Search

Your search keyword '"Suri, Neeraj"' showing total 277 results
Start Over Author "Suri, Neeraj" Publication Year Range Last 10 years

Refine your results

more »

more »

more »

more »
277 results on '"Suri, Neeraj"'

1. Self-Supervised Representation Learning for Adversarial Attack Detection

Author

Li, Yi, Angelov, Plamen, and Suri, Neeraj

Subjects
Computer Science - Computer Vision and Pattern Recognition
Abstract

Supervised learning-based adversarial attack detection methods rely on a large number of labeled data and suffer significant performance degradation when applying the trained model to new domains. In this paper, we propose a self-supervised representation learning framework for the adversarial attack detection task to address this drawback. Firstly, we map the pixels of augmented input images into an embedding space. Then, we employ the prototype-wise contrastive estimation loss to cluster prototypes as latent variables. Additionally, drawing inspiration from the concept of memory banks, we introduce a discrimination bank to distinguish and learn representations for each individual instance that shares the same or a similar prototype, establishing a connection between instances and their associated prototypes. We propose a parallel axial-attention (PAA)-based encoder to facilitate the training process by parallel training over height- and width-axis of attention maps. Experimental results show that, compared to various benchmark self-supervised vision learning models and supervised adversarial attack detection methods, the proposed model achieves state-of-the-art performance on the adversarial attack detection task across a wide range of images., Comment: ECCV 2024

Published
2024

2. UNICAD: A Unified Approach for Attack Detection, Noise Reduction and Novel Class Identification

Author

Pellicer, Alvaro Lopez, Giatgong, Kittipos, Li, Yi, Suri, Neeraj, and Angelov, Plamen

Subjects
Computer Science - Computer Vision and Pattern Recognition, Computer Science - Artificial Intelligence, Computer Science - Machine Learning
Abstract

As the use of Deep Neural Networks (DNNs) becomes pervasive, their vulnerability to adversarial attacks and limitations in handling unseen classes poses significant challenges. The state-of-the-art offers discrete solutions aimed to tackle individual issues covering specific adversarial attack scenarios, classification or evolving learning. However, real-world systems need to be able to detect and recover from a wide range of adversarial attacks without sacrificing classification accuracy and to flexibly act in {\bf unseen} scenarios. In this paper, UNICAD, is proposed as a novel framework that integrates a variety of techniques to provide an adaptive solution. For the targeted image classification, UNICAD achieves accurate image classification, detects unseen classes, and recovers from adversarial attacks using Prototype and Similarity-based DNNs with denoising autoencoders. Our experiments performed on the CIFAR-10 dataset highlight UNICAD's effectiveness in adversarial mitigation and unseen class classification, outperforming traditional models.

Published
2024

3. Federated Adversarial Learning for Robust Autonomous Landing Runway Detection

Author

Li, Yi, Angelov, Plamen, Yu, Zhengxin, Pellicer, Alvaro Lopez, and Suri, Neeraj

Subjects
Computer Science - Computer Vision and Pattern Recognition
Abstract

As the development of deep learning techniques in autonomous landing systems continues to grow, one of the major challenges is trust and security in the face of possible adversarial attacks. In this paper, we propose a federated adversarial learning-based framework to detect landing runways using paired data comprising of clean local data and its adversarial version. Firstly, the local model is pre-trained on a large-scale lane detection dataset. Then, instead of exploiting large instance-adaptive models, we resort to a parameter-efficient fine-tuning method known as scale and shift deep features (SSF), upon the pre-trained model. Secondly, in each SSF layer, distributions of clean local data and its adversarial version are disentangled for accurate statistics estimation. To the best of our knowledge, this marks the first instance of federated learning work that address the adversarial sample problem in landing runway detection. Our experimental evaluations over both synthesis and real images of Landing Approach Runway Detection (LARD) dataset consistently demonstrate good performance of the proposed federated adversarial learning and robust to adversarial attacks., Comment: ICANN2024

Published
2024

4. Error Propagation Analysis for Multithreaded Programs: An Empirical Approach

Author

Winter, Stefan, Chan, Abraham, Saissi, Habib, Pattabiraman, Karthik, and Suri, Neeraj

Subjects
Computer Science - Software Engineering, Computer Science - Distributed, Parallel, and Cluster Computing
Abstract

Fault injection is a technique to measure the robustness of a program to errors by introducing faults into the program under test. Following a fault injection experiment, Error Propagation Analysis (EPA) is deployed to understand how errors affect a program's execution. EPA typically compares the traces of a fault-free (golden) run with those from a faulty run of the program. While this suffices for deterministic programs, EPA approaches are unsound for multithreaded programs with non-deterministic golden runs. In this paper, we propose Invariant Propagation Analysis (IPA) as the use of automatically inferred likely invariants ("invariants" in the following) in lieu of golden traces for conducting EPA in multithreaded programs. We evaluate the stability and fault coverage of invariants derived by IPA through fault injection experiments across six different fault types and six representative programs that can be executed with varying numbers of threads. We find that stable invariants can be inferred in all cases, but their fault coverage depends on the application and the fault type. We also find that fault coverage for multithreaded executions with IPA can be even higher than for traditional singlethreaded EPA, which emphasizes that IPA results cannot be trivially extrapolated from traditional EPA results., Comment: Extended version of conference paper, originally published in the proceedings of ICST'17 (see: https://ieeexplore.ieee.org/document/7927974)

Published
2023
Full Text
View/download PDF

5. Compilation as a Defense: Enhancing DL Model Attack Robustness via Tensor Optimization

Author

Trawicki, Stefan, Hackett, William, Birch, Lewis, Suri, Neeraj, and Garraghan, Peter

Subjects
Computer Science - Machine Learning, Computer Science - Cryptography and Security
Abstract

Adversarial Machine Learning (AML) is a rapidly growing field of security research, with an often overlooked area being model attacks through side-channels. Previous works show such attacks to be serious threats, though little progress has been made on efficient remediation strategies that avoid costly model re-engineering. This work demonstrates a new defense against AML side-channel attacks using model compilation techniques, namely tensor optimization. We show relative model attack effectiveness decreases of up to 43% using tensor optimization, discuss the implications, and direction of future work., Comment: 2 pages, 1 figure, CAMLIS 2023 Fast Abstract

Published
2023

6. Model Leeching: An Extraction Attack Targeting LLMs

Author

Birch, Lewis, Hackett, William, Trawicki, Stefan, Suri, Neeraj, and Garraghan, Peter

Subjects
Computer Science - Machine Learning, Computer Science - Artificial Intelligence, Computer Science - Computation and Language, Computer Science - Cryptography and Security
Abstract

Model Leeching is a novel extraction attack targeting Large Language Models (LLMs), capable of distilling task-specific knowledge from a target LLM into a reduced parameter model. We demonstrate the effectiveness of our attack by extracting task capability from ChatGPT-3.5-Turbo, achieving 73% Exact Match (EM) similarity, and SQuAD EM and F1 accuracy scores of 75% and 87%, respectively for only $50 in API cost. We further demonstrate the feasibility of adversarial attack transferability from an extracted model extracted via Model Leeching to perform ML attack staging against a target LLM, resulting in an 11% increase to attack success rate when applied to ChatGPT-3.5-Turbo.

Published
2023

7. Specifying Autonomous System Behaviour

Author

Sogokon, Andrew, Yuksek, Burak, Inalhan, Gokhan, and Suri, Neeraj

Subjects
Electrical Engineering and Systems Science - Systems and Control
Abstract

Specifying the intended behaviour of autonomous systems is becoming increasingly important but is fraught with many challenges. This technical report provides an overview of existing work on specifications of autonomous systems and places a particular emphasis on formal specification, i.e. mathematically rigorous approaches to specification that require an appropriate formalism. Given the breadth of this domain, our coverage is necessarily incomplete but serves to provide a brief introduction to some of the difficulties that specifying autonomous systems entails, as well as existing approaches to addressing these difficulties currently pursued in academia and industry.

Published
2023

8. Privacy-preserving Decentralized Federated Learning over Time-varying Communication Graph

Author

Lu, Yang, Yu, Zhengxin, and Suri, Neeraj

Subjects
Computer Science - Cryptography and Security, Computer Science - Machine Learning, Computer Science - Multiagent Systems
Abstract

Establishing how a set of learners can provide privacy-preserving federated learning in a fully decentralized (peer-to-peer, no coordinator) manner is an open problem. We propose the first privacy-preserving consensus-based algorithm for the distributed learners to achieve decentralized global model aggregation in an environment of high mobility, where the communication graph between the learners may vary between successive rounds of model aggregation. In particular, in each round of global model aggregation, the Metropolis-Hastings method is applied to update the weighted adjacency matrix based on the current communication topology. In addition, the Shamir's secret sharing scheme is integrated to facilitate privacy in reaching consensus of the global model. The paper establishes the correctness and privacy properties of the proposed algorithm. The computational efficiency is evaluated by a simulation built on a federated learning framework with a real-word dataset.

Published
2022

9. ThreatPro: Multi-Layer Threat Analysis in the Cloud

Author

Manzoor, Salman, Gouglidis, Antonios, Bradbury, Matthew, and Suri, Neeraj

Subjects
Computer Science - Cryptography and Security
Abstract

Many effective Threat Analysis (TA) techniques exist that focus on analyzing threats to targeted assets (e.g., components, services). These techniques consider static interconnections among the assets. However, in dynamic environments, such as the Cloud, resources can instantiate, migrate across physical hosts, or decommission to provide rapid resource elasticity to the users. It is evident that existing TA techniques cannot address all these requirements. In addition, there is an increasing number of complex multi-layer/multi-asset attacks on Cloud systems, such as the Equifax data breach. Hence, there is a need for threat analysis approaches that are designed to analyze threats in complex, dynamic, and multi-layer Cloud environments. In this paper, we propose ThreatPro that addresses the analysis of multi-layer attacks and supports dynamic interconnections in the Cloud. ThreatPro facilitates threat analysis by developing a technology-agnostic information flow model, which represents the Cloud's functionality through a set of conditional transitions. The model establishes the basis to capture the multi-layer and dynamic interconnections during the life-cycle of a Virtual Machine (VM). Specifically, ThreatPro contributes in (a) enabling the exploration of a threat's behavior and its propagation across the Cloud, and (b) assessing the security of the Cloud by analyzing the impact of multiple threats across various operational layers/assets. Using public information on threats from the National Vulnerability Database (NVD), we validate ThreatPro's capabilities, i.e., (a) identify and trace actual Cloud attacks and (b) speculatively postulate alternate potential attack paths., Comment: 32 pages, 14 figures

Published
2022

10. PINCH: An Adversarial Extraction Attack Framework for Deep Learning Models

Author

Hackett, William, Trawicki, Stefan, Yu, Zhengxin, Suri, Neeraj, and Garraghan, Peter

Subjects
Computer Science - Cryptography and Security, Computer Science - Artificial Intelligence, Computer Science - Machine Learning
Abstract

Adversarial extraction attacks constitute an insidious threat against Deep Learning (DL) models in-which an adversary aims to steal the architecture, parameters, and hyper-parameters of a targeted DL model. Existing extraction attack literature have observed varying levels of attack success for different DL models and datasets, yet the underlying cause(s) behind their susceptibility often remain unclear, and would help facilitate creating secure DL systems. In this paper we present PINCH: an efficient and automated extraction attack framework capable of designing, deploying, and analyzing extraction attack scenarios across heterogeneous hardware platforms. Using PINCH, we perform extensive experimental evaluation of extraction attacks against 21 model architectures to explore new extraction attack scenarios and further attack staging. Our findings show (1) key extraction characteristics whereby particular model configurations exhibit strong resilience against specific attacks, (2) even partial extraction success enables further staging for other adversarial attacks, and (3) equivalent stolen models uncover differences in expressive power, yet exhibit similar captured knowledge., Comment: 19 pages, 13 figures, 5 tables

Published
2022

11. Security Challenges when Space Merges with Cyberspace

Author

Varadharajan, Vijay and Suri, Neeraj

Subjects
Computer Science - Cryptography and Security
Abstract

Spaceborne systems, such as communication satellites, sensory, surveillance, GPS and a multitude of other functionalities, form an integral part of global ICT cyberinfrastructures. However, a focussed discourse highlighting the distinctive threats landscape of these spaceborne assets is conspicuous by its absence. This position paper specifically considers the interplay of Space and Cyberspace to highlight security challenges that warrant dedicated attention in securing these complex infrastructures. The opinion piece additionally adds summary opinions on (a) emerging technology trends and (b) advocacy on technological and policy issues needed to support security responsiveness and mitigation.

Published
2022

14. A Security Architecture for Railway Signalling

Author

Schlehuber, Christian, Heinrich, Markus, Vateva-Gurova, Tsvetoslava, Katzenbeisser, Stefan, and Suri, Neeraj

Subjects
Computer Science - Cryptography and Security
Abstract

We present the proposed security architecture Deutsche Bahn plans to deploy to protect its trackside safety-critical signalling system against cyber-attacks. We first present the existing reference interlocking system that is built using standard components. Next, we present a taxonomy to help model the attack vectors relevant for the railway environment. Building upon this, we present the proposed "compartmentalized" defence concept for securing the upcoming signalling systems.

Published
2020
Full Text
View/download PDF

16. Safe Execution of Concurrent Programs by Enforcement of Scheduling Constraints

Author

Metzler, Patrick, Saissi, Habib, Bokor, Péter, and Suri, Neeraj

Subjects
Computer Science - Programming Languages
Abstract

Automated software verification of concurrent programs is challenging because of exponentially large state spaces with respect to the number of threads and number of events per thread. Verification techniques such as model checking need to explore a large number of possible executions that are possible under a non-deterministic scheduler. State space reduction techniques such as partial order reduction simplify the verification problem, however, the reduced state space may still be exponentially large and intractable. This paper discusses \emph{Iteratively Relaxed Scheduling}, a framework that uses scheduling constraints in order to simplify the verification problem and enable automated verification of programs which could not be handled with fully non-deterministic scheduling. Program executions are safe as long as the same scheduling constraints are enforced under which the program has been verified, e.g., by instrumenting a program with additional synchronization. As strict enforcement of scheduling constraints may induce a high execution time overhead, we present optimizations over a naive solution that reduce this overhead. Our evaluation of a prototype implementation on well-known benchmark programs shows the effect of scheduling constraints on the execution time overhead and how this overhead can be reduced by relaxing and choosing constraints.

Published
2018

17. QRES: Quantitative Reasoning on Encrypted Security SLAs

Author

Taha, Ahmed, Boukoros, Spyros, Luna, Jesus, Katzenbeisser, Stefan, and Suri, Neeraj

Subjects
Computer Science - Cryptography and Security
Abstract

While regulators advocate for higher cloud transparency, many Cloud Service Providers (CSPs) often do not provide detailed information regarding their security implementations in their Service Level Agreements (SLAs). In practice, CSPs are hesitant to release detailed information regarding their security posture for security and proprietary reasons. This lack of transparency hinders the adoption of cloud computing by enterprises and individuals. Unless CSPs share information regarding the technical details of their security proceedings and standards, customers cannot verify which cloud provider matched their needs in terms of security and privacy guarantees. To address this problem, we propose QRES, the first system that enables (a) CSPs to disclose detailed information about their offered security services in an encrypted form to ensure data confidentiality, and (b) customers to assess the CSPs' offered security services and find those satisfying their security requirements. Our system preserves each party's privacy by leveraging a novel evaluation method based on Secure Two Party Computation (2PC) and Searchable Encryption techniques. We implement QRES and highlight its usefulness by applying it to existing standardized SLAs. The real world tests illustrate that the system runs in acceptable time for practical application even when used with a multitude of CSPs. We formally prove the security requirements of the proposed system against a strong realistic adversarial model, using an automated cryptographic protocol verifier.

Published
2018

18. Scaling Out Acid Applications with Operation Partitioning

Author

Saissi, Habib, Serafini, Marco, and Suri, Neeraj

Subjects
Computer Science - Distributed, Parallel, and Cluster Computing, Computer Science - Databases
Abstract

OLTP applications with high workloads that cannot be served by a single server need to scale out to multiple servers. Typically, scaling out entails assigning a different partition of the application state to each server. But data partitioning is at odds with preserving the strong consistency guarantees of ACID transactions, a fundamental building block of many OLTP applications. The more we scale out and spread data across multiple servers, the more frequent distributed transactions accessing data at different servers will be. With a large number of servers, the high cost of distributed transactions makes scaling out ineffective or even detrimental. In this paper we propose Operation Partitioning, a novel paradigm to scale out OLTP applications that require ACID guarantees. Operation Partitioning indirectly partitions data across servers by partitioning the application's operations through static analysis. This partitioning of operations yields to a lock-free Conveyor Belt protocol for distributed coordination, which can scale out unmodified applications running on top of unmodified database management systems. We implement the protocol in a system called Elia and use it to scale out two applications, TPC-W and RUBiS. Our experiments show that Elia can increase maximum throughput by up to 4.2x and reduce latency by up to 58.6x compared to MySQL Cluster while at the same time providing a stronger isolation guarantee (serializability instead of read committed).

Published
2018

19. CIPSEC-Enhancing Critical Infrastructure Protection with Innovative Security Framework

Author

Álvarez, Antonio, primary, Trapero, Rubén, additional, Guilhot, Denis, additional, García-Mila, Ignasi, additional, Hernandez, Francisco, additional, Marín-Tordera, Eva, additional, Forne, Jordi, additional, Masip-Bruin, Xavi, additional, Suri, Neeraj, additional, Heinrich, Markus, additional, Katzenbeisser, Stefan, additional, Athanatos, Manos, additional, Ioannidis, Sotiris, additional, Kallipolitis, Leonidas, additional, Spais, Ilias, additional, Fournaris, Apostolos, additional, and Lampropoulos, Konstantinos, additional

Published
2022
Full Text
View/download PDF

21. An empirical study of reflection attacks using NetFlow data.

Author

Chuah, Edward and Suri, Neeraj

Subjects
DENIAL of service attacks, EMPIRICAL research, REGRESSION analysis, COMPUTER network protocols, ILLEGAL logging, DATA logging
Abstract

Reflection attacks are one of the most intimidating threats organizations face. A reflection attack is a special type of distributed denial-of-service attack that amplifies the amount of malicious traffic by using reflectors and hides the identity of the attacker. Reflection attacks are known to be one of the most common causes of service disruption in large networks. Large networks perform extensive logging of NetFlow data, and parsing this data is an advocated basis for identifying network attacks. We conduct a comprehensive analysis of NetFlow data containing 1.7 billion NetFlow records and identified reflection attacks on the network time protocol (NTP) and NetBIOS servers. We set up three regression models including the Ridge, Elastic Net and LASSO. To the best of our knowledge, there is no work that studied different regression models to understand patterns of reflection attacks in a large network. In this paper, we (a) propose an approach for identifying correlations of reflection attacks, and (b) evaluate the three regression models on real NetFlow data. Our results show that (a) reflection attacks on the NTP servers are not correlated, (b) reflection attacks on the NetBIOS servers are not correlated, (c) the traffic generated by those reflection attacks did not overwhelm the NTP and NetBIOS servers, and (d) the dwell times of reflection attacks on the NTP and NetBIOS servers are too small for predicting reflection attacks on these servers. Our work on reflection attacks identification highlights recommendations that could facilitate better handling of reflection attacks in large networks. [ABSTRACT FROM AUTHOR]

Published
2024
Full Text
View/download PDF

25. Importance of preoperative HRCT temporal bone in the orientation of the cochlea and its relation to intra-operative difficulties in cochlear implantation – predicting the grades of difficulty.

Author

Suri, Neeraj and Sharma, Diva

Abstract

Objective:Methods:Results:Conclusion:This study emphasizes the role of preoperative high-resolution computed tomography (HRCT) temporal bone in evaluating the variation in cochlear orientation and proposes a grading system to determine the level of intraoperative difficulties encountered.Preoperative correlation of middle ear and inner ear structures along with the basal turn angle (BTA) was done to assess the orientation. Patients were divided into three groups depending on BTA and radiology findings.Group A (BTA = 55°-60°) had statistically significant (p < 0.05) correlation between middle ear to inner ear structures on HRCT, whereas group B (BTA >60°) and C (BTA <55°) had variations in the alignment of middle ear structures to their corresponding inner ear structures.The association of BTA to the correlation between middle ear and inner ear structures can determine the orientation of the cochlea. This evaluation makes the surgeon aware of intraoperative challenges and helps in surgical planning. [ABSTRACT FROM AUTHOR]

Published
2024
Full Text
View/download PDF

26. Extracting Safe Thread Schedules from Incomplete Model Checking Results

Author

Metzler, Patrick, Suri, Neeraj, Weissenbacher, Georg, Goos, Gerhard, Founding Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Woeginger, Gerhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Biondi, Fabrizio, editor, Given-Wilson, Thomas, editor, and Legay, Axel, editor

Published
2019
Full Text
View/download PDF

27. Threat Modeling the Cloud: An Ontology Based Approach

Author

Manzoor, Salman, Vateva-Gurova, Tsvetoslava, Trapero, Ruben, Suri, Neeraj, Hutchison, David, Series Editor, Kanade, Takeo, Series Editor, Kittler, Josef, Series Editor, Kleinberg, Jon M., Series Editor, Mattern, Friedemann, Series Editor, Mitchell, John C., Series Editor, Naor, Moni, Series Editor, Pandu Rangan, C., Series Editor, Steffen, Bernhard, Series Editor, Terzopoulos, Demetri, Series Editor, Tygar, Doug, Series Editor, Fournaris, Apostolos P., editor, Lampropoulos, Konstantinos, editor, and Marín Tordera, Eva, editor

Published
2019
Full Text
View/download PDF

28. Protecting Cloud-Based CIs: Covert Channel Vulnerabilities at the Resource Level

Author

Vateva-Gurova, Tsvetoslava, Manzoor, Salman, Trapero, Ruben, Suri, Neeraj, Hutchison, David, Series Editor, Kanade, Takeo, Series Editor, Kittler, Josef, Series Editor, Kleinberg, Jon M., Series Editor, Mattern, Friedemann, Series Editor, Mitchell, John C., Series Editor, Naor, Moni, Series Editor, Pandu Rangan, C., Series Editor, Steffen, Bernhard, Series Editor, Terzopoulos, Demetri, Series Editor, Tygar, Doug, Series Editor, Fournaris, Apostolos P., editor, Lampropoulos, Konstantinos, editor, and Marín Tordera, Eva, editor

Published
2019
Full Text
View/download PDF

34. A Security Architecture for Railway Signalling

Author

Schlehuber, Christian, Heinrich, Markus, Vateva-Gurova, Tsvetoslava, Katzenbeisser, Stefan, Suri, Neeraj, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Tonetta, Stefano, editor, Schoitsch, Erwin, editor, and Bitsch, Friedemann, editor

Published
2017
Full Text
View/download PDF

35. Privacy-preserving Decentralized Federated Learning over Time-varying Communication Graph

Author

Lu, Yang, Yu, Zhengxin, and Suri, Neeraj

Subjects
FOS: Computer and information sciences, Computer Science - Machine Learning, Computer Science - Cryptography and Security, General Computer Science, Computer Science - Multiagent Systems, Safety, Risk, Reliability and Quality, Cryptography and Security (cs.CR), Machine Learning (cs.LG), Multiagent Systems (cs.MA)
Abstract

Establishing how a set of learners can provide privacy-preserving federated learning in a fully decentralized (peer-to-peer, no coordinator) manner is an open problem. We propose the first privacy-preserving consensus-based algorithm for the distributed learners to achieve decentralized global model aggregation in an environment of high mobility, where participating learners and the communication graph between them may vary during the learning process. In particular, whenever the communication graph changes, the Metropolis-Hastings method [69] is applied to update the weighted adjacency matrix based on the current communication topology. In addition, the Shamir’s secret sharing scheme [61] is integrated to facilitate privacy in reaching consensus of the global model. The paper establishes the correctness and privacy properties of the proposed algorithm. The computational efficiency is evaluated by a simulation built on a federated learning framework with a real-world dataset.

Published
2023

38. Efficient Verification of Program Fragments: Eager POR

Author

Metzler, Patrick, Saissi, Habib, Bokor, Péter, Hesse, Robin, Suri, Neeraj, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Artho, Cyrille, editor, Legay, Axel, editor, and Peled, Doron, editor

Published
2016
Full Text
View/download PDF

41. On the Feasibility of Side-Channel Attacks in a Virtualized Environment

Author

Vateva-Gurova, Tsvetoslava, Luna, Jesus, Pellegrino, Giancarlo, Suri, Neeraj, Diniz Junqueira Barbosa, Simone, Series editor, Chen, Phoebe, Series editor, Du, Xiaoyong, Series editor, Filipe, Joaquim, Series editor, Kara, Orhun, Series editor, Liu, Ting, Series editor, Kotenko, Igor, Series editor, Sivalingam, Krishna M., Series editor, Washio, Takashi, Series editor, Obaidat, Mohammad S., editor, and Holzinger, Andreas, editor

Published
2015
Full Text
View/download PDF

42. PBMC: Symbolic Slicing for the Verification of Concurrent Programs

Author

Saissi, Habib, Bokor, Péter, Suri, Neeraj, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Weikum, Gerhard, Series editor, Finkbeiner, Bernd, editor, Pu, Geguang, editor, and Zhang, Lijun, editor

Published
2015
Full Text
View/download PDF

43. Technical Implementation and Feasibility

Author

Mikkelsen, Gert Læssøe, Damgård, Kasper, Guldager, Hans, Jensen, Jonas Lindstrøm, Luna, Jesus Garcia, Nielsen, Janus Dam, Paillier, Pascal, Pellegrino, Giancarlo, Stausholm, Michael Bladt, Suri, Neeraj, Zhang, Heng, Rannenberg, Kai, editor, Camenisch, Jan, editor, and Sabouri, Ahmad, editor

Published
2015
Full Text
View/download PDF

48. Privacy-preserving Decentralized Federated Learning over Time-varying Communication Graph.

Author

YANG LU, ZHENGXIN YU, and SURI, NEERAJ

Subjects
COMMUNICATION, MACHINE learning, ARTIFICIAL intelligence, ARTIFICIAL neural networks, COMPUTER access control
Abstract

Establishing how a set of learners can provide privacy-preserving federated learning in a fully decentralized (peer-to-peer, no coordinator) manner is an open problem. We propose the first privacy-preserving consensus-based algorithm for the distributed learners to achieve decentralized global model aggregation in an environment of high mobility, where participating learners and the communication graph between them may vary during the learning process. In particular, whenever the communication graph changes, the Metropolis-Hastings method [69] is applied to update the weighted adjacency matrix based on the current communication topology. In addition, the Shamir's secret sharing (SSS) scheme [61] is integrated to facilitate privacy in reaching consensus of the global model. The article establishes the correctness and privacy properties of the proposed algorithm. The computational efficiency is evaluated by a simulation built on a federated learning framework with a real-world dataset. [ABSTRACT FROM AUTHOR]

Published
2023
Full Text
View/download PDF

Catalog

Books, media, physical & digital resources
See catalog results