Dice Question Streamline Icon: https://streamlinehq.com

Security of trusted execution environments on AI accelerators

Investigate and empirically evaluate the practical security of confidential computing implementations on AI accelerators, such as Nvidia H100 TEEs, including identifying vulnerabilities and assessing their suitability for governance applications.

Information Square Streamline Icon: https://streamlinehq.com

Background

GPU‑based TEEs are novel and could enable verification and secure access, but their security has not been independently validated.

Robust evaluations are required to determine if such mechanisms can be safely relied on for governance and compliance use cases.

References

Given the novelty of the application of TEEs to high-end, AI-specific hardware, it is as-yet unknown how secure such systems are in practice due to a lack of independent testing.

Open Problems in Technical AI Governance (2407.14981 - Reuel et al., 20 Jul 2024) in Section 6.2.1 “Use of Hardware Mechanisms for AI Security”