Model Tampering

CCC.GenAI.TH08

Supply chain risks, including tampering with a model's core components at any stage of its lifecycle—from its source code and training data to the final deployable artifact—may result in embedding backdoors or adversarial triggers altering model behaviour under certain conditions.

Related Capabilities

ID	Title	Description
CCC.GenAI.CP01	Text-Based Model Selection	Ability to select a foundation model that excels at natural language understanding and generation tasks such as summarization, translation, text generation, question answering, and sentiment analysis.
CCC.GenAI.CP02	Code-Based Model Selection	Ability to select a foundation model that focuses on code understanding, generation, and transformation tasks.
CCC.GenAI.CP03	Embedding Model Selection	Ability to select a foundation model used for tasks like semantic search, clustering, and document similarity by converting text into vector embeddings.
CCC.GenAI.CP04	Image-Based Model Selection	Ability to select a foundation model that focuses on tasks related to vision, such as image generation, editing, and manipulation.
CCC.GenAI.CP04	Image-Based Model Selection	Ability to select a foundation model that focuses on tasks related to vision, such as image generation, editing, and manipulation.
CCC.GenAI.CP04	Image-Based Model Selection	Ability to select a foundation model that focuses on tasks related to vision, such as image generation, editing, and manipulation.

Related Controls

ID	Title	Description
CCC.GenAI.CN08	Quality Control and Red Teaming	Establish a formal program for quality evaluation and adversarial testing (red teaming) to ensure GenAI system meet all business, quality, security and compliance requirements before getting deployed into production environments.

External Mappings

Framework	ID	Remarks
FINOS-AIGF	AIR-SEC-008	Tampering With the Foundational Model
SAIF	MST	Model Source Tampering
SAIF	MDT	Model Deployment Tampering
OWASP-LLM-TOP10	LLM03:2025	Supply Chain
MITRE-ATLAS	AML.T0010	AI Supply Chain Compromise