Breaking ML Services: Finding Zero-Days in Azure Machine Learning
Offered By: Hack In The Box Security Conference via YouTube
Course Description
Overview
Explore the security vulnerabilities discovered in Azure Machine Learning, a managed Machine-Learning-as-a-Service platform offered by Microsoft. Delve into five zero-day vulnerabilities across three broad classes of security issues: insecure logging of sensitive information, MLSee vulnerability allowing sensitive information disclosure, and methods for achieving persistence in AML environments. Learn about the techniques used to assess the security of managed services like AML, including reversing cloud middleware and investigating the shared responsibility model. Gain insights into potential security risks in cloud-based MLaaS platforms and understand the importance of thorough security assessments in these rapidly adopted systems. Witness demonstrations of various research techniques employed to uncover these vulnerabilities, providing valuable knowledge for security professionals and researchers interested in cloud service security.
Syllabus
#HITB2023HKT D2T2 - Breaking ML Services: Finding 0-days In Azure Machine Learning - Nitesh Surana
Taught by
Hack In The Box Security Conference
Related Courses
Computer SecurityStanford University via Coursera Cryptography II
Stanford University via Coursera Malicious Software and its Underground Economy: Two Sides to Every Story
University of London International Programmes via Coursera Building an Information Risk Management Toolkit
University of Washington via Coursera Introduction to Cybersecurity
National Cybersecurity Institute at Excelsior College via Canvas Network