PyData Delhi 2019 - Presentation: Machine Learning Security - The Data Scientist's Guide to Hardening ML Models

Your ML model is insecure. With increased attack incidents on machine learning models (adversarial images, membership inference, model inversion, information reconstruction, data poisoning, etc) it is essential for developers to understand the attack surface of their ML models. We will show how companies like Google & Microsoft are coping with these new threats, and how you can too.

Outline:

Introduction
Real-World Attacks on Machine Learning Systems
- Membership Inference at AWS, GCP, Azure
- Data Linkage Attacks at Netflix
- Dataset Poisoning at Microsoft
- Attacks on Amazon Alexa
- Adversarial Image Attacks at Clarif.ai
- Attacks using Google’s Prediction API
- Others
Implications for Business Compliance
- Penalties under International Data Regulation
- Penalties under Indian Data Regulation
- Ethical Issues in Data Acquisition
Why do these Attacks occur?
How do these Attacks affect ML pipelines?
How to customize your defense for business needs (tradeoffs and tips)?
Current Defenses (being used in-production)
- Homomorphic Encryption at Microsoft
- Multi-party Computation at VISA Research
- Federated Learning at Google
- Differential Privacy at Google
- Blockchain-based solutions at OpenMined
- Others
Defenses (upcoming theoretical research)
- Zero-knowledge Proofs
- Garbled Circuits
- Machine Learning on secure enclaves
- Others
Learn to Implement
- Adversarial Image Attacks
- Implement a secure-MPC pipeline using PyTorch
- Differential Privacy using Tensorflow
- Implement SPDZ for Tensorflow
Learn to Use Existing Implementations & Frameworks
- Tensorflow Encrypted
- Tensorflow Cleverhans
- PyTorch PySyft
- Microsoft's PySEAL
- Google's RAPPOR
- Others
Tips from 3 years of research at Next Tech Lab
Conclusion

Sunday 3:00 PM–5:10 PM in C02

Machine Learning Security - The Data Scientist's Guide to Hardening ML Models

Arjun Bahuguna

Description

Abstract

Outline:

Subscribe to Receive PyData Updates