Law and Adversarial Machine Learning
Ram Shankar Siva Kumar, David R. O'Brien, Kendra Albert, Salome, Vilojen
TL;DR
This paper examines how existing legal frameworks might respond to adversarial attacks on machine learning systems, emphasizing the need for transparency, forensic-ready design, and civil liberties considerations.
Contribution
It analyzes legal implications of adversarial ML attacks and advocates for transparent benchmarks, forensic-aware architecture, and broader civil liberties considerations.
Findings
Certain attacks are more likely to lead to legal liability.
Legal responses depend on attack types and context.
Calls for ML community to develop standardized benchmarks.
Abstract
When machine learning systems fail because of adversarial manipulation, how should society expect the law to respond? Through scenarios grounded in adversarial ML literature, we explore how some aspects of computer crime, copyright, and tort law interface with perturbation, poisoning, model stealing and model inversion attacks to show how some attacks are more likely to result in liability than others. We end with a call for action to ML researchers to invest in transparent benchmarks of attacks and defenses; architect ML systems with forensics in mind and finally, think more about adversarial machine learning in the context of civil liberties. The paper is targeted towards ML researchers who have no legal background.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdversarial Robustness in Machine Learning · Privacy-Preserving Technologies in Data · Ethics and Social Impacts of AI