Code Signing - AI Mitigation
AI MitigationEnforce binary and application integrity with digital signature verification to prevent untrusted code from executing. Adversaries can embed malicious code in AI software or models. Developers should also cryptographically sign SBOM and AIBOM components that track model or data provenance. Enforcement of code signing can prevent the compromise of the AI supply chain and prevent execution of malicious code.
Overview
A source-backed snapshot of this defense.
Safeguard details
Where this defense applies and how the source classifies it.
- ATLAS ID
- AML.M0013
- ATT&CK external ID
- M1045
- Priority score
- 40
Covered techniques
Attacks this defense is designed to help with.
AML.T0010.001 - AI Software
Enforce properly signed drivers and ML software frameworks.
AML.T0018.002 - Embed Malware
Code signing provides a guarantee that the model has not been manipulated after signing took place.
AML.T0011.001 - Malicious Package
Code signing provides a guarantee that the software package has not been manipulated after signing took place.
AML.T0018 - Manipulate AI Model
Code signing provides a guarantee that the model has not been manipulated after signing took place.
Showing 4 of 8
Source evidence
Original public records and references for this page.
Original source
Original source links
Open the public records and source datasets used for this page.
