undefined | Better HN

0 pointslawlessone2y ago0 comments

You have me curious now. The models generate text. Could a model hypothetically be trained in such a way that could create a buffer overflow when given certain prompts? I am guessing the way inference works in such a way that cant happen

0 comments

wolftickets2y ago

Absolutely, though that isn't strictly what we're talking about here.

In this case, models themselves are fundamentally files. These files can have malicious code embedded into them that is executed when the model is loaded for further training or inference. When executed it isn't obvious to the user at all. It's a very nasty potential vector.

I wrote a blog about it here: https://protectai.com/blog/announcing-modelscan

j / k navigate · click thread line to collapse

0 pointslawlessone2y ago0 comments

0 comments

wolftickets2y ago

Absolutely, though that isn't strictly what we're talking about here.

I wrote a blog about it here: https://protectai.com/blog/announcing-modelscan

j / k navigate · click thread line to collapse