In the context of multi-domain operations (MDO), artificial intelligence (AI) systems support human operators by processing large volumes of electro-optical/infrared (EOIR) sensor data. In this paper, we demonstrate how confidential computing technology, incorporating a hardware-based root of trust, can provide systemic identity verification through mutual attestation, secure the integrity of AI models, and preserve the confidentiality of processed sensor data. Using the example of aircraft detection and classification, we describe how confidential computing can defend against adversarial machine learning (AML) attacks by providing intrinsic security at the tactical edge and within the distributed applications environment that characterizes MDO.
|