SubTechniqueresource-developmentATLAS

AML.T0002.001Models

What it is

Adversaries may acquire public models to use in their operations. Adversaries may seek models used by the victim organization or models that are representative of those used by the victim organization. Representative models may include model architectures, or pre-trained models which define the architecture as well as model parameters from training on a dataset. The adversary may search public sources for common model architecture configuration file formats such as YAML or Python configuration files, and common model storage file formats such as ONNX (.onnx), HDF5 (.h5), Pickle (.pkl), PyTorch (.pth), or TensorFlow (.pb, .tflite). Acquired models are useful in advancing the adversary's operations and are frequently used to tailor attacks to the victim model.

References

  1. https://atlas.mitre.org/techniques/AML.T0002.001

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

ATLAS tactic
AI Model Access
ATLAS
Acquire Public AI Artifacts
ATLAS
Publish Poisoned Models
ATLAS
Search Open AI Vulnerability Analysis
ATLAS
AI Model Inference API Access
ATLAS
Discover AI Model Ontology
Sourced from MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Curated by Adam Lundqvist, SQUR.