德国CISPA中心@清华大学 学术交流会
人工智能时代的隐私保护和网络系统安全
主办:清华大学网络科学与网络空间研究院
协办:网安国际论坛(InForSec)
时间:3月11日(周一)上午9:00~12:05
地点:清华大学FIT楼二层多功能厅
会议日程
|
时间 |
演讲嘉宾 |
工作单位 |
演讲主题 |
|
8:30-9:00 |
签到 |
||
|
9:00-12:05 |
主持人: 段海新 清华大学网络科学与网络空间研究院 |
||
|
9:00-9:05 |
清华大学吴建平院士致欢迎词 |
||
|
9:05-9:25 |
Michael Backes |
德国CISPA中心主任 |
Introduction to CISPA Helmholtz Center for Information Security |
|
9:25-9:50 |
刘莹 |
清华大学网络科学与网络空间研究院副院长 |
Introduction to Institute for Network Science and Cyberspace of Tsinghua Univ. |
|
9:50-10:00 |
茶歇 |
||
|
10:00-10:25 |
Yang Zhang |
德国CISPA中心研究员 |
Quantifying Privacy Risks of Machine Learning Models and Biomedical Data |
|
10:25-10:50 |
张超 |
清华大学网络科学与网络空间研究院副教授 |
Discover vulnerabilities with fuzzing |
|
10:50-11:15 |
Mario Fritz |
德国CISPA中心教师 |
The Bright and Dark Sides of Computer Vision: Challenges and Opportunities for Privacy and Security |
|
11:15-11:40 |
Sven Bugiel |
德国CISPA中心教师 |
Quantifying and Mitigating the Threat of Third-party Libraries on Android |
|
11:40-12:05 |
段海新 |
清华大学网络科学与网络空间研究院教授 |
Boxes In The Middle(BITM) of End-To-End Communication——Blessing or Curse? |
演讲人及演讲内容摘要
1、演讲人:Michael Backes(德国CISPA中心主任)
演讲主题: Introduction to CISPA Helmholtz Center for Information Security
内容摘要: The Helmholtz Center for Information Security (CISPA) is a German national science Institution within the Helmholtz Association. CISPA seeks to have strong and decisive global impact on research, transfer, and innovation by combining cutting-edge, often disruptive foundational research with innovative application-oriented research, corresponding technology transfer and societal outreach. Thematically, it covers the full spectrum from theory to empirical research. CISPA serves as a distinguished center of excellence for cybersecurity and privacy research of highest international renown, and as an elite training ground for the next generation of cybersecurity experts and scientific leaders in this field. During the past 3 years, CISPA researchers have published 45 papers in the leading security conferences IEEE S&P, ACM CCS, Usenix Security, and NDSS. CISPA is constantly ranked top-3 in the field worldwide, see, e.g., CSrankings.org: (http://csrankings.org/#/index?sec&world).
演讲人介绍:Michael Backes is the Founding Director and CEO of the Helmholtz Center for Information Security (CISPA). His current research focuses on the development of methods for protecting personal data, especially medical data; investigating trustworthy methods for Machine Learning as well as universal solutions in Software and System Security. Over the last years, Mr. Backes has significantly shaped the scientific field of Cybersecurity – on a national as well as an international level. His research findings are documented in over 250 peer-reviewed publications in prestigious international journals and conference proceedings and have been honored with highly renowned awards, in particular the ERC Synergy Grant, the EU’s most distinguished research award. In 2009, Mr. Backes was Germany’s first researcher to receive the MIT TR35 Award: the best 35 researchers worldwide below the age of 35, across all disciplines, whose “accomplishments are poised to have a dramatic impact on the world as we know it”. He is the youngest member to date in acaTech, the National Academy of Science and Engineering, is regularly listed in numerous rankings as one of Germany´s most influential IT personalities, and was distinguished by the former Federal Minister Johanna Wanka as one of Germany’s digital heads. He has received a honorary doctorate by Université de Lorraine and is an IEEE Fellow.
2、演讲人:Yang Zhang(德国CISPA中心)
演讲主题:Title: Quantifying Privacy Risks of Machine Learning Models and Biomedical Data
内容摘要:The advancement of modern technologies has totally changed people’s lives during the past decade. While keeping on improving our life quality, these new technologies raise severe concerns about people’s privacy. In this talk, I will cover our recent work on assessing privacy risks stemming from machine learning models and biomedical data. First, I will talk about membership inference attacks against machine learning models. We show how to relax adversary’s assumptions to achieve a model and data independent membership inference attack. Then, I will discuss our ongoing works on attacking online learning systems. We propose five effective attacks in this surface ranging from predicting attributes of the dataset used to update a machine learning model to reconstructing the updating dataset itself. Second, I will talk about our research on assessing the privacy risks of biomedical data. In particular, I will cover our recent work on establishing a beacon system for sharing DNA methylation data following a privacy-by-design approach.
演讲人简介:Yang Zhang is an independent research group leader at CISPA Helmholtz Center for Information Security, Saarbruecken, Germany. Previously, he was a postdoc working in the group of Prof. Michael Backes at CISPA from January, 2017 to December, 2018. Dr. Zhang obtained his Ph.D. degree from University of Luxembourg on November, 2016 under the supervision of Prof. Sjouke Mauw and Dr. Jun Pang. Prior to that, he obtained his bachelor (2009) and master (2012) degrees from Shandong University. Dr. Zhang’s research mainly concentrates on data privacy. Topics include machine learning privacy, biomedical privacy, social network privacy, and location privacy. Besides, he also works on urban computing, social media analysis, and data mining. Dr. Zhang has published multiple papers at top venues in computer science including WWW, CCS, and NDSS. His work has received NDSS 2019 distinguished paper award. Dr. Zhang has served in the technical program committee of ACM CCS 2019 and ISMB 2019.
3、演讲人:张超(清华大学网络科学与网络空间研究院副教授)
演讲主题: Discover vulnerabilities with fuzzing
内容摘要:Memory corruption vulnerabilities in software are one of the most severe threats to cyber security, allowing attackers to alter the program’s behavior or take full control of it by hijacking its control flow. Vulnerability discovery is therefore critical for both defenders and attackers. Fuzzing is one of the most popular solutions nowadays. A lot of progresses are made by both industry and academia in recent years. In this talk, the speaker will review some recent advances in fuzzing, and present his team’s work in vulnerability discovery.
演讲人介绍: Dr. Chao Zhang is an Associate Professor at Tsinghua University. Prior to joining Tsinghua, he graduated from Peking University and did postdoc research in UC Berkeley with Dawn Song. His research interest lies in system and software security, especially in vulnerability and malware analysis. His defense solution FPGate won the Special Recognition Award in Microsoft’s BlueHat Prize Contest in 2012. He co-led a team CodeJitsu from UC Berkeley and built a system Glactica able to perform automated binary analysis, vulnerability detection, assessment and defense, which did excellently in the Cyber Grand Challenge launched by DARPA in 2016. He is the coach of the CTF team Blue-Lotus.
4、演讲人:Mario Fritz(德国CISPA中心教师)
演讲主题: The Bright and Dark Sides of Computer Vision: Challenges and Opportunities for Privacy and Security
内容摘要: Computer vision and machine learning as a whole have made great progress in past years and — in particular with the advances in deep learning — has reached a qualitatively different level of performance. On of my goals is to understand the implication on privacy and security aspects of these new approaches. I will talk about our work towards a Visual Privacy Advisor that aims at assessing private information in images, giving advice to users and redacting unwanted information from images. Second, I’ll outline how our recent work on modeling uncertainty in deep learning plays a key role in order to facilitate future goals such as safe autonomous driving. Third, I will describe how our latest work on reverse engineering and model stealing provides a better understanding of threats to intellectual property and security of machine learning models.
演讲人介绍: Mario Fritz is faculty member at the CISPA Helmholtz Center for Information Security, Saarbruecken, Germany. Previously, he was senior researcher at the Max Planck Institute for Informatics and post-doc at UC Berkeley and the International Computer Science Institute on a Feodor Lynen Research Fellowship of the Alexander von Humboldt Foundation. His research focus is at the intersection of Artificial Intelligence & Machine Learning with Security & Privacy. His recent work focuses on Deep Learning techniques that allow end-to-end training of complex and multi-modal approaches. He has over 90 publications — 50 in top venues. His key contributions include work on visual domain adaptation, latent factor models, the Visual Turing Test and privacy in visual data. He has served as area chair for ECCV and ICCV, is associate editor of TPAMI and is member of the ACM Europe Technology Policy Committee.
5、演讲人:Sven Bugiel(德国CISPA中心教师)
演讲主题: Quantifying and Mitigating the Threat of Third-party Libraries on Android
内容摘要: Third-party code has become an indispensable aspect of modern app development. It simplifies repetitive and everyday tasks, eases integration of services (like social media, etc.), and allows developers to share their knowledge conveniently. However, third-party code is a double-edged sword. For Android, research has repeatedly shown that third-party libraries not only increase their host apps’ attack surface and putting user data at risk but sometimes even act surreptitiously against the users’ interests. In this talk, we will present recent results on detecting third-party libraries version-specific within Android applications, allowing us for the first time to quantify their impact on the Android ecosystem and outlining possible paths for improving the status quo of outdated libraries in apps. We further introduce a compiler-based application instrumentation framework, developed at CISPA, and show how it can be used to automatically compartmentalize third-party libraries on Android to establish better protection of user privacy. Lastly, we briefly introduce object capabilities as a paradigm shift for representing privileges on Android to facilitate app compartmentalization more efficiently.
演讲人介绍:Sven Bugiel is a tenure-track faculty at CISPA and since 2016 heads the Trusted Systems Group. Sven did his PhD at Saarland University/CISPA under the supervision of Prof. Michael Backes. Sven’s primary research interest is mobile security, with a strong focus on system security solutions, such as mandatory access control and integration of hardware security primitives. More recently, he extended his research focus to empirical, large-scale analysis of the mobile ecosystem as well as security and usability aspects of human authentication.
6、演讲人:段海新(清华大学网络科学与网络空间研究院教授)
演讲主题: Boxes In The Middle(BITM) of End-To-End Communication——Blessing or Curse?
内容摘要:The most popular protocols, like HTTP and TLS, are designed following the End-to-End principle, which was cherished by most pioneers of Internet. However, with the evolutionary development of the Internet, middle boxes (firewall, cache, proxy, CDN and etc.) have been extensively deployed in current Internet communication, especially in DNS and web applications. While Box-In-The-Middle(BITM) improves security, performance and availability, it introduces many new vulnerabilities as well. Professor Duan will introduce security threats of BITM in web communications, including injection of Ads or malicious content, leakage of privacy, cache poisoning and denial of service. He will also give some mitigation solutions for the threats which might be helpful for Internet applications designers, developers and service providers.
演讲人介绍:Dr Haixin Duan is a professor at the Institute for Network Science and Cyberspace, Tsinghua University. He was once a visiting scholar at UC Berkeley and a senior scientist in International Computer Science Institute(ICSI). Dr. Duan has been working on network security for more than 20 years. His recent research interests include protocol security, intrusion detection, underground economy detection and etc. Some of his research results were deployed by industries like Baidu and Huawei, and published in top security conferences like Security & Privacy, USENIX Security, CCS, NDSS and SIGCOMM.
