In a world driven by data science and transformed by machine learning, the questions of security and privacy take center stage. As algorithms become more sophisticated and interconnected, the balance between innovation and protection becomes a thrilling and complex challenge.
Welcome to our seminar course on Special Topics in Data Science, Cyber Security and Privacy – a journey into the future where machine learning meets its most fascinating counterpart: the art of keeping information safe and secure. This course will guide you through a maze of cutting-edge techniques, hidden layers of defense, and the ethical considerations that underpin our digital lives.
From the secret codes that shield our most sensitive data to the unseen algorithms that ensure individuals’ privacy, this course offers an exploration that’s both broad in scope and deep in its revelations. Whether it’s designing robust machine learning models or unveiling the methods that protect the integrity of data, every lesson will unveil a new layer of intrigue.
Join us on this captivating intellectual expedition, and be part of the next generation of innovators, thinkers, and protectors of our digital world. Here, the known meets the unknown, the explicit meets the implicit, and every discovery is a step towards a safer and more transparent future.
Your path to the forefront of security and privacy starts now.
Prerequisites only include basic knowledge of coding (Python), algorithms, and probability.
- Instructor: Tianhao Wang
- Location: Rice 011
- Time: TuTh 2pm - 3:15pm
- TA: Mingtian Tan
- Discussion:
- Office Hour
Grading:
- Two assignments (20%, 10% each). Theory (proofs) and practice (programming in python) will be covered in each assignment.
- Paper presentation (20%): Each student will present a paper for 35 minutes (30min presentation plus 5min Q&A). If the slides are public or there are videos available online, it is okay to reuse the slides, but make sure you make a high-quality presentation.
- Project (60%). Students should utilize office hours to get feedbacks on the project.
Topics
- privacy and security issues in machine learning
- preliminaries of machine learning, nlp, graph neural networks, GANs, self-supervise learning, and federated learning
- attacks and basic defenses to deep learning models, covering: membership inference attack, attribute inference attack, property inference attack, reconstruction attack, evasion attack, poison attack, backdoor attack
- machine unlearning
- differential privacy (dp, the standard way for protecting privacy)
- earlier works of k-anonymity, l-diversity and t-closeness and their limitations
- basics of dp (definitions, compositions)
- primitives for satisfying dp
- Laplace mechanism, Exponential mechanism, Report-noisy-max, SVT, Gaussian mechanism
- advanced composition, renyi dp
- applications: hierarchical method, marginals and generative models, graph, ml (dpsgd)
- other notions: local dp, shuffle dp
- relaxed definition of dp
- geo-indistinguishability, event-level, w-window, label dp
- interaction of dp with other domains, such as fairness, usability, explanabilities
- secure implementation of dp (and floating-point attacks to dp)
- cryptography
- prelims of crypto: encryption, hash, message authentication, public-key encryption
- crypto-based techniques, including secure multi-party computation, homomorphic encryption (with federated learning), zero-knowledge proofs, encrypted databases, oblivious RAM, blockchain,
- Tor
- secure hardware
- quantum computer
- student-led presentations
Schedule (tentative, subject to change), we will meet in person
| Week | Dates | Tuesday | Thursday |
|---|---|---|---|
| 1 | Aug 21 - Aug 25 | Introduction | ML Background |
| 2 | Aug 28 - Sep 1 | ML Background | ML Security & Privacy |
| 3 | Sep 4 - Sep 8 | More ML Attacks | Machine Unlearning |
| 4 | Sep 11 - Sep 15 | Differential Privacy | Advanced DP Techniques |
| 5 | Sep 18 - Sep 22 | Relaxed DP Definitions | DP Applications |
| 6 | Sep 25 - Sep 29 | Crypto Preliminaries | Homomorphic Encryption |
| 7 | Oct 2 - Oct 6 | No Class (Fall Reading Day) | Secure Multi-party Computation |
| 8 | Oct 9 - Oct 13 | Zero-knowledge Proof | Tor & Secure Hardware |
| 9 | Oct 16 - Oct 20 | Quantum Computer Implications | Student Paper Presentations |
| 10 | Oct 23 - Oct 27 | Student Paper Presentations | Mid-term Project Report |
| 11 | Oct 30 - Nov 3 | Mid-term Project Report | Student-led Paper Presentations |
| 12 | Nov 6 - Nov 10 | No Class (Election Day) | Student-led Paper Presentations |
| 13 | Nov 13 - Nov 17 | Student-led Paper Presentations | Student Project Work |
| 14 | Nov 20 - Nov 24 | Student Project Work | No Class (Thanksgiving) |
| 15 | Nov 27 - Dec 1 | Student Project Presentations | Student Project Presentations |
| 16 | Dec 4 - Dec 8 | Student Project Presentations | Course Wrap-up |