AI/ML models are complex, and as such require a more specialized cryptographic signing process. Thankfully, OpenSSF has created a Model Signing Specification that describes how best to create signatures for these models.
With this in mind, I want to create a new task for our pipeline that can sign our AI models. This will ensure our signatures best follow the tenets of authenticity, integrity, and non-repudiation. I plan on using the model-transparency python package, as that is an easy-to-use tool that accomplishes this goal.
AI/ML models are complex, and as such require a more specialized cryptographic signing process. Thankfully, OpenSSF has created a Model Signing Specification that describes how best to create signatures for these models.
With this in mind, I want to create a new task for our pipeline that can sign our AI models. This will ensure our signatures best follow the tenets of authenticity, integrity, and non-repudiation. I plan on using the model-transparency python package, as that is an easy-to-use tool that accomplishes this goal.