arXiv: A Constant-Time Implementation Methodology for Activation Functions on Microcontrollers

This paper, published on arXiv, presents a new technical methodology for implementing activation functions in neural networks on microcontrollers in a way that runs in constant time. This means the computation time does not vary based on the input data, which is a critical security property for preventing side-channel attacks, such as timing attacks, that can leak sensitive information. While not a regulatory change itself, this publication signals a maturing technical standard for secure AI deployment at the edge, directly relevant to the EU AI Act’s requirements for robustness and security in high-risk AI systems.

Organizations deploying AI on resource-constrained devices—such as those in automotive, medical devices, industrial IoT, and smart infrastructure—are most affected. Compliance teams in these sectors must now consider whether their on-device AI models are vulnerable to timing-based information leakage. This is particularly relevant for systems handling personal data or making safety-critical decisions, as the AI Act mandates appropriate technical measures to mitigate such risks.

Compliance teams should immediately assess their current AI deployment stack for microcontroller-based systems, identifying any activation functions that are not implemented in constant time. They should engage with engineering teams to evaluate the feasibility of adopting this methodology, especially for models classified as high-risk. Documentation of these technical safeguards should be updated to reflect alignment with emerging best practices, and a risk assessment should be conducted to determine if current implementations expose the system to side-channel attacks that could undermine compliance with the AI Act’s security obligations.