报告题目:Evolving Perspectives on Defending Adversarial Attacks for Deep Neural Networks
主讲嘉宾:Ben Y. Zhao
报告时间:2021年12月7日 9:30-11:30
报告地点:复旦大学江湾校区交叉二号楼 A1003室
报告摘要:Deep neural networks are known to be vulnerable to a wide range of attacks, including inference time attacks based on adversarial perturbations, as well as training time attacks such as backdoors. The security community has done extensive work in recent years to explore both attacks and defenses. In this talk, I will summarize some of our projects at UChicago SAND Lab covering both sides of the struggle between attacks and defenses, with particular focus on recent work on honeypot defenses (CCS 2020) and physical domain poison attacks (CVPR 2021). I will share some thoughts on the seemingly endless cat-and-mouse game between these two sides, and wrap up with a discussion of new directions to protect deployed DNNs.
关于嘉宾:Ben Zhao is Neubauer Professor of Computer Science at University of Chicago. Prior to joining UChicago, he held the position of Professor of Computer Science at UC Santa Barbara. He completed his Ph.D. at U.C. Berkeley (2004), and B.S. from Yale (1997). He is an ACM distinguished scientist, and a recipient of the NSF CAREER award, MIT Technology Review's TR-35 Award (Young Innovators Under 35), ComputerWorld Magazine's Top 40 Technology Innovators award, IEEE ITC Early Career Award, and Google Faculty awards. His work has been covered by media outlets such as New York Times, Boston Globe, LA Times, MIT Tech Review, Wall Street Journal, Forbes, Fortune, CNBC, MSNBC, New Scientist, and Slashdot. He has published over 170 articles in areas of security and privacy, machine learning, networking, and HCI (H-index 71). He served as TPC (co-)chair for the World Wide Web conference (WWW 2016) and ACM Internet Measurement Conference (IMC 2018). He also serves on the steering committee for HotNets, and was general co-chair for HotNets 2020.