RSAC 2020: Lack of Machine Learning Laws Open Doors To Attacks

2020-02-26 22:27

Why so few machine learning court cases? Experts point to the fact that staple cybersecurity regulations such as the Computer Fruad and Abuse Act and Electronic Communications Privacy Act don't specifically spell out how to handle machine learning attacks.

This type of attack can open up machine learning systems to anything from data manipulation, logic corruption or even backdoor attacks.

Because specific policies don't exist, several challenges come into play when looking at potential legal actions stemming from machine learning attacks.

When thinking about machine learning attacks, companies need to revisit their Terms of Service for machine learning models in a "Similar way to any other service," said Goodwin, in order to create a risk profile.

The panel of three was in agreement that policies that focus on potential machine learning attacks still have ways to go - and with the spurt of research around machine learning attacks that's cropped up over the past few years, the government is hard pressed.

News URL

https://threatpost.com/rsac-2020-lack-of-machine-learning-laws-open-doors-to-attacks/153259/

#attack #machinelearning #rsac