AI × CryptoNeutralarXiv – CS AI · 15h ago6/10
🤖
Cryptographic Registry Provenance: Structural Defense Against Dependency Confusion in AI Package Ecosystems
Researchers propose a cryptographic registry provenance system to prevent dependency confusion attacks in software ecosystems by requiring mandatory publisher signatures, cryptographic registry identity, registry countersignatures, and consumer-side enforcement. Analysis of eight major ecosystems reveals none currently implement all four defense layers, leaving package managers vulnerable to attacks that exploit the lack of provenance verification.