arXiv: Characterizing the Fault Response of the Intel Neural Compute Stick 2 Under Single-Pulse Electromagnetic Fault Injection

This paper, published on arXiv, characterizes how the Intel Neural Compute Stick 2, a USB-based AI accelerator, responds to single-pulse electromagnetic fault injection. The research demonstrates that an attacker can induce hardware-level errors in the device’s neural network computations, potentially causing misclassification or bypassing safety-critical AI model outputs. While this is not a regulatory change, it is a significant security finding that highlights a vulnerability in edge AI hardware used for real-time inference.

Organizations deploying the Intel Neural Compute Stick 2 in regulated environments are directly affected. This includes sectors such as automotive, industrial automation, medical devices, and any EU-regulated AI system under the AI Act that relies on this hardware for safety or high-risk applications. Manufacturers of AI-enabled products, system integrators, and compliance teams responsible for AI safety and robustness must take note, as the finding could impact conformity assessments for essential requirements like accuracy, resilience, and security.

Compliance teams should immediately assess whether their organization uses this specific device in any high-risk or safety-critical AI system. If so, they should document the vulnerability in their risk management file and evaluate whether mitigation measures, such as physical shielding, software-based error detection, or hardware substitution, are needed. Engage with your hardware vendor for a security advisory and update your AI system’s technical documentation to reflect this known weakness. Finally, monitor the European Commission’s guidance on hardware security for AI systems, as this finding may influence future harmonized standards under the AI Act.