Black-Box Transfer (a109f272-a57b-4c85-896d-0429af301e21)
In Black-Box Transfer attacks, the adversary uses one or more proxy models (trained via Create Proxy ML Model or Train Proxy via Replication) models they have full access to and are representative of the target model. The adversary uses White-Box Optimization on the proxy models to generate adversarial examples. If the set of proxy models are close enough to the target model, the adversarial example should generalize from one to another. This means that an attack that works for the proxy models will likely then work for the target model. If the adversary has ML Model Inference API Access, they may use this Verify Attack that the attack is working and incorporate that information into their training process.
| Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
|---|---|---|---|---|
| Craft Adversarial Data (8f7394cf-d0e4-4187-85c7-d278f77a9a09) | MITRE ATLAS Attack Pattern | Black-Box Transfer (a109f272-a57b-4c85-896d-0429af301e21) | MITRE ATLAS Attack Pattern | 1 |