Category: academic papers

Auto Added by WPeMatico

Model Extraction from Neural Networks

Posted on By infossl
academic papers, cryptography, Security technology, Uncategorized

A new paper, “Polynomial Time Cryptanalytic Extraction of Neural Network Models,” by Adi Shamir and others, uses ideas from differential cryptanalysis to extract the weights inside a neural network using specific queries and their results. This is much more theoretical than practical, but it’s a really interesting result. Abstract: Billions of dollars and countless GPU … Read More “Model Extraction from Neural Networks” »

Using LLMs to Exploit Vulnerabilities

Posted on By infossl
academic papers, artificial intelligence, cyberattack, cybersecurity, LLM, Security technology, Uncategorized, vulnerabilities, zero-day

Interesting research: “Teams of LLM Agents can Exploit Zero-Day Vulnerabilities.” Abstract: LLM agents have become increasingly sophisticated, especially in the realm of cybersecurity. Researchers have shown that LLM agents can exploit real-world vulnerabilities when given a description of the vulnerability and toy capture-the-flag problems. However, these agents still perform poorly on real-world vulnerabilities that are … Read More “Using LLMs to Exploit Vulnerabilities” »

LLMs Acting Deceptively

Posted on By infossl
academic papers, artificial intelligence, deception, LLM, Security technology, Uncategorized

New research: “Deception abilities emerged in large language models“: Abstract: Large language models (LLMs) are currently at the forefront of intertwining AI systems with human communication and everyday life. Thus, aligning them with human values is of great importance. However, given the steady increase in reasoning abilities, future LLMs are under suspicion of becoming able … Read More “LLMs Acting Deceptively” »

Exploiting Mistyped URLs

Posted on By infossl
academic papers, browsers, Security technology, Uncategorized

Interesting research: “Hyperlink Hijacking: Exploiting Erroneous URL Links to Phantom Domains“: Abstract: Web users often follow hyperlinks hastily, expecting them to be correctly programmed. However, it is possible those links contain typos or other mistakes. By discovering active but erroneous hyperlinks, a malicious actor can spoof a website or service, impersonating the expected content and … Read More “Exploiting Mistyped URLs” »

Privacy Implications of Tracking Wireless Access Points

Posted on By infossl
academic papers, geolocation, privacy, Security technology, Uncategorized, Wi-Fi

Brian Krebs reports on research into geolocating routers: Apple and the satellite-based broadband service Starlink each recently took steps to address new research into the potential security and privacy implications of how their services geolocate devices. Researchers from the University of Maryland say they relied on publicly available data from Apple to track the location … Read More “Privacy Implications of Tracking Wireless Access Points” »

On the Zero-Day Market

Posted on By infossl
academic papers, cyberespionage, Security technology, spyware, Uncategorized, zero-day

New paper: “Zero Progress on Zero Days: How the Last Ten Years Created the Modern Spyware Market“: Abstract: Spyware makes surveillance simple. The last ten years have seen a global market emerge for ready-made software that lets governments surveil their citizens and foreign adversaries alike and to do so more easily than when such work … Read More “On the Zero-Day Market” »

New Attack Against Self-Driving Car AI

Posted on By infossl
academic papers, artificial intelligence, cars, cyberattack, Security technology, side-channel attacks, Uncategorized

This is another attack that convinces the AI to ignore road signs: Due to the way CMOS cameras operate, rapidly changing light from fast flashing diodes can be used to vary the color. For example, the shade of red on a stop sign could look different on each line depending on the time between the … Read More “New Attack Against Self-Driving Car AI” »

Dan Solove on Privacy Regulation

Posted on By infossl
academic papers, gdpr, privacy, Security technology, Uncategorized

Law professor Dan Solove has a new article on privacy regulation. In his email to me, he writes: “I’ve been pondering privacy consent for more than a decade, and I think I finally made a breakthrough with this article.” His mini-abstract: In this Article I argue that most of the time, privacy consent is fictitious. … Read More “Dan Solove on Privacy Regulation” »

Licensing AI Engineers

Posted on By infossl
academic papers, artificial intelligence, ethics, Security technology, trust, Uncategorized

The debate over professionalizing software engineers is decades old. (The basic idea is that, like lawyers and architects, there should be some professional licensing requirement for software engineers.) Here’s a law journal article recommending the same idea for AI engineers. This Article proposes another way: professionalizing AI engineering. Require AI engineers to obtain licenses to … Read More “Licensing AI Engineers” »