealing, Data Poisoning Attack vs Training data Poisoning).

Thanks!

Code of Conduct

[X] I agree to follow this project's Code of Conduct

shsingh commented 9 months ago

Hi @kapsolas apologies for the delay in responsing.

Will definitely look to changing "Model Stealing" to "Model Theft".

In terms of "Data Poisoning v Training data poisoning" I would like to defer to @yodap-dg

Typically in research papers it is referred to as "Data Poisoning" and I agree that the use case is largely around the training data itself.

What are your thoughts @yodap-dg?

yodap-dg commented 9 months ago

Hi @shsingh

Yes, I agree. It should be Data Poisoning is the term, which is widely used. with regards to Model Theft, LLM10 is defined as Model Theft. @kapsolas

Thanks!