Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Adversarial AI Attacks, Mitigations, and Defense Strategies
  • Table Of Contents Toc
Adversarial AI Attacks, Mitigations, and Defense Strategies

Adversarial AI Attacks, Mitigations, and Defense Strategies

By : John Sotiropoulos
4.9 (13)
Buy this Book
close
close
Adversarial AI Attacks, Mitigations, and Defense Strategies

Adversarial AI Attacks, Mitigations, and Defense Strategies

4.9 (13)
By: John Sotiropoulos
Buy this Book

Overview of this book

Adversarial attacks trick AI systems with malicious data, creating new security risks by exploiting how AI learns. This challenges cybersecurity as it forces us to defend against a whole new kind of threat. This book demystifies adversarial attacks and equips you with the skills to secure AI technologies. Learn how to defend AI and LLM systems against manipulation and intrusion through adversarial attacks such as poisoning, trojan horses, and model extraction, leveraging DevSecOps, MLOps, and other methods to secure systems. This is a comprehensive guide to AI security, combining structured frameworks with practical examples to help you identify and counter adversarial attacks. Part 1 introduces the foundations of AI and adversarial attacks. Parts 2, 3, and 4 cover key attack types, showing how each is performed and how to defend against them. Part 5 presents secure-by-design AI strategies, including threat modeling, MLSecOps, and guidance aligned with OWASP and NIST. The book concludes with a blueprint for maturing enterprise AI security based on NIST pillars, addressing ethics and safety under Trustworthy AI. By the end of this book, you’ll be able to develop, deploy, and secure AI systems against the threat of adversarial attacks effectively. *Email sign-up and proof of purchase required
Table of Contents (28 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Download the example code files
Icon
Conventions used
Icon
Get in touch
Icon
Share your thoughts
Lock Free Chapter
1
Part 1: Introduction to Adversarial AI
Icon
Part 1: Introduction to Adversarial AI
2
Chapter 1: Getting Started with AI
Icon
Chapter 1: Getting Started with AI
Icon
Getting the most out of this book – get to know your free benefits
Icon
Understanding AI and ML
Icon
Types of ML and the ML life cycle
Icon
Key algorithms in ML
Icon
Neural networks and deep learning
Icon
ML development tools
Icon
Summary
Icon
Further reading
3
Chapter 2: Building Our Adversarial Playground
Icon
Chapter 2: Building Our Adversarial Playground
Icon
Technical requirements
Icon
Setting up your development environment
Icon
Hands-on basic baseline ML
Icon
Developing our target AI service with CNNs
Icon
ML development at scale
Icon
Summary
4
Chapter 3: Security and Adversarial AI
chevron up
Icon
Chapter 3: Security and Adversarial AI
Icon
Technical requirements
Icon
Security fundamentals
Icon
Securing our adversarial playground
Icon
Securing code and artifacts
Icon
Bypassing security with adversarial AI
Icon
Summary
5
Part 2: Model Development Attacks
Icon
Part 2: Model Development Attacks
6
Chapter 4: Poisoning Attacks
Icon
Chapter 4: Poisoning Attacks
Icon
Basics of poisoning attacks
Icon
Staging a simple poisoning attack
Icon
Backdoor poisoning attacks
Icon
Hidden-trigger backdoor attacks
Icon
Clean-label attacks
Icon
Advanced poisoning attacks
Icon
Mitigations and defenses
Icon
Summary
7
Chapter 5: Model Tampering with Trojan Horses and Model Reprogramming
Icon
Chapter 5: Model Tampering with Trojan Horses and Model Reprogramming
Icon
Injecting backdoors using pickle serialization
Icon
Injecting Trojan horses with Keras Lambda layers
Icon
Trojan horses with custom layers
Icon
Neural payload injection
Icon
Attacking edge AI
Icon
Model hijacking
Icon
Summary
8
Chapter 6: Supply Chain Attacks and Adversarial AI
Icon
Chapter 6: Supply Chain Attacks and Adversarial AI
Icon
Traditional supply chain risks and AI
Icon
AI supply chain risks
Icon
Data poisoning
Icon
AI/ML SBOMs
Icon
Summary
9
Part 3: Attacks on Deployed AI
Icon
Part 3: Attacks on Deployed AI
10
Chapter 7: Evasion Attacks against Deployed AI
Icon
Chapter 7: Evasion Attacks against Deployed AI
Icon
Fundamentals of evasion attacks
Icon
Perturbations and image evasion attack techniques
Icon
NLP evasion attacks with BERT using TextAttack
Icon
Universal Adversarial Perturbations (UAPs)
Icon
Black-box attacks with transferability
Icon
Defending against evasion attacks
Icon
Summary
11
Chapter 8: Privacy Attacks – Stealing Models
Icon
Chapter 8: Privacy Attacks – Stealing Models
Icon
Understanding privacy attacks
Icon
Stealing models with model extraction attacks
Icon
Defenses and mitigations
Icon
Summary
12
Chapter 9: Privacy Attacks – Stealing Data
Icon
Chapter 9: Privacy Attacks – Stealing Data
Icon
Understanding model inversion attacks
Icon
Types of model inversion attacks
Icon
Example model inversion attack
Icon
Understanding inference attacks
Icon
Attribute inference attacks
Icon
Example attribute inference attack
Icon
Membership inference attacks
Icon
Summary
13
Chapter 10: Privacy-Preserving AI
Icon
Chapter 10: Privacy-Preserving AI
Icon
Privacy-preserving ML and AI
Icon
Simple data anonymization
Icon
Advanced anonymization
Icon
Differential privacy (DP)
Icon
Federated learning (FL)
Icon
Split learning
Icon
Advanced encryption options for privacy-preserving ML
Icon
Advanced ML encryption techniques in practice
Icon
Applying privacy-preserving ML techniques
Icon
Summary
14
Part 4: Generative AI and Adversarial Attacks
Icon
Part 4: Generative AI and Adversarial Attacks
15
Chapter 11: Generative AI – A New Frontier
Icon
Chapter 11: Generative AI – A New Frontier
Icon
A brief introduction to generative AI
Icon
Using GANs
Icon
Using pre-trained GANs
Icon
Summary
16
Chapter 12: Weaponizing GANs for Deepfakes and Adversarial Attacks
Icon
Chapter 12: Weaponizing GANs for Deepfakes and Adversarial Attacks
Icon
Use of GANs for deepfakes and deepfake detection
Icon
Using GANs in cyberattacks and offensive security
Icon
Defenses and mitigations
Icon
Summary
17
Chapter 13: LLM Foundations for Adversarial AI
Icon
Chapter 13: LLM Foundations for Adversarial AI
Icon
A brief introduction to LLMs
Icon
Developing AI applications with LLMs
Icon
Hello LLM with Python
Icon
Hello LLM with LangChain
Icon
Bringing your own data
Icon
How LLMs change Adversarial AI
Icon
Summary
18
Chapter 14: Adversarial Attacks with Prompts
Icon
Chapter 14: Adversarial Attacks with Prompts
Icon
Adversarial inputs and prompt injection
Icon
Direct prompt injection
Icon
Automated gradient-based prompt injection
Icon
Risks from bringing your own data
Icon
Indirect prompt injection
Icon
Data exfiltration with prompt injection
Icon
Privilege escalation with prompt injection
Icon
RCE with prompt injection
Icon
Defenses and mitigations
Icon
Summary
19
Chapter 15: Poisoning Attacks and LLMs
Icon
Chapter 15: Poisoning Attacks and LLMs
Icon
Poisoning embeddings in RAG
Icon
Poisoning attacks on fine-tuning LLMs
Icon
Summary
20
Chapter 16: Advanced Generative AI Scenarios
Icon
Chapter 16: Advanced Generative AI Scenarios
Icon
Supply-chain attacks in LLMs
Icon
Privacy attacks and LLMs
Icon
Model inversion and training data extraction attacks on LLMs
Icon
Inference attacks on LLMs
Icon
Model cloning with LLMs using a secondary model
Icon
Defenses and mitigations for privacy attacks
Icon
Summary
21
Part 5: Secure-by-Design AI and MLSecOps
Icon
Part 5: Secure-by-Design AI and MLSecOps
22
Chapter 17: Secure by Design and Trustworthy AI
Icon
Chapter 17: Secure by Design and Trustworthy AI
Icon
Secure by design AI
Icon
Building our threat library
Icon
Industry AI threat taxonomies
Icon
AI threat taxonomy mapping
Icon
Threat modeling for AI
Icon
Threat modelling in action
Icon
Enhanced FoodieAI threat model
Icon
Risk assessment and prioritization
Icon
Security design and implementation
Icon
Testing and verification
Icon
Shifting left – embedding security into the AI life cycle
Icon
Live operations
Icon
Beyond security – Trustworthy AI
Icon
Summary
23
Chapter 18: AI Security with MLSecOps
Icon
Chapter 18: AI Security with MLSecOps
Icon
The MLSecOps imperative
Icon
Toward an MLSecOps 2.0 framework
Icon
Building a primary MLSecOPs platform
Icon
MLSecOps in action
Icon
Integrating MLSecOps with LLMOps
Icon
Advanced MLSecOps with SBOMs
Icon
Summary
24
Chapter 19: Maturing AI Security
Icon
Chapter 19: Maturing AI Security
Icon
Enterprise security AI challenges
Icon
Foundations of enterprise AI security
Icon
Protecting AI with enterprise security
Icon
Operational AI security
Icon
Iterative enterprise security
Icon
Summary
25
Chapter 20: Unlock Your Book’s Exclusive Benefits
Icon
Chapter 20: Unlock Your Book’s Exclusive Benefits
Icon
How to unlock these benefits in three easy steps
26
Index
Icon
Index
Icon
Why subscribe?
27
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share your thoughts

Bypassing security with adversarial AI

We have spent a lot of time securing our adversarial AI playground and our sample AI service. In this section, we will explain how the traditional security controls we have applied are very effective in protecting the environment and artifacts of AI but not the logic embedded in its brain – the ML model.

Our first adversarial AI attack

In this section, we will look at staging our first adversarial AI attack by taking advantage of AI itself to subvert how the model works and demonstrating why we need to cover it when we secure a system or conduct a security risk assessment of it.

Imagine that our ImRecS solution detects airplanes and alerts the Border Control Forces of attempted intrusions. The web application would have to become real-time, but for our security conversations, that’s not all that important. Our service is hardened, and criminals cannot break in and tamper with our model to escape detection regarding illegal...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Adversarial AI Attacks, Mitigations, and Defense Strategies
End of Section 4
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon