TechInnovation – Poison in the Well. Securing the Shared Resources of Machine Learning (Andrew Lohn, CSET)

Modern machine learning often relies on open-source datasets, pretrained models, and machine learning libraries from across the internet, but are those resources safe to use? Previously successful digital supply chain attacks against cyber infrastructure suggest the answer may be no. This report introduces policymakers to these emerging threats and provides recommendations for how to secure the machine learning supply chain.

Poison in the Well – Center for Security and Emerging Technology (