Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks

Julio Yair Rivera; Ángel Pinto; Nelson A. Pérez García; Monica Karel Huerta; Cesar Viloria Nuñez; Marvin Luis Pérez Cabrera; Frank Ibarra Hernández; Juan Torres Tovio; Erwin J. Sacoto-Cabrera

doi:10.1109/TEMSCONGlobal64363.2025.11238259

Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks

Julio Yair Rivera
, Ángel Pinto
, Nelson A. Pérez García
, Monica Karel Huerta
, Cesar Viloria Nuñez
, Marvin Luis Pérez Cabrera
, Frank Ibarra Hernández
, Juan Torres Tovio
, Erwin J. Sacoto-Cabrera

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

The increasing integration of machine learning (ML) models into Internet of Things (IoT) applications has led to notable advancements in automation and decision-making. However, these models are vulnerable to modern attack vectors recognized by the OWASP Top 10 for Large Language Model Applications, specifically ML05: Model Theft, where adversaries gain unauthorized access to model parameters and training data, compromising intellectual property and sensitive information. Such threats are particularly concerning in IoT environments due to their distributed nature and resource limitations. This paper proposes a middleware architecture for the management and mitigation of model theft risks by incorporating encryption, access control, obfuscation, watermarking, continuous monitoring, and service assurance programmability. By strengthening the security management framework of ML models deployed in IoT, the proposed architecture aims to protect against theft, ensure data confidentiality, and maintain network resilience. The approach includes detailed mathematical models and an evaluation of existing security measures, demonstrating the architecture's effectiveness in diverse IoT deployments, such as telemedicine and smart cities.

Original language	English
Title of host publication	TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9798331542740
DOIs	https://doi.org/10.1109/TEMSCONGlobal64363.2025.11238259
State	Published - 2025
Event	2025 IEEE Technology and Engineering Management Society Conference - Global, TEMSCON Global 2025 - San Diego, United States Duration: 4 Aug 2025 → 7 Aug 2025

Publication series

Name	TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings

Conference

Conference	2025 IEEE Technology and Engineering Management Society Conference - Global, TEMSCON Global 2025
Country/Territory	United States
City	San Diego
Period	4/08/25 → 7/08/25

Bibliographical note

Publisher Copyright:
© 2025 IEEE.

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 11 Sustainable Cities and Communities

Keywords

Cybersecurity
IoT
Middleware Architecture
Model Theft
OWASP ML05:2023

Access to Document

10.1109/TEMSCONGlobal64363.2025.11238259

Cite this

Yair Rivera, J., Pinto, Á., Pérez García, N. A., Huerta, M. K., Viloria Nuñez, C., Pérez Cabrera, M. L., Ibarra Hernández, F., Torres Tovio, J., & Sacoto-Cabrera, E. J. (2025). Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks. In TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings (TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/TEMSCONGlobal64363.2025.11238259

Yair Rivera, Julio ; Pinto, Ángel ; Pérez García, Nelson A. et al. / Middleware Architecture for the Management and Mitigation of OWASP ML05 : Model Theft in IoT Machine Learning Networks. TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings. Institute of Electrical and Electronics Engineers Inc., 2025. (TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings).

@inproceedings{37dda876a27a4787a15e06dbc1084023,

title = "Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks",

abstract = "The increasing integration of machine learning (ML) models into Internet of Things (IoT) applications has led to notable advancements in automation and decision-making. However, these models are vulnerable to modern attack vectors recognized by the OWASP Top 10 for Large Language Model Applications, specifically ML05: Model Theft, where adversaries gain unauthorized access to model parameters and training data, compromising intellectual property and sensitive information. Such threats are particularly concerning in IoT environments due to their distributed nature and resource limitations. This paper proposes a middleware architecture for the management and mitigation of model theft risks by incorporating encryption, access control, obfuscation, watermarking, continuous monitoring, and service assurance programmability. By strengthening the security management framework of ML models deployed in IoT, the proposed architecture aims to protect against theft, ensure data confidentiality, and maintain network resilience. The approach includes detailed mathematical models and an evaluation of existing security measures, demonstrating the architecture's effectiveness in diverse IoT deployments, such as telemedicine and smart cities.",

keywords = "Cybersecurity, IoT, Middleware Architecture, Model Theft, OWASP ML05:2023",

author = "\{Yair Rivera\}, Julio and {\'A}ngel Pinto and \{P{\'e}rez Garc{\'i}a\}, \{Nelson A.\} and Huerta, \{Monica Karel\} and \{Viloria Nu{\~n}ez\}, Cesar and \{P{\'e}rez Cabrera\}, \{Marvin Luis\} and \{Ibarra Hern{\'a}ndez\}, Frank and \{Torres Tovio\}, Juan and Sacoto-Cabrera, \{Erwin J.\}",

note = "Publisher Copyright: {\textcopyright} 2025 IEEE.; 2025 IEEE Technology and Engineering Management Society Conference - Global, TEMSCON Global 2025 ; Conference date: 04-08-2025 Through 07-08-2025",

year = "2025",

doi = "10.1109/TEMSCONGlobal64363.2025.11238259",

language = "English",

series = "TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings",

address = "United States",

}

Yair Rivera, J, Pinto, Á, Pérez García, NA, Huerta, MK, Viloria Nuñez, C, Pérez Cabrera, ML, Ibarra Hernández, F, Torres Tovio, J & Sacoto-Cabrera, EJ 2025, Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks. in TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings. TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings, Institute of Electrical and Electronics Engineers Inc., 2025 IEEE Technology and Engineering Management Society Conference - Global, TEMSCON Global 2025, San Diego, United States, 4/08/25. https://doi.org/10.1109/TEMSCONGlobal64363.2025.11238259

Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks. / Yair Rivera, Julio; Pinto, Ángel; Pérez García, Nelson A. et al.
TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings. Institute of Electrical and Electronics Engineers Inc., 2025. (TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Middleware Architecture for the Management and Mitigation of OWASP ML05

T2 - 2025 IEEE Technology and Engineering Management Society Conference - Global, TEMSCON Global 2025

AU - Yair Rivera, Julio

AU - Pinto, Ángel

AU - Pérez García, Nelson A.

AU - Huerta, Monica Karel

AU - Viloria Nuñez, Cesar

AU - Pérez Cabrera, Marvin Luis

AU - Ibarra Hernández, Frank

AU - Torres Tovio, Juan

AU - Sacoto-Cabrera, Erwin J.

PY - 2025

Y1 - 2025

N2 - The increasing integration of machine learning (ML) models into Internet of Things (IoT) applications has led to notable advancements in automation and decision-making. However, these models are vulnerable to modern attack vectors recognized by the OWASP Top 10 for Large Language Model Applications, specifically ML05: Model Theft, where adversaries gain unauthorized access to model parameters and training data, compromising intellectual property and sensitive information. Such threats are particularly concerning in IoT environments due to their distributed nature and resource limitations. This paper proposes a middleware architecture for the management and mitigation of model theft risks by incorporating encryption, access control, obfuscation, watermarking, continuous monitoring, and service assurance programmability. By strengthening the security management framework of ML models deployed in IoT, the proposed architecture aims to protect against theft, ensure data confidentiality, and maintain network resilience. The approach includes detailed mathematical models and an evaluation of existing security measures, demonstrating the architecture's effectiveness in diverse IoT deployments, such as telemedicine and smart cities.

AB - The increasing integration of machine learning (ML) models into Internet of Things (IoT) applications has led to notable advancements in automation and decision-making. However, these models are vulnerable to modern attack vectors recognized by the OWASP Top 10 for Large Language Model Applications, specifically ML05: Model Theft, where adversaries gain unauthorized access to model parameters and training data, compromising intellectual property and sensitive information. Such threats are particularly concerning in IoT environments due to their distributed nature and resource limitations. This paper proposes a middleware architecture for the management and mitigation of model theft risks by incorporating encryption, access control, obfuscation, watermarking, continuous monitoring, and service assurance programmability. By strengthening the security management framework of ML models deployed in IoT, the proposed architecture aims to protect against theft, ensure data confidentiality, and maintain network resilience. The approach includes detailed mathematical models and an evaluation of existing security measures, demonstrating the architecture's effectiveness in diverse IoT deployments, such as telemedicine and smart cities.

KW - Cybersecurity

KW - IoT

KW - Middleware Architecture

KW - Model Theft

KW - OWASP ML05:2023

UR - https://www.scopus.com/pages/publications/105031438328

U2 - 10.1109/TEMSCONGlobal64363.2025.11238259

DO - 10.1109/TEMSCONGlobal64363.2025.11238259

M3 - Conference contribution

AN - SCOPUS:105031438328

T3 - TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings

BT - TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 4 August 2025 through 7 August 2025

ER -

Yair Rivera J, Pinto Á, Pérez García NA, Huerta MK, Viloria Nuñez C, Pérez Cabrera ML et al. Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks. In TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings. Institute of Electrical and Electronics Engineers Inc. 2025. (TEMSCON Global 2025 - 2025 IEEE Technology and Engineering Management Society Conference - Global, Conference Proceedings). doi: 10.1109/TEMSCONGlobal64363.2025.11238259

Middleware Architecture for the Management and Mitigation of OWASP ML05: Model Theft in IoT Machine Learning Networks

Abstract

Publication series

Conference

Bibliographical note

UN SDGs

Keywords

Access to Document

Other files and links

Cite this