CS499/599 :: Sp23 :: Trustworthy Machine Learning

CS 499/579 :: Spring 2023 :: Trustworthy Machine Learning

Overview

The widespread adoption of machine learning (ML) in many real-world applications, such as self-driving cars [link] or AI-assisted robotic surgery [link], calls for a comprehensive understanding of their security and privacy implications. In consequence, research in the field of adversarial machine learning (AML) studies (potential) security and privacy threats an adversary can cause, e.g., predictions manipulated by adversarial examples [link]. These efforts lead to developing defense mechanisms, e.g., adversarial training [link]—a training mechanism that reduces the sensitivity of models to small input perturbations.

In this class, students will have an opportunity to familiarize themselves with the emerging research on the attacks and defenses against ML systems. The class materials will cover three popular threats in this field: (i) adversarial examples, (ii) data poisoning, and (iii) membership inference. Students will review research papers, implement the attacks and defenses, evaluate their effectiveness, and conduct a mini-research project on a topic of their choice.

In the end, we expect:

[Security] To learn how to think like an adversary.
[AML] To learn emerging attacks and defenses against ML systems.
[AML] To have hands-on experience by implementing those security mechanisms.
[Research] To learn how to pursue a research problem of your choice and communicate your research findings with others.

Latest Announcements [Full List]

[Active] 04/03/23: Welcome to CS 499/579 Trustworthy Machine Learning

Course Information

Lecture: TR 10 - 11:50 am
Credits: 4
Location: KEAR 212 - Kearney Hall 212 (GP)
Discussion board: Canvas and Discord server

Instructor

Name: Sanghyun Hong
Contact: sanghyun [dot] hong [at] oregonstate [dot] edu
Office: 4103 KEC - Kelley Engineering Center
Office hours: Fri 3:00 - 4:30 pm (on Zoom)
(Subject to change at the instructor's discretion)

Course Policy

The University's Code of Academic Integrity applies, modified as follows:

[Dont's]

Do NOT share your code or write-up with others.
Do NOT copy and paste someone else's code or write-up in yours.
Do NOT ask for the solutions on the Internet
(e.g., do not post your homework to StackOverflow).

[Do's]

Brainstorm your ideas with other students.
Discuss and explain your solutions with other students.
Discuss the problems and concepts for the team project.
Collaborate with your team-members to run experiments for the team project.

Must: Please write down the students' names if you received any help from them. It won't affect the scores for your homework or projects. But, you will learn from this practice how to credit others for their services. It is an essential skill when you collaborate with others in the future.

CS 499/579 :: Spring 2023 :: Trustworthy Machine Learning

Home

Syllabus

Critique, Presentation

Homework

Project