Git-Mirrors/advmlthreatmatrix
1
0
Fork 0
mirror of https://github.com/mitre/advmlthreatmatrix.git synced 2025-07-21 06:21:07 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

c3803ff

Browse source
This commit is contained in:
Lily Wong 2022-03-31 22:09:30 +00:00
commit d7e661c241
424 changed files with 1723 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

161
content/contributorslist.yaml Normal file
View file

@ -0,0 +1,161 @@
---
data:
-
organization: MITRE
contributors:
- Mikel Rodriguez
- Christina Liaghati
- Keith Manville
- Michael Krumdick
- Josh Harguess
- Virginia Adams
- Shiri Bendelac
- Henry Conklin
- Poomathi Duraisamy
- David Giangrave
- Emily Holt
- Kyle Jackson
- Nicole Lape
- Sara Leary
- Eliza Mace
- Christopher Mobley
- Savanna Smith
- James Tanis
- Michael Threet
- David Willmes
- Lily Wong
- Mouaz Alhindi
- Marissa Dotter
- Colin Busho
- Shane Shroeder
- Andy Applebaum
- Jonathan Broadbent
- Isabel Tuson
-
organization: Microsoft
contributors:
- Ram Shankar
- Siva Kumar
- Hyrum Anderson
- Suzy Schapperle
- Blake Strom
- Madeline Carmichael
- Matt Swann
- Mark Russinovich
- Nick Beede
- Kathy Vu
- Andi Comissioneru
- Sharon Xia
- Mario Goertzel
- Jeffrey Snover
- Derek Adam
- Deepak Manohar
- Bhairav Mehta
- Peter Waxman
- Abhishek Gupta
- Ann Johnson
- Andrew Paverd
- Pete Bryan
- Roberto Rodriguez
- Will Pearce
-
organization: Bosch
contributors:
- Manojkumar Parmar
- Duplys Paul
- Jorge Guajardo Merchan
- Amit Phadke
- Adit Shah
- Tanya Motwani
- Pankaj Maurya
-
organization: IBM
contributors:
- Pin-Yu Chen
-
organization: NVIDIA
contributors:
- David Reber Jr.
- Keith Kozo
- Christopher Cottrell
- Daniel Rohrer
-
organization: Airbus
contributors:
- Adam Wedgbury
-
organization: PricewaterhouseCoopers
contributors:
- Michael Montecillo
-
organization: Deep Instinct
contributors:
- Nadav Maman
- Shimon Noam Oren
- Ishai Rosenberg
-
organization: Two Six Labs
contributors:
- David Slater
-
organization: University of Toronto
contributors:
- Adelin Travers
- Jonas Guan
- Nicolas Papernot
-
organization: Cardiff University
contributors:
- Pete Burnap
-
organization: Software Engineering Institute/Carnegie Mellon University
contributors:
- Nathan M. VanHoudnos
-
organization: Berryville Institute of Machine Learning
contributors:
- Gary McGraw
- Harold Figueroa
- Victor Shepardson
- Richie Bonett
-
organization: Citadel AI
contributors:
- Kenny Song
-
organization: McAfee
contributors:
- Christiaan Beek
-
organization: Unaffiliated
contributors:
- Ken Luu
-
organization: Ant Group
contributors:
- Henry Xuef
-
organization: Palo Alto Networks
contributors:
- May Wang
- Stefan Achleitner
- Yu Fu
- Ajaya Neupane
- Lei Xu

36
content/events.yaml Normal file
View file

@ -0,0 +1,36 @@
data:
- name: RSA
date: 2021-05-17
location: Virtual
description: |
MITRE and Microsoft facilitated the [ATT&CK® for Adversarial Machine Learning: Tacky or Tasty?](https://www.rsaconference.com/library/Presentation/USA/2021/attck-for-adversarial-machine-learning-tacky-or-tasty) session.
url: https://www.rsaconference.com/events/2021-usa
color: 'red'
- name: WACV
date: 2022-01-04
location: Waikoloa, HI
description: |
MITRE ATLAS hosted a booth at the Workshop on Applications of Computer Vision.
url: https://wacv2022.thecvf.com/
color: 'blue'
- name: NAML
date: 2022-03-22
location: Virtual
description: ATLAS & AI security were presented at the Naval Applications of Machine Learning virtual conference in March!
url: https://sites.google.com/go.spawar.navy.mil/naml/agenda
color: 'cyan'
- name: Purple Hats
date: 2022-04-21
location: Virtual
description: We'll be presenting on ATLAS & AI security at ATTACK IQ's Purple Hats virtual conference in April!
url: https://www.purplehats.org/2022
color: 'deep-purple'
- name: RSA
date: 2022-06-06
location: San Francisco, CA
description: |
MITRE, Microsoft, Google, and Meta/Facebook are talking about AI Red Teaming, Security, and ATLAS at the RSA conference in-person in San Francisco in June!
Our ATLAS team will also be at the MITRE booth all week.
url: https://www.rsaconference.com/usa
color: 'red'

16
content/update-files/2021-06.md Normal file
View file

@ -0,0 +1,16 @@
# June 2021
<br />
## Website
v2.0.0 - 2.1.3
<br>
Official launch of https://atlas.mitre.org, allowing users to browse the ATLAS matrix and initial set of case studies.
<iframe width="560" height="315" src="https://www.youtube-nocookie.com/embed/3FN9v-y-C-w" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
## Data
v2.0.0
<br>
This version of ATLAS data contains 16 tactics, 30 techniques, 17 sub-techniques, and 13 case studies. 14 of the tactics and several techniques used in case studies were imported from MITRE ATT&CK&reg; Enterprise v9.

14
content/update-files/2021-07.md Normal file
View file

@ -0,0 +1,14 @@
# July 2022
<br>
## Website
v2.2.0 - 2.2.2
<br>
ATLAS Navigator layers are available for case studies, highlighting techniques used in each procedure. See the "ATLAS Navigator layer" button on the case study pages for to view and download the layer files.
## Data
v2.0.1
<br>
This version of ATLAS data contains 16 tactics, 30 techniques, 17 sub-techniques, and 13 case studies. 14 of the tactics and several techniques used in case studies were imported from MITRE ATT&CK&reg; Enterprise v9.

18
content/update-files/2021-10.md Normal file
View file

@ -0,0 +1,18 @@
# October 2021
<br>
## Website
v2.3.0 - 2.3.2
<br>
Technique pages display examples of how techniques have been used in case studies, drawn from procedure steps.
## Data
v2.2.0
<br>
This version of ATLAS data contains 16 tactics, 30 techniques, 17 sub-techniques, and 15 case studies. 14 of the tactics and several techniques used in case studies were imported from MITRE ATT&CK&reg; Enterprise v9.
New case studies:
- [Backdoor Attack on Deep Learning Models in Mobile Apps](https://atlas.mitre.org/studies/AML.CS0013)
- [Confusing Antimalware Neural Networks](https://atlas.mitre.org/studies/AML.CS0014)

38
content/update-files/2022-03.md Normal file
View file

@ -0,0 +1,38 @@
# March 2022
<br>
## Website
v3.0.0
<br>
This website update adds new functionality in the form of the Case Study Builder. The builder can be used to craft submission files for new case studies with details and technique mappings.
The [Case Study Builder](https://atlas.mitre.org/studies/create) can be found in the “Build Case Study” subsection located under the “Case Study” tab in the navigation menu.
<iframe width="560" height="315" src="https://www.youtube-nocookie.com/embed/Np_ip14YJGg" title="YouTube video player" frameborder="0" allow="accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture" allowfullscreen></iframe>
### How to Use the Case Study Builder:
<p></p>
1. Fill out the form.
2. Download the generated case study .yaml file (and PowerPoint .pptx version if selected).
3. Email the case study file to atlas@mitre.org
\
To view or edit an existing case study, click the "Load Case Study" button and upload the .yaml file. Make any necessary adjustments, then re-download the file. The ATLAS team will review the submission and follow up with feedback.
### Case Study Considerations:
<p></p>
1. The attack exploits one or more vulnerabilities that compromise the confidentiality, integrity, or availability of a ML system.
2. The attack is against a production/commercial ML system. This can be on MLaaS or ML systems embedded in clients/at the edge.
3. Ensure you have permission to share this information and/or publish this research. Please follow the proper channels before reporting a new attack and make sure you are practicing responsible disclosure.
\
We are especially excited for new case-studies! We look forward to contributions from both industry and academic researchers.
## Data
v3.0.0
<br>
This version of ATLAS data contains 12 tactics, 33 techniques, 17 sub-techniques, and 15 case studies.
Prior usage of MITRE ATT&CK&reg; Enterprise tactics and techniques have been adapted into the ATLAS framework, with ATLAS IDs and updated machine learning-specific descriptions.