{"id":1162653,"date":"2024-02-23T11:29:30","date_gmt":"2024-02-23T13:29:30","guid":{"rendered":"https:\/\/teknomers.com\/fr\/microsoft-lance-pyrit-un-outil-red-teaming-pour-lia-generative\/"},"modified":"2024-02-23T11:29:34","modified_gmt":"2024-02-23T13:29:34","slug":"microsoft-lance-pyrit-un-outil-red-teaming-pour-lia-generative","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/microsoft-lance-pyrit-un-outil-red-teaming-pour-lia-generative\/","title":{"rendered":"Microsoft lance PyRIT &#8211; Un outil Red Teaming pour l&#8217;IA g\u00e9n\u00e9rative"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">23 f\u00e9vrier 2024<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">R\u00e9daction<\/span><\/span><span class=\"p-tags\">Red Teaming \/ Intelligence Artificielle<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/Microsoft-lance-PyRIT-Un-outil-Red-Teaming-pour-lIA.jpg\" style=\"clear: left; display: block; float: left; text-align: center;\"><\/a><\/div>\n<p>Microsoft a publi\u00e9 un cadre d&#8217;automatisation en libre acc\u00e8s appel\u00e9 <a rel=\"nofollow noopener\" href=\"https:\/\/github.com\/Azure\/PyRIT\" target=\"_blank\">PyrIT<\/a> (abr\u00e9viation de Python Risk Identification Tool) pour identifier de mani\u00e8re proactive les risques dans les syst\u00e8mes d&#8217;intelligence artificielle (IA) g\u00e9n\u00e9rative.<\/p>\n<p>L&#8217;outil de red teaming est con\u00e7u pour \u00ab permettre \u00e0 chaque organisation du monde entier d&#8217;innover de mani\u00e8re responsable gr\u00e2ce aux derni\u00e8res avanc\u00e9es en mati\u00e8re d&#8217;intelligence artificielle \u00bb, a d\u00e9clar\u00e9 Ram Shankar Siva Kumar, responsable de l&#8217;\u00e9quipe rouge IA chez Microsoft. <a rel=\"nofollow noopener\" href=\"https:\/\/www.microsoft.com\/en-us\/security\/blog\/2024\/02\/22\/announcing-microsofts-open-automation-framework-to-red-team-generative-ai-systems\/\" target=\"_blank\">dit<\/a>.<\/p>\n<p>La soci\u00e9t\u00e9 a d\u00e9clar\u00e9 que PyRIT pourrait \u00eatre utilis\u00e9 pour \u00e9valuer la robustesse des points finaux du grand mod\u00e8le de langage (LLM) par rapport \u00e0 diff\u00e9rentes cat\u00e9gories de pr\u00e9judices telles que la fabrication (par exemple, l&#8217;hallucination), l&#8217;utilisation abusive (par exemple, les pr\u00e9jug\u00e9s) et le contenu interdit (par exemple, le harc\u00e8lement).<\/p>\n<p>Il peut \u00e9galement \u00eatre utilis\u00e9 pour identifier les atteintes \u00e0 la s\u00e9curit\u00e9, allant de la g\u00e9n\u00e9ration de logiciels malveillants au jailbreak, ainsi que les atteintes \u00e0 la vie priv\u00e9e comme le vol d\u2019identit\u00e9.<\/p>\n<div class=\"check_two clear bobbob\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thehackernews.uk\/delinea728\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"La cyber-s\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/1708012425_568_Les-pirates-informatiques-russes-de-Turla-ciblent-les-ONG-polonaises.jpg\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>PyRIT est livr\u00e9 avec cinq interfaces\u00a0: cible, ensembles de donn\u00e9es, moteur de notation, capacit\u00e9 \u00e0 prendre en charge plusieurs strat\u00e9gies d&#8217;attaque et int\u00e9gration d&#8217;un composant de m\u00e9moire qui peut prendre la forme de JSON ou d&#8217;une base de donn\u00e9es pour stocker les interactions interm\u00e9diaires d&#8217;entr\u00e9e et de sortie.<\/p>\n<p>Le moteur de notation propose \u00e9galement deux options diff\u00e9rentes pour noter les r\u00e9sultats du syst\u00e8me d&#8217;IA cible, permettant aux \u00e9quipes rouges d&#8217;utiliser un classificateur d&#8217;apprentissage automatique classique ou d&#8217;exploiter un point de terminaison LLM pour l&#8217;auto-\u00e9valuation.<\/p>\n<p>&#8220;L&#8217;objectif est de permettre aux chercheurs d&#8217;avoir une base de r\u00e9f\u00e9rence sur l&#8217;efficacit\u00e9 de leur mod\u00e8le et de l&#8217;ensemble de leur pipeline d&#8217;inf\u00e9rence par rapport \u00e0 diff\u00e9rentes cat\u00e9gories de dommages et de pouvoir comparer cette base de r\u00e9f\u00e9rence aux futures it\u00e9rations de leur mod\u00e8le&#8221;, a d\u00e9clar\u00e9 Microsoft.<\/p>\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/1708694969_184_Microsoft-lance-PyRIT-Un-outil-Red-Teaming-pour-lIA.jpg\" style=\"clear: left; display: block; float: left; text-align: center;\"><img decoding=\"async\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/1708694969_184_Microsoft-lance-PyRIT-Un-outil-Red-Teaming-pour-lIA.jpg\" alt=\"IA g\u00e9n\u00e9rative\" border=\"0\" data-original-height=\"357\" data-original-width=\"728\" title=\"IA g\u00e9n\u00e9rative\"\/><\/a><\/div>\n<p>&#8220;Cela leur permet de disposer de donn\u00e9es empiriques sur les performances actuelles de leur mod\u00e8le et de d\u00e9tecter toute d\u00e9gradation des performances en fonction des am\u00e9liorations futures.&#8221;<\/p>\n<p>Cela dit, le g\u00e9ant de la technologie prend soin de souligner que PyRIT ne remplace pas l&#8217;\u00e9quipe rouge manuelle des syst\u00e8mes d&#8217;IA g\u00e9n\u00e9rative et qu&#8217;il compl\u00e8te l&#8217;expertise dans le domaine existant d&#8217;une \u00e9quipe rouge.<\/p>\n<p>En d\u2019autres termes, l\u2019outil vise \u00e0 mettre en \u00e9vidence les \u00ab\u00a0points chauds\u00a0\u00bb de risque en g\u00e9n\u00e9rant des invites qui pourraient \u00eatre utilis\u00e9es pour \u00e9valuer le syst\u00e8me d\u2019IA et signaler les zones qui n\u00e9cessitent une enqu\u00eate plus approfondie.<\/p>\n<div class=\"check_two clear bobbob\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thehackernews.uk\/tcepdHrZ\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"La cyber-s\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2024\/02\/Le-logiciel-malveillant-Bumblebee-revient-avec-de-nouvelles-astuces-ciblant.png\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Microsoft a en outre reconnu que l&#8217;\u00e9quipe rouge des syst\u00e8mes d&#8217;IA g\u00e9n\u00e9rative n\u00e9cessite de rechercher simultan\u00e9ment les risques de s\u00e9curit\u00e9 et d&#8217;IA responsable et que l&#8217;exercice est plus probabiliste, tout en soulignant \u00e9galement les grandes diff\u00e9rences dans les architectures des syst\u00e8mes d&#8217;IA g\u00e9n\u00e9rative.<\/p>\n<p>&#8220;Une enqu\u00eate manuelle, bien que longue, est souvent n\u00e9cessaire pour identifier les angles morts potentiels&#8221;, a d\u00e9clar\u00e9 Siva Kumar.  &#8220;L&#8217;automatisation est n\u00e9cessaire pour la mise \u00e0 l&#8217;\u00e9chelle mais ne remplace pas le sondage manuel.&#8221;<\/p>\n<p>Le d\u00e9veloppement intervient alors que Protect AI <a rel=\"nofollow noopener\" href=\"https:\/\/protectai.com\/threat-research\/january-vulnerability-report\" target=\"_blank\">divulgu\u00e9<\/a> <a rel=\"nofollow noopener\" href=\"https:\/\/protectai.com\/threat-research\/february-vulnerability-report\" target=\"_blank\">plusieurs vuln\u00e9rabilit\u00e9s critiques<\/a> dans les plates-formes populaires de cha\u00eene d&#8217;approvisionnement d&#8217;IA telles que ClearML, Hugging Face, MLflow et Triton Inference Server, ce qui pourrait entra\u00eener l&#8217;ex\u00e9cution de code arbitraire et la divulgation d&#8217;informations sensibles.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ?  Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2024\/02\/microsoft-releases-pyrit-red-teaming.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80223 f\u00e9vrier 2024\ue804R\u00e9dactionRed Teaming \/ Intelligence Artificielle Microsoft a publi\u00e9 un cadre d&#8217;automatisation en libre acc\u00e8s appel\u00e9 PyrIT (abr\u00e9viation de Python Risk Identification Tool) pour identifier de mani\u00e8re proactive les risques dans les syst\u00e8mes d&#8217;intelligence artificielle (IA) g\u00e9n\u00e9rative. L&#8217;outil de red teaming est con\u00e7u pour \u00ab permettre \u00e0 chaque organisation du monde entier d&#8217;innover de [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1162654,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[200292,4168,4165,4161,200267,130888,4159,4171,1647,13717,200271,8362,200268,200269,200270,5527,185,231431,399,128318,4172,4169,231432,4166,4164],"class_list":["post-1162653","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-actualites-sur-la-cybersecurite","tag-comment-pirater","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-cyberactualites","tag-generative","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-lance","tag-lia","tag-logiciel-malveillant-rancongiciel","tag-microsoft","tag-mises-a-jour-sur-la-cybersecurite","tag-nouvelles-des-pirates","tag-nouvelles-sur-le-piratage","tag-outil","tag-pour","tag-pyrit","tag-red","tag-securite-des-informations","tag-securite-informatique","tag-securite-internet","tag-teaming","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1162653","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1162653"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1162653\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1162654"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1162653"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1162653"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1162653"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}