S0107Significant

模型供應鏈來源不透明

Deployment

Risk Description

AI models used by organizations may pass through multiple hands (foundation model provider → fine-tuning vendor → system integrator → final deployer), with each stage potentially introducing unknown modifications. Without a complete model provenance chain, organizations cannot confirm whether the model in use matches the claimed version, nor assess whether intermediate stages introduced security risks or biases.

Framework Mappings

iso 23894R4
cosaiModel Source Tampering
tw principle問責
tw principle透明與可解釋
tw risk type技術設計缺陷(Technical Design Flaw)

Controls English translation pending

  • 模型來源追溯鏈
  • 供應商安全審計

Implementation Steps English translation pending

  1. 建立完整的模型來源追溯鏈(Model Provenance Chain),記錄每個環節
  2. 要求所有模型供應商提供訓練數據和微調流程的透明度報告
  3. 在部署前對模型進行獨立的安全和偏見測試
  4. 建立模型供應商安全審計和認證機制