Cloud Hosting

As enterprise deployments of machine learning continue at a strong pace, including in mission-critical environments such as in contact centers, for fraud detection and in regulated sectors like healthcare and finance for example, they are doing so against a backdrop of rising and evermore ferocious cyberattacks.

Take, for example, the SolarWinds hack in December 2020, arguably one of the largest on record, or the recent exploits that hit Exchange servers and affected tens of thousands of customers. Alongside such attacks, we've seen new impetus behind the regulation of artificial intelligence (AI), with the world's first regulatory framework for the technology arriving in April 2021. The EU's landmark proposals build on GDPR legislation, carrying heavy penalties for enterprises that fail to consider the risks and ensure that trust goes hand in hand with success in AI.

Altogether, a climate is emerging in which the significance of securing machine learning can no longer be ignored. Although this is a burgeoning field with much more innovation to come, the market is already starting to take the threat seriously.

Our research surveys reveal a steep change in deployments of machine learning during the pandemic, with more than 80 percent of enterprises saying they are trialing the technology or have put it into production, up from just over half a year ago.

But the topic of securing those systems has received little fanfare by comparison, even though research into the security of machine learning models goes back to the early 2000s.

We've seen several high-profile incidents that highlight the risks stemming from greater use of the technology. In 2020, a misconfigured server at Clearview AI, the controversial facial recognition start-up, leaked the company's internal files, apps and source code. In 2019, hackers were able to trick the Autopilot system of a Tesla Model S by using adversarial approaches involving sticky notes. Both pale in comparison to more dangerous scenarios, including the autonomous car that killed a pedestrian in 2018 and a facial recognition system that caused the wrongful arrest of an innocent person in 2019.

The security community is becoming more alert to the dangers of real-world AI. The CERT Coordination Center, which tracks security vulnerabilities globally, published its first note on machine learning risks in late 2019, and in December 2020, The Partnership on AI introduced its AI Incident Database, the first to catalog events in which AI has caused "safety, fairness, or other real-world problems".

The challenges that organizations are facing with machine learning are also shifting in this direction.

Several years ago, problems with preparing data, gaining skills and applying AI to specific business problems were the dominant headaches, but new topics are now coming to the fore. Among them are governance, auditability, compliance and above all, security.

According to CCS Insight's latest survey of senior IT leaders, security is now the biggest hurdle companies face with AI, cited by over 30 percent of respondents. Many companies struggle with the most rudimentary areas of security at the moment, but machine learning is a new frontier, particularly as business leaders start to think more about the risks that arise as the technology is embedded into more business operations.

Missing until recently are tools that help customers improve the security of their machine learning systems. A recent Microsoft survey, for example, found that 90 percent of businesses said they lack tools to secure their AI systems and that security pros were looking for specific guidance in the field.

Responding to this need, the market is now stepping up. In October 2020, non-profit organization MITRE, in collaboration with 12 firms including Microsoft, Airbus, Bosch, IBM and Nvidia, released an Adversarial ML Threat Matrix, an industry-focused open framework to help security analysts detect and respond to threats against machine learning systems.

Additionally, in April 2021, Algorithmia, a supplier of an enterprise machine learning operations (MLOps) platform that specializes in the governance and security of the machine learning life cycle, released a host of new security features focused on the integration of machine learning into the core IT security environment. They include support for proxies, encryption, hardened images, API security and auditing and logging. The release is an important step, highlighting my view that security will become intrinsic to the development, deployment and use of machine learning applications.

Finally, just last week, Microsoft released Counterfit, an open-source automation tool for security testing AI systems. Counterfit helps organizations conduct AI security risk assessments to ensure that algorithms used in businesses are robust, reliable and trustworthy. The tool enables pen testing of AI systems, vulnerability scanning and logging to record attacks against a target model.

These are early but important first steps that indicate the market is starting to take security threats to AI seriously. I encourage machine learning engineers and security professionals to get going begin to familiarize yourselves with these tools and the kinds of threats your AI systems could face in the not-so-distant future.

As machine learning becomes part of standard software development and core IT and business operations in the future, vulnerabilities and new methods of attack are inevitable. The immature and open nature of machine learning makes it particularly susceptible to hacking and that's why I predicted last year that we would see security become the top priority for enterprises' investment in machine learning by 2022.

A new category of specialism will emerge devoted to AI security and posture management. It will include core security areas applied to machine learning, like vulnerability assessments, pen testing, auditing and compliance and ongoing threat monitoring. In future, it will track emerging security vectors such as data poisoning, model inversions and adversarial attacks. Innovations like homomorphic encryption, confidential machine learning and privacy protection solutions such as federated learning and differential privacy will all help enterprises navigate the critical intersection of innovation and trust.

Above all, it's great to see the industry beginning to tackle this imminent problem now. Matilda Rhode, Senior Cybersecurity Researcher at Airbus, perhaps captures this best when she states, "AI is increasingly used in industry; it is vital to look ahead to securing this technology, particularly to understand where feature space attacks can be realized in the problem space. The release of open-source tools for security practitioners to evaluate the security of AI systems is both welcome and a clear indication that the industry is taking this problem seriously".

I look forward to tracking how enterprises progress in this critical field in the months ahead.

Nick McQuire, Chief of Enterprise Research, CCS Insight

Read more:
Hardening AI: Is machine learning the next infosec imperative? - ITProPortal

Kln/Zrich, May 18, 2021. Following a 10-month collaboration, EASA and Daedalean have concluded their second Innovation Partnership Contract, resulting in a 136-page report, Concepts of Design Assurance for Neural Networks (CoDANN) II. The goal of this second project was threefold: to investigate topics left out in the first project and report, to mature the concept of Learning assurance and to discuss remaining trustworthy AI building blocks from the EASA AI Roadmap. These steps pave the way to the first applications.

The first project in 2020 investigated the possible use of Machine Learning/Neural Networks in safety-critical avionics, looking in particular at the applicability of existing guidance such as Guidelines for Development of Civil Aircraft and Systems ED-79A/ARP4754A and Software Considerations in Airborne Systems and Equipment Certification ED-12C/DO-178C.

An essential finding of the previous EASA/Daedalean joint 140-page report (public version) was the identification of a W-shaped development process adapting the classical V-shaped cycle to machine learning applications:

Where the first CoDANN project showed that using neural networks in safety-critical applications is feasible, CoDANN II answers the remaining questions, reaching a conclusion on each of the following topics:

The visual traffic detection system developed by Daedalean served as a concrete use case. Like the visual landing guidance used as an example in the first project, this complex ML-based system is representative of future AI/ML products and illustrates the safety benefit such functions may bring to future airborne applications. Points of interest for future research activities, standards development and certification exercises have been identified.

EASA already used findings from both projects in drafting the first usable guidance for Level 1 machine learning applications released for public consultation in April 2021.

Working with the EASA AI Task Force was again a productive exercise, said Luuk van Dijk, CEO and founder of Daedalean. We each contributed our expertise on aviation, safety, robotics and machine learning to arrive at a result we could not have achieved without each other. The result was a 136-page report, the major part of which has been published for the benefit of the public discussion in this field.

Daedalean is building autonomous flight control software for civil aircraft of today and advanced aerial mobility of tomorrow. The Zurich, Switzerland-based company has brought together expertise from the fields of machine learning, robotics, computer vision, path planning, and aviation-grade software engineering and certification. Daedalean brings to market the first-ever machine-learning-based avionics in an onboard visual awareness system demonstrating capabilities on a path to certification for airworthiness.

The European Union Aviation Safety Agency (EASA) is the centrepiece of the European Unions strategy for aviation safety. Its mission is to promote the highest common standards of safety and environmental protection in civil aviation. The Agency develops common safety and environmental rules at the European level. It monitors the implementation of standards through inspections in the Member States and provides the necessary technical expertise, training and research. The Agency works hand in hand with the national authorities which continue to carry out many operational tasks, such as certification of individual aircraft or licensing of pilots.

See the original post here:
Daedalean and EASA Conclude Second Project 'Concepts of Design Assurance for Neural Networks' - AVweb

TensorFlow Lite has emerged as a popular platform for running machine learning models on the edge. A microcontroller is a tiny low-cost device to perform the specific tasks of embedded systems.

In a workshop held as part of Google I/O, TensorFlow founding member Pete Warden delved deep into the potential use cases of TensorFlow Lite for microcontrollers.

Further, quoting the definition of TinyML from a blog, he said:

Tiny machine learning is capable of performing on-device sensor data analytics at extremely low power, typically in the mW range and below, and hence enabling a variety of ways-on-use-case and targeting battery operated devices.

A Venn diagram of TinyML showcasing the composition of TinyML (Source: Google I/O)

Most machine learning applications are resource-intensive, and expensive to deploy and maintain.

According to PH Data, $65K (INR 47 lakhs) is the bare minimum amount required to deploy and maintain a model over 5 years. As you build a scalable framework to support future modeling activities, the cost might escalate to $95K (INR 70 lakhs) over five years.

On the other hand, TinyML is quite flexible and simple and requires less power.

Each hardware component (mW and below) acts independently, and the storage capacity of most machine learning models barely exceeds 30kb. Also, data can be processed on the device locally, which inevitably reduces data latency and solves the data privacy issue. Arm, Arduino, Sparkfun, adafruit, Raspberry Pi, etc are the major players in TinyML.

TensorFlow Lite, an open-source library by Google, helps in designing and running tiny machine learning (TinyML) models across a wide range of low-power hardware devices, and does not require much coding or machine learning expertise, said Warden.

Benefits of TinyML:

The TinyML process works in four simple steps gather/collect data, design and train the model, quantise the model and deploy to the microcontroller.

In a blog post, TensorFlow Lite for Microcontrollers, Google has explained some of its latest projects that combine Arduino and TensorFlow to create useful tools:

To initiate the project, you need a TF4 Micro Motion Kit pre-installed on Arduino. Once you have installed the packages and libraries on your laptop or personalised computer, look for the red, green and blue flashing LED in the middle of the board. The details of the setup are found here.

Once the setup is complete, you need to connect the device via Bluetooth; the TF4Micro motion kit communicates with this website via BLE, giving you a wireless experience. Now, tap the button on your Arduino, then wait for the red, green, and blue LED pattern to return. After this, click the connect button as shown on the website, then select TF4Micro Motion Kit from the dialogue box. You are now good to go. Similar steps need to be followed for all three experiments Air snare, FUI and tiny motion trainer.

Note: Do not hold the button down as this will clear the board.

The above experiments will help you get a hang of TensorFlow Lite on microcontrollers. You can also submit your ideas to the TensorFlow Microcontroller Challenge and win exciting cash prizes.

As part of a TensorFlow Microcontroller Challenge, Sparkfun is giving out a free TensorFlow Lite for Microcontrollers Kit. Click here to get yours.

Amit Raja Naik is a senior writer at Analytics India Magazine, where he dives deep into the latest technology innovations. He is also a professional bass player.

Here is the original post:
How TensorFlow Lite Fits In The TinyML Ecosystem - Analytics India Magazine