search

OWASP / www-project-machine-learning-security-top-10

OWASP Machine Learning Security Top 10 Project
http://owasp.org/www-project-machine-learning-security-top-10/
Other
69 stars 23 forks source link

[FEEDBACK]: Rename 'Corrupted packages' to 'AI supply chain attacks' #85

Closed robvanderveer closed 1 year ago

robvanderveer commented 1 year ago

Type

Suggestions for Improvement

What would you like to report?

I believe 'Packages' to be a too specific term for the problem of supply chain attacks. Calling it 'supply chain attacks' will make the reader aware of the risk that any external component in the AI pipeline can be manipulated. Also, add 'data' as a potential supply chain risk, and refer to 'data poisoning' for that, and also add 'model', referring to the transfer learning attack.

Code of Conduct

aryanxk02 commented 1 year ago

Shall I take up this issue? @robvanderveer @shsingh

shsingh commented 1 year ago

created #105 for you @aryanxk02