AI Model Card
What is AI Model Card?
AI Model CardA standardised document, introduced by Margaret Mitchell and colleagues in 2018, that describes a machine-learning model's intended use, training data, performance, limitations, and ethical considerations.
Model cards were proposed in the 2018 paper "Model Cards for Model Reporting" by Margaret Mitchell et al. at Google. They standardise transparent reporting for ML models with sections such as intended uses and out-of-scope uses, training and evaluation data, quantitative performance disaggregated by demographic or operational slice, known ethical considerations, and recommendations. Major providers including Google, Hugging Face, OpenAI, Meta, and Microsoft publish model cards for their models, and the format underpins regulatory transparency under the EU AI Act and the US NIST AI Risk Management Framework. From a security perspective, model cards help defenders understand attack surface, data lineage, and known failure modes, and they support due diligence before integrating a third-party model into a product.
● Examples
- 01
A Hugging Face model card listing training data, license, bias evaluations, and recommended use cases.
- 02
A vendor due-diligence checklist that requires a published model card before approving a generative-AI add-on.
● Frequently asked questions
What is AI Model Card?
A standardised document, introduced by Margaret Mitchell and colleagues in 2018, that describes a machine-learning model's intended use, training data, performance, limitations, and ethical considerations. It belongs to the AI & ML Security category of cybersecurity.
What does AI Model Card mean?
A standardised document, introduced by Margaret Mitchell and colleagues in 2018, that describes a machine-learning model's intended use, training data, performance, limitations, and ethical considerations.
How does AI Model Card work?
Model cards were proposed in the 2018 paper "Model Cards for Model Reporting" by Margaret Mitchell et al. at Google. They standardise transparent reporting for ML models with sections such as intended uses and out-of-scope uses, training and evaluation data, quantitative performance disaggregated by demographic or operational slice, known ethical considerations, and recommendations. Major providers including Google, Hugging Face, OpenAI, Meta, and Microsoft publish model cards for their models, and the format underpins regulatory transparency under the EU AI Act and the US NIST AI Risk Management Framework. From a security perspective, model cards help defenders understand attack surface, data lineage, and known failure modes, and they support due diligence before integrating a third-party model into a product.
How do you defend against AI Model Card?
Defences for AI Model Card typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for AI Model Card?
Common alternative names include: Model card, ML model card.
● Related terms
- ai-security№ 137
C2PA
Coalition for Content Provenance and Authenticity: an open standard for cryptographically signed metadata that records how digital media was created and edited.
- ai-security№ 281
Data Poisoning
An attack on a machine-learning system in which adversaries inject, alter, or relabel training data so the resulting model behaves incorrectly or contains hidden backdoors.
● See also
- № 897RAG