AI Model Access

Type: tactic

Description: The adversary is attempting to gain some level of access to an AI model.

AI Model Access enables techniques that use various types of access to the AI model that can be used by the adversary to gain information, develop attacks, and as a means to input data to the model. The level of access can range from the full knowledge of the internals of the model to access to the physical environment where data is collected for use in the AI model. The adversary may use varying levels of model access during the course of their attack, from staging the attack to impacting the target system.

Access to an AI model may require access to the system housing the model, the model may be publicly accessible via an API, or it may be accessed indirectly via interaction with a product or service that utilizes AI as part of its processes.

Version: 0.1.0

Created At: 2025-10-01 13:13:22 -0400

Last Modified At: 2025-10-01 13:13:22 -0400

Tactic Order: 4


External References

  • <-- AI-Enabled Product or Service (technique): Accessing machine learning-enabled products or services to interact with or gather information about the underlying ML models.
  • <-- AI Model Inference API Access (technique): Gaining access to AI model inference APIs to interact with or gather information about machine learning models.
  • <-- Full AI Model Access (technique): Obtaining full access to AI models, allowing an adversary to inspect, manipulate, or exfiltrate model data and configurations.
  • <-- Physical Environment Access (technique): Gaining access to the physical environment where machine learning models or systems are deployed to gather information or interact directly.