Course Overview

Instructor: Shagufta Mehnaz (smehnaz@psu.edu)

Location: Walker Building 004

Meeting times: Mo We Fr 9:05AM - 9:55AM

Office hours: TBD

Objective: Today we see applications of machine learning almost everywhere we look - in the domains of autonomous driving, medical diagnosis, fraud detection, etc. While the use of machine learning is increasing in our day-to-day lives, these techniques also pose significant threats to security and data privacy. This course will explore recent academic research at the intersection of machine learning, security, and data privacy that demonstrates the risks adversaries pose to machine learning systems. The research papers explored in this course would cover attacks on machine learning systems as well as defense techniques to mitigate such attacks. At the end of this course, students will:

(1) acquire a solid background on recent developments in the area of security and privacy of machine learning

(2) be able to identify the security and privacy threats by rigorously analyzing systems that leverage machine learning, and finally,

(3) be motivated to conduct research in this emerging area.

Prerequisites: CMPSC 448/584

Course Expectations

Please note that this course will be conducted like a seminar. The teaching method will be a combination of traditional instructor-led lectures and student-led research paper presentations. Every class period will include 1 research paper presentation. Each student is expected to present 2-3 papers throughout the course. The number of presentations per student will be decided based on the class size. All students must read the assigned research papers before the class. They will submit summaries (2 pages maximum per paper) of 10 papers of their choice throughout the semester (must cover 1 paper from each topic). They are also expected to actively participate in discussions during lectures and presentations, e.g., by asking questions. This is important since participation will also be assessed for grading. Finally, the students are expected to propose and work on a semester-long research project, present the findings, and write a project report.