Train Proxy via Replication (042e340a-ea50-46f7-a2bc-70bbad949313)
Adversaries may replicate a private model. By repeatedly querying the victim's ML Model Inference API Access, the adversary can collect the target model's inferences into a dataset. The inferences are used as labels for training a separate model offline that will mimic the behavior and performance of the target model.
A replicated model that closely mimic's the target model is a valuable resource in staging the attack. The adversary can use the replicated model to Craft Adversarial Data for various purposes (e.g. Evade ML Model, Spamming ML System with Chaff Data).
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Create Proxy ML Model (12887d43-f8b6-4191-adab-d1728687f951) | MITRE ATLAS Attack Pattern | Train Proxy via Replication (042e340a-ea50-46f7-a2bc-70bbad949313) | MITRE ATLAS Attack Pattern | 1 |