I. Yegorov, E. Kobrin, D. Parygina, A. Vishnyakov, A. Fedotov, “Python fuzzing for trustworthy machine learning frameworks”, Investigations on applied mathematics and informatics. Part II–2, Zap. Nauchn. Sem. POMI, 530, POMI, St. Petersburg, 2023, 38

Zapiski Nauchnykh Seminarov POMI

RUS ENG

JOURNALS PEOPLE ORGANISATIONS CONFERENCES SEMINARS VIDEO LIBRARY PACKAGE AMSBIB

JavaScript is disabled in your browser. Please switch it on to enable full functionality of the website

	General information
	Latest issue
	Archive
	Impact factor

	Search papers
	Search references

	RSS
	Latest issue
	Current issues
	Archive issues
	What is RSS

Zap. Nauchn. Sem. POMI:
Year:
Volume:
Issue:
Page:
	Find

Personal entry:
Login:
Password:
	Save password
	Enter
	Forgotten password?
	Register

Zapiski Nauchnykh Seminarov POMI, 2023, Volume 530, Pages 38–50 (Mi znsl7431)

Python fuzzing for trustworthy machine learning frameworks

I. Yegorov^ab, E. Kobrin^ba, D. Parygina^ab, A. Vishnyakov^ba, A. Fedotov^ab

^a Ivannikov Institute for System Programming of the RAS
^b Lomonosov Moscow State University

Full-text PDF (369 kB)

References:

PDF

HTML

Abstract: Ensuring the security and reliability of machine learning frameworks is crucial for building trustworthy AI-based systems. Fuzzing, a popular technique in the secure software development lifecycle (SSDLC), can be used to develop secure and robust software. Popular machine learning frameworks such as PyTorch and TensorFlow are complex and written in multiple programming languages including C/C++ and Python. We propose a dynamic analysis pipeline for Python projects using the Sydr-Fuzz toolset. Our pipeline includes fuzzing, corpus minimization, crash triaging, and coverage collection. Crash triaging and severity estimation are important steps to ensure that the most critical vulnerabilities are addressed promptly. Furthermore, the proposed pipeline is integrated in GitLab CI. To identify the most vulnerable parts of the machine learning frameworks, we analyze their potential attack surfaces and develop fuzz targets for PyTorch, TensorFlow, and related projects such as h5py. Applying our dynamic analysis pipeline to these targets, we were able to discover 3 new bugs and propose fixes for them.

Key words and phrases: fuzzing, trustworthy AI, machine learning framework, TensorFlow, PyTorch, Python, artificial intelligence, crash triage, dynamic analysis, secure software development lifecycle, SSDLC, computer security.

Received: 06.09.2023

Document Type: Article

UDC: 004.852

Language: English

Citation: I. Yegorov, E. Kobrin, D. Parygina, A. Vishnyakov, A. Fedotov, “Python fuzzing for trustworthy machine learning frameworks”, Investigations on applied mathematics and informatics. Part II–2, Zap. Nauchn. Sem. POMI, 530, POMI, St. Petersburg, 2023, 38–50

Citation in format AMSBIB

\Bibitem{YegKobPar23}

\by I.~Yegorov, E.~Kobrin, D.~Parygina, A.~Vishnyakov, A.~Fedotov

\paper Python fuzzing for trustworthy machine learning frameworks

\inbook Investigations on applied mathematics and informatics. Part~II--2

\serial Zap. Nauchn. Sem. POMI

\yr 2023

\vol 530

\pages 38--50

\publ POMI

\publaddr St.~Petersburg

\mathnet{http://mi.mathnet.ru/znsl7431}

Linking options:

https://www.mathnet.ru/eng/znsl7431

https://www.mathnet.ru/eng/znsl/v530/p38

Citing articles in Google Scholar: Russian citations, English citations
Related articles in Google Scholar: Russian articles, English articles

Statistics & downloads:
Abstract page:	118
Full-text PDF :	58
References:	17

Что такое QR-код?

Registration to the website

Logotypes