training code tampering
Query use case
Has the training code used for the training AI system which was used to train my inference AI system been tampered with?
Schemas used
Pseudo code
FUNCTION training_code_sbom_hash_matches(Inference_ID, Submitted_SBOM_Hash)
// Retrieve the configuration ID from the inference system's data.
SET Config_ID = get configuration ID from Inference_ID
// Retrieve the training system ID using the trained system configuration linked to the Config_ID.
SET Training_System_ID = get training system ID from trained system configs for Config_ID
// Retrieve the code details for the training system.
SET (Ignored_Value, Code_ID) = get code details of Training_System_ID
// Retrieve the stored SBOM hash from the code record for the training system.
SET Stored_SBOM_Hash = get SBOM hash from code record for Code_ID
// Compare the stored SBOM hash with the submitted SBOM hash.
IF Stored_SBOM_Hash equals Submitted_SBOM_Hash THEN
RETURN True
ELSE
RETURN False
END FUNCTION
Explanation
-
Retrieve Inference System Data Details:
- The function extracts the configuration identifier (Config_ID) from the inference system’s data record.
-
Extract Training System ID:
- It then retrieves the training system identifier (Training_System_ID) from the trained system configurations using the Config_ID.
-
Retrieve Training System Code Details:
- The function obtains the code details for the training system, which includes the Code ID.
-
Retrieve Stored SBOM Hash:
- Using the Code ID, it fetches the stored SBOM hash from the corresponding code record.
-
SBOM Hash Comparison:
- The function compares the stored SBOM hash with the Submitted SBOM Hash.
- If they match, it returns
True; otherwise, it returnsFalse.
Query
db:training_code_hash_matches(AiSystemId, Hash)link to query- link to simulator
Notes
The relationships between entities in the AI system supply chain are shown in the below diagram, with the inference AI system and hash being checking for tampering highlighted in red.
