Skip to content
AAIR Review ManualChapter 3 › Self-Assessment 23 / 33

Self-Assessment Questions

AAIR self-assessment questions support the content in this manual and provide an understanding of the type and structure of questions that typically appear on the exam. Often a question will require the candidate to choose the MOST likely or BEST answer among the options provided. Please note that these questions are not actual or retired exam items. Please see About This Manual for more guidance regarding practice questions.

  1. What is the PRIMARY security risk posed by adversarial attacks on machine learning (ML) models?
    1. Stealing the ML model’s architecture and hyperparameters
    2. Overfitting the model to specific training data, reducing its generalizability
    3. Manipulating input data to deceive the model into making incorrect predictions
    4. Increasing the computational cost of training the model
  2. A hospital implemented an AI solution to process patient data. It was suspected that some doctors entered patients’ personal data into the system, violating privacy regulations. Which would be the MOST appropriate response?
    1. Suspend the usage of the AI solution across the departments.
    2. Conduct root cause analysis followed by an AI risk reassessment.
    3. Update internal AI policies to address human errors and misuse.
    4. Apply liability measures to users for breaching sensitive data.
  3. An organization is deploying an AI solution that relies on third-party components and datasets. What is the BEST way to ensure supply chain integrity?
    1. Document vendor-provided certifications to validate the integrity of the supply chain.
    2. Isolate the AI solution from external networks to minimize the risk of supply chain compromise.
    3. Audit third-party components and datasets to verify their security before integration.
    4. Implement continuous monitoring of the AI solution after deployment to detect supply chain issues.

Chapter 3 Answer Key — Self-Assessment Questions

    1. While model theft can be a concern, adversarial attacks focus on causing incorrect predictions rather than stealing model architectures.

    2. Overfitting is a performance issue, not a security risk.

    3. Adversarial attacks involve manipulating input data in ways that cause machine learning (ML) models to make incorrect predictions, which is a significant security risk.

    4. Increasing computational cost is a technical concern, not a security issue related to adversarial attacks.

    1. As the event was not yet confirmed, suspending the solution would be a premeditated option. This reactive approach may unnecessarily disrupt healthcare operations without addressing the underlying problem.

    2. Identifying and understanding the root cause of a security-related incident is fundamental for effective risk assessment and response. A reassessment grounded in root cause analysis enables organizations to reframe and respond to risk accurately, especially in cases of human misuse.

    3. Updating internal policies is necessary to deal with human error and misuse as part of a broader set of directives, but policies must be based on a reassessed risk landscape.

    4. Applying liability measures to users addresses symptoms, not the system. Focusing solely on punitive actions treats symptoms rather than causes.

    1. While vendor certifications are useful, they are not a substitute for independent verification. Independent verification is the best way to account for all potential risk or vulnerabilities.

    2. Isolating the system reduces external risk but does not address the integrity of components or datasets already integrated into the AI solution.

    3. Auditing third-party components emphasizes proactive verification, which is critical for ensuring the authenticity and security of third-party components and datasets before integration.

    4. Continuous monitoring is important but reactive. It does not prevent the integration of compromised components or datasets.