為什么微軟和推特要選擇漏洞報(bào)告獎(jiǎng)勵(lì)來(lái)修復(fù)AI?
Jonathan Vanian
2021-10-06
一些公司近年來(lái)一直在設(shè)置漏洞修復(fù)獎(jiǎng)金項(xiàng)目,以吸引“善意的黑客”發(fā)現(xiàn)軟件中的漏洞,,以便公司修復(fù),。參與者們通過(guò)標(biāo)記安全漏洞來(lái)獲得資金。這些項(xiàng)目可以說(shuō)是企業(yè)們對(duì)自身的發(fā)現(xiàn)漏洞能力缺陷的一種認(rèn)識(shí),。
現(xiàn)在,,微軟(Microsoft)、英偉達(dá)(Nvidia)和推特(Twitter)等科技公司推出了專(zhuān)門(mén)針對(duì)人工智能的漏洞獎(jiǎng)勵(lì)項(xiàng)目,,目標(biāo)是讓外界人士發(fā)現(xiàn)人工智能軟件的缺陷,,企業(yè)以此來(lái)改進(jìn)技術(shù),降低機(jī)器學(xué)習(xí)歧視某些群體的風(fēng)險(xiǎn),。
例如,,今年8月初,微軟和英偉達(dá)在年度Defcon黑客大會(huì)上詳細(xì)介紹了一項(xiàng)新的漏洞獎(jiǎng)勵(lì)計(jì)劃,。這兩家公司計(jì)劃獎(jiǎng)勵(lì)那些改變電腦病毒,,使病毒無(wú)法被微軟的人工智能惡意軟件檢測(cè)服務(wù)發(fā)現(xiàn)的黑客。黑客們能夠通過(guò)微軟的機(jī)器學(xué)習(xí)電子郵件“釣魚(yú)”檢測(cè)軟件來(lái)制作欺騙性郵件,,還可以獲得微軟禮品卡以及其他獎(jiǎng)勵(lì),。
與此同時(shí),推特推出了一項(xiàng)針對(duì)人工智能偏見(jiàn)識(shí)別的漏洞獎(jiǎng)勵(lì)計(jì)劃,。該計(jì)劃推出的背景是,,有用戶(hù)發(fā)現(xiàn)推特的圖像裁剪工具會(huì)“自動(dòng)”裁剪掉女性以及有色人種,將男性白人置于圖像的正中央,。
目前,,這種算法已經(jīng)停用。外界人士受到邀請(qǐng),,來(lái)檢查,、找出支撐這一裁剪工具的機(jī)器學(xué)習(xí)算法中的缺陷。
研究人員還發(fā)現(xiàn)了該工具算法中的其他歧視性問(wèn)題,。比如,,這種算法傾向于將老年人從圖片中裁剪掉,穿著頭服裝的人也會(huì)被移除。研究人員認(rèn)為,,該算法存在對(duì)穿戴包頭巾,、長(zhǎng)袍和希賈布的人的偏見(jiàn)。
推特的漏洞獎(jiǎng)勵(lì)的第一名得主使用人工智能修改人們的面部照片,,使其更符合算法的要求,。在這一過(guò)程中,研究人員發(fā)現(xiàn),,算法偏愛(ài)瘦弱,、年輕、白皙的面孔,。這些跡象表明,,該技術(shù)訓(xùn)練時(shí)依托的數(shù)據(jù)庫(kù)主要迎合了當(dāng)今的審美傳統(tǒng)。
目前尚不清楚推特將如何處理這些發(fā)現(xiàn),。但管理層暗示,,這些發(fā)現(xiàn)將被用來(lái)改進(jìn)公司的技術(shù)。
在一個(gè)與推特漏洞懸賞計(jì)劃有關(guān)的小組會(huì)議上,,數(shù)據(jù)科學(xué)家帕特里克·霍爾反思了對(duì)企業(yè)人工智能進(jìn)行更深刻的審查的必要性,。盡管人工智能技術(shù)存在諸多缺陷,但為人工智能量身定制的漏洞懸賞計(jì)劃卻沒(méi)有得到廣泛采用,,他對(duì)此表示驚訝,。
“你沒(méi)有在你的企業(yè)人工智能和機(jī)器學(xué)習(xí)產(chǎn)品中發(fā)現(xiàn)漏洞,但并不意味著它們沒(méi)有漏洞,?!被魻栒f(shuō),“這只是意味著,,你不認(rèn)識(shí)的人可能正在利用它們,。對(duì)于我們這些負(fù)責(zé)任的人工智能社區(qū)的人來(lái)說(shuō),我們希望人們長(zhǎng)期嘗試漏洞獎(jiǎng)勵(lì)項(xiàng)目,?!保ㄘ?cái)富中文網(wǎng))
編譯:楊二一
一些公司近年來(lái)一直在設(shè)置漏洞修復(fù)獎(jiǎng)金項(xiàng)目,以吸引“善意的黑客”發(fā)現(xiàn)軟件中的漏洞,,以便公司修復(fù),。參與者們通過(guò)標(biāo)記安全漏洞來(lái)獲得資金。這些項(xiàng)目可以說(shuō)是企業(yè)們對(duì)自身的發(fā)現(xiàn)漏洞能力缺陷的一種認(rèn)識(shí),。
現(xiàn)在,,微軟(Microsoft)、英偉達(dá)(Nvidia)和推特(Twitter)等科技公司推出了專(zhuān)門(mén)針對(duì)人工智能的漏洞獎(jiǎng)勵(lì)項(xiàng)目,,目標(biāo)是讓外界人士發(fā)現(xiàn)人工智能軟件的缺陷,,企業(yè)以此來(lái)改進(jìn)技術(shù),,降低機(jī)器學(xué)習(xí)歧視某些群體的風(fēng)險(xiǎn)。
例如,,今年8月初,,微軟和英偉達(dá)在年度Defcon黑客大會(huì)上詳細(xì)介紹了一項(xiàng)新的漏洞獎(jiǎng)勵(lì)計(jì)劃。這兩家公司計(jì)劃獎(jiǎng)勵(lì)那些改變電腦病毒,,使病毒無(wú)法被微軟的人工智能惡意軟件檢測(cè)服務(wù)發(fā)現(xiàn)的黑客,。黑客們能夠通過(guò)微軟的機(jī)器學(xué)習(xí)電子郵件“釣魚(yú)”檢測(cè)軟件來(lái)制作欺騙性郵件,還可以獲得微軟禮品卡以及其他獎(jiǎng)勵(lì),。
與此同時(shí),,推特推出了一項(xiàng)針對(duì)人工智能偏見(jiàn)識(shí)別的漏洞獎(jiǎng)勵(lì)計(jì)劃。該計(jì)劃推出的背景是,,有用戶(hù)發(fā)現(xiàn)推特的圖像裁剪工具會(huì)“自動(dòng)”裁剪掉女性以及有色人種,將男性白人置于圖像的正中央,。
目前,,這種算法已經(jīng)停用。外界人士受到邀請(qǐng),,來(lái)檢查,、找出支撐這一裁剪工具的機(jī)器學(xué)習(xí)算法中的缺陷。
研究人員還發(fā)現(xiàn)了該工具算法中的其他歧視性問(wèn)題,。比如,,這種算法傾向于將老年人從圖片中裁剪掉,穿著頭服裝的人也會(huì)被移除,。研究人員認(rèn)為,,該算法存在對(duì)穿戴包頭巾、長(zhǎng)袍和希賈布的人的偏見(jiàn),。
推特的漏洞獎(jiǎng)勵(lì)的第一名得主使用人工智能修改人們的面部照片,,使其更符合算法的要求。在這一過(guò)程中,,研究人員發(fā)現(xiàn),,算法偏愛(ài)瘦弱、年輕,、白皙的面孔,。這些跡象表明,該技術(shù)訓(xùn)練時(shí)依托的數(shù)據(jù)庫(kù)主要迎合了當(dāng)今的審美傳統(tǒng),。
目前尚不清楚推特將如何處理這些發(fā)現(xiàn),。但管理層暗示,這些發(fā)現(xiàn)將被用來(lái)改進(jìn)公司的技術(shù),。
在一個(gè)與推特漏洞懸賞計(jì)劃有關(guān)的小組會(huì)議上,,數(shù)據(jù)科學(xué)家帕特里克·霍爾反思了對(duì)企業(yè)人工智能進(jìn)行更深刻的審查的必要性。盡管人工智能技術(shù)存在諸多缺陷,但為人工智能量身定制的漏洞懸賞計(jì)劃卻沒(méi)有得到廣泛采用,,他對(duì)此表示驚訝,。
“你沒(méi)有在你的企業(yè)人工智能和機(jī)器學(xué)習(xí)產(chǎn)品中發(fā)現(xiàn)漏洞,但并不意味著它們沒(méi)有漏洞,?!被魻栒f(shuō),“這只是意味著,,你不認(rèn)識(shí)的人可能正在利用它們,。對(duì)于我們這些負(fù)責(zé)任的人工智能社區(qū)的人來(lái)說(shuō),我們希望人們長(zhǎng)期嘗試漏洞獎(jiǎng)勵(lì)項(xiàng)目,?!保ㄘ?cái)富中文網(wǎng))
編譯:楊二一
For years, companies have hosted bug bounty programs to entice well-meaning hackers to spot flaws in software so they can patch them. The programs—participants usually get money for flagging securities holes—are a recognition by businesses that they can't find every vulnerability on their own.
Now, tech companies like Microsoft, Nvidia, and Twitter are hosting bug bounty programs specifically for artificial intelligence. The goal is for outsiders to spot flaws in A.I. software so that companies can improve the technology and reduce the risk of machine learning discriminating against certain groups of people.
For example, in early August, Microsoft and Nvidia detailed a new bug bounty program during the annual Defcon hacker conference. The companies plan to reward hackers who manage to alter computer viruses so that they go undetected by some of Microsoft’s A.I.-powered malware-detection services. Hackers who can create scammy emails that evade Microsoft’s machine-learning powered email phishing detection software will also earn some money in the form of Microsoft gift cards and other prizes.
Meanwhile, Twitter pitched a bug bounty aimed at spotting bias in its A.I. The program comes after users discovered that Twitter's image-cropping tool disproportionately removed women and people of color from photos so that the images would feature white men in the center.
Outsiders were invited to inspect and find flaws in the now-deactivated machine-learning algorithm that powered Twitter's photo cropping tool.
Researchers discovered other bias problems with the same algorithm used in the image-cropping tool. One discovered that it would tend to crop older people from photos. Another found that the algorithm would remove people wearing head garments, showing a bias against those wearing turbans, yamakas, and hijabs.
The first-place winner of Twitter’s bug bounty used A.I. to modify photos of people’s faces to be more appealing to the algorithm. Through this process, the researcher discovered that the algorithm favored faces that were thin, young, and white—all indications that the technology was trained on datasets mostly of people who conform to today's conventions of beauty.
It’s unclear what Twitter will do with the findings, but executives implied that they would be used to improve the company's tech.
During a panel related to Twitter’s bug bounty program, data scientist Patrick Hall reflected on the need for more scrutiny of corporate A.I. He expressed surprise that A.I.-tailored bug bounty programs haven’t become widely adopted considering the technology's many flaws.
“Just because you haven't found bugs in your enterprise A.I. and machine learning offerings, certainly doesn't mean they don’t have bugs,” Hall said. “It just means that someone you don't know might be exploiting them, and I think for those of us in the responsible A.I. community, we wanted people to try bug bounties for so long.”
財(cái)富中文網(wǎng)所刊載內(nèi)容之知識(shí)產(chǎn)權(quán)為財(cái)富媒體知識(shí)產(chǎn)權(quán)有限公司及/或相關(guān)權(quán)利人專(zhuān)屬所有或持有。未經(jīng)許可,,禁止進(jìn)行轉(zhuǎn)載,、摘編、復(fù)制及建立鏡像等任何使用,。
