IBM AI Talks #4: Adversarial Robustness 360 Toolbox For ML

•

0 recomendaciones•332 vistas

The 4th session of AI Trust, Bias, Explainability Series by IBM AI. Date: 8/24, 2020 10am PST Title: Adversarial Robustness 360 Toolbox For ML Website: https://learn.xnextcon.com/event/eventdetails/W20082410 Abstract: Welcome to the "AI Trust, Bias and Explainability" learning series, by IBM AI. In collaboration with IBM team, we host a series of practical introductory sessions to AI trust, bias and explainability. This is the 4th session: Adversarial samples are inputs to Machine Learning models that an adversary has tampered with in order to cause specific misclassifications. It is surprisingly easy to create adversarial samples and surprisingly difficult to defend ML models against them. This poses potential threats to the deployment of ML in security critical applications. In this webinar I will review the state-of-the-art on adversarial samples and discuss recent progress in developing ML models that are robust against adversarial samples. Most time will spent on looking how to use the Adversarial Robustness Toolbox (ART) open source project to evaluate the robustness of ML models under various types of threats. All sessions of the series: Jul 27th - AI Security Privacy-Preserving Machine Learning by IBM AI. Session 1 Aug 10th - Explainable AI Workflows using Python. Session 2 Aug 17th - Understanding and Removing Unfair Bias in ML. Session 3 Aug 24th - Adversarial Robustness 360 Toolbox For ML. Session 4 Aug 31st - Workshop: Explainable AI Workflows. Session 5

Tecnología

1
The Adversarial Robustness
Toolbox
Mathieu Sinn, PhD
Manager AI, Security & Privacy
IBM Research Europe
Dublin, Ireland
AICamp
IBM Series on AI Trust
August 24, 2020

Outline
• Adversarial threats to AI
• The Adversarial Robustness Toolbox
• Resources & Conclusions

But… AI is also surprisingly brittle!
https://art-demo.mybluemix.net/

This does not only apply to images…
“Basketball throw” (72.5%) “Tennis swing” (49.5%)
Original Adversarial
https://github.com/Trusted-AI/adversarial-robustness-
toolbox/blob/main/notebooks/adversarial_action_recognition.ipynb

Financial services:
• Evade fraud detection
Autonomous vehicles:
• Targeted/untargeted
attacks on object
recognition and image
segmentation models
Cybersecurity:
• Evade spam filters,
malware detectors,
network intrusion
detection etc.
Security:
• Disappearance attacks
against CCTV
surveillance
Adversarial Threats to AI
Scenarios
Undermine trust in AI

8
Reports of cybersecurity vulnerabilities
due to evasion attacks against AI in
anti-malware / -virus products.
Such attacks are already happening...

Adversarial Robustness Toolbox (ART)
Repo: https://github.com/Trusted-AI/adversarial-robustness-toolbox
Docs: https://adversarial-robustness-toolbox.readthedocs.io/
Demo: https://art-demo.mybluemix.net
9
Open-source release @ RSA 2018:
Current stats:
• 1.6K GitHub stars
• 450+ forks
• 250+ clones/w
• 1K+ downloads/w
• Python library, 12K lines of code
• State-of-the-art attacks, defences and robustness metrics
Load classifier
model (Keras,
TF, PyTorch etc)
Perform attack
Load ART
modules
Evaluate
robustness
LightGBM

• GitHub
• https://github.com/Trusted-AI/adversarial-robustness-toolbox
• Documentation
• https://adversarial-robustness-toolbox.readthedocs.io
• Slack
• https://ibm-art.slack.com
• Demo
• https://art-demo.mybluemix.net/
• Blog
• https://www.ibm.com/blogs/research/2019/09/adversarial-robustness-360-toolbox-
v1-0
• White paper
• https://arxiv.org/abs/1807.01069
• Tutorial
• http://www.research.ibm.com/labs/ireland/nemesis2018/pdf/tutorial.pdf
Resources & Conclusions
https://www.research.ibm.com/artificial-intelligence/trusted-ai/

• Check Contributions page:
• https://github.com/Trusted-AI/adversarial-robustness-
toolbox/blob/main/CONTRIBUTING.md
• Create github issues for suspected bugs, missing features, ideas for
improvements etc.
• Contribute bug fixes, new features etc. via pull requests to dev branch
• Follow PEP 8 coding style, provide unit tests
• Sign DCO (via ‘-s’ flag) for every commit
ART – How to contribute?

Más contenido relacionado

Más de Bill Liu

What is the most exciting AI news in recent years? AlphaGo! What are key techniques for AlphaGo? Deep learning and reinforcement learning (RL)! What are application areas for deep RL? A lot! In fact, besides games, deep RL has been making tremendous achievements in diverse areas like recommender systems and robotics. In this talk, we will introduce deep reinforcement learning, present several applications, and discuss issues and potential solutions for successfully applying deep RL in real life scenarios. https://www.aicamp.ai/event/eventdetails/W2021042818

Deep Reinforcement Learning and Its Applications

Bill Liu

Website: https://learn.xnextcon.com/event/eventdetails/W20070810 As the COVID-19 pandemic sweeps the globe, big data and AI have emerged as crucial tools for everything from diagnosis and epidemiology to therapeutic and vaccine development. In this talk, we collect and review how big data is fighting back against COVID-19. We also provide a deep diving for two interesting use cases: 1) Use NLP and BERT to answer scientific questions. 2) Covid-19 data lake from Databricks, Google and Amazon Agenda: Introduction Supercomputers for Scientific Research Covid-19 Tracking and Prediction Covid-19 Research and Diagnosis Use Case 1 NLP and BERT to answer scientific questions Use Case 2 Covid-19 Data Lake and Platform

Big Data and AI in Fighting Against COVID-19

Bill Liu

website: https://learn.xnextcon.com/event/eventdetails/W20051110 video: https://www.youtube.com/watch?v=8tG8PJC6oaU In reinforcement learning (RL), an agent learns how to optimize performance solely by collecting experience in the real world or via a simulator. RL is being applied to problems such as decision making, process optimization (e.g., manufacturing and supply chains), ad serving, recommendations, self-driving cars, and algorithmic trading. In this talk, I will discuss RLlib, a reinforcement learning library built on Ray with a strong focus on large-scale execution and scalability, ease-of-use for general users, as well as customizability for developers and researchers. RLlib offers autonomous task-learning via many common RL algorithms and it scales from a laptop to a cluster with hundreds of machines. It is used by dozens of organizations, from startups to research labs to large organizations. You will see RLlib in action with a live demo.

Highly-scalable Reinforcement Learning RLlib for Real-world Applications

Bill Liu

event: https://learn.xnextcon.com/event/eventdetails/W20042918 video: description: Computer Vision has received significant attention over the recent years, both within academia, and industry. As the state-of-the-art rapidly improves, the art-of-the-possible follows , offering innovative forms of computer vision applications for different scenarios. In this talk, Ramine will cover the background and development of computer vision, and demonstrate how to use AWS to build robust, computer vision models to perform object detection and classification. Key Takeaways: Understand the history of Computer Vision Learn how to use Amazon SageMaker to build and Deploy Computer Vision Models How to orchestrate multiple models for implementing a real-world use case

Build computer vision models to perform object detection and classification w...

Bill Liu

Event: https://learn.xnextcon.com/event/eventdetails/W20042010 Video: https://www.youtube.com/channel/UCj09XsAWj-RF9kY4UvBJh_A Modern machine learning techniques are able to learn highly complex associations from data, which has led to amazing progress in computer vision, NLP, and other predictive tasks. However, there are limitations to inference from purely probabilistic or associational information. Without understanding causal relationships, ML models are unable to provide actionable recommendations, perform poorly in new, but related environments, and suffer from a lack of interpretability. In this talk, I provide an introduction to the field of causal inference, discuss its importance in addressing some of the current limitations in machine learning, and provide some real-world examples from my experience as a data scientist at Brex.

Causal Inference in Data Science and Machine Learning

Bill Liu

https://learn.xnextcon.com/event/eventdetails/W20040610 This talk explains how to practically bring the power of convolutional neural networks and deep learning to memory and power-constrained devices like smartphones. You will learn various strategies to circumvent obstacles and build mobile-friendly shallow CNN architectures that significantly reduce the memory footprint and therefore make them easier to store on a smartphone; The talk also dives into how to use a family of model compression techniques to prune the network size for live image processing, enabling you to build a CNN version optimized for inference on mobile devices. Along the way, you will learn practical strategies to preprocess your data in a manner that makes the models more efficient in the real world.

Weekly #106: Deep Learning on Mobile

Bill Liu

Weekly #105: AutoViz and Auto_ViML Visualization and Machine Learning

Bill Liu

AISF19 - On Blending Machine Learning with Microeconomics

Bill Liu

AISF19 - Travel in the AI-First World

Bill Liu

AISF19 - Unleash Computer Vision at the Edge

Bill Liu

AISF19 - Building Scalable, Kubernetes-Native ML/AI Pipelines with TFX, KubeF...

Bill Liu

Toronto meetup 20190917

Bill Liu

Monthly AI Tech Talks in Toronto 2019-08-28 https://www.meetup.com/aittg-toronto The talk will cover the end-to-end details including contextual and linguistic feature extraction, vectorization, n-grams, topic modeling, named entity resolution which are based on concepts from mathematics, information retrieval and natural language processing. We will also be diving into more advanced feature engineering strategies such as word2vec, GloVe and fastText that leverage deep learning models. In addition, attendees will learn how to combine NLP features with numeric and categorical features and analyze the feature importance from the resulting models. The following libraries will be used to demonstrate the aforementioned feature engineering techniques: spaCy, Gensim, fasText and Keras in Python. https://www.meetup.com/aittg-toronto/events/261940480/

Feature Engineering for NLP

Bill Liu

Auto visualization and viml

Bill Liu

Explainability and bias in AI

Bill Liu

An Introduction to Neural Architecture Search

Bill Liu

https://learn.xnextcon.com/event/eventdetails/W19061910 Behaviors in games---and in the real world---are often difficult to program explicitly. Reinforcement learning (RL) has shown success in learning behaviors based on a simple defined reward function that incentivises correct behavior. Unity ML-Agents toolkit enables Unity developers to train reinforcement learning models to control behaviors within their games. Once these models are trained, they can be integrated across platforms into a game build via the Unity Inference Engine. Furthermore, by enabling communication between a Unity build and Python code, ML-Agents enables RL researchers to use Unity games as training environments.

weekly AI tech talk #85 ml-agents Enabling Learned Behaviors with Reinforceme...

Bill Liu

Data stream with cruise control

Bill Liu

AI in linkedin

Bill Liu

Deep natural language processing in search systems

Bill Liu

Más de Bill Liu (20)

Deep Reinforcement Learning and Its Applications

Big Data and AI in Fighting Against COVID-19

Highly-scalable Reinforcement Learning RLlib for Real-world Applications

Build computer vision models to perform object detection and classification w...

Causal Inference in Data Science and Machine Learning

Weekly #106: Deep Learning on Mobile

Weekly #105: AutoViz and Auto_ViML Visualization and Machine Learning

AISF19 - On Blending Machine Learning with Microeconomics

AISF19 - Travel in the AI-First World

AISF19 - Unleash Computer Vision at the Edge

AISF19 - Building Scalable, Kubernetes-Native ML/AI Pipelines with TFX, KubeF...

Toronto meetup 20190917

Feature Engineering for NLP

Auto visualization and viml

Explainability and bias in AI

An Introduction to Neural Architecture Search

weekly AI tech talk #85 ml-agents Enabling Learned Behaviors with Reinforceme...

Data stream with cruise control

AI in linkedin

Deep natural language processing in search systems

Último

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

When you’re building (micro)services, you have lots of framework options. Spring Boot is no doubt a popular choice. But there’s more! Take Quarkus, a framework that’s considered the rising star for Kubernetes-native Java. It always depends on what's best for your situation, but how to choose the best solution if you're comparing 2 frameworks? Both Spring Boot and Quarkus have their positives and negatives. Let us compare the two by live coding a couple of common use cases in Spring Boot and Quarkus. After this talk, you’ll be ready to get started with Quarkus yourself, and know when to select Quarkus or Spring Boot.

Spring Boot vs Quarkus the ultimate battle - DevoxxUK

Jago de Vreede

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Zilliz

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

FWD Group - Insurer Innovation Award 2024

The Digital Insurer

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

Architecting Cloud Native Applications

WSO2

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

AXA XL - Insurer Innovation Award Americas 2024

The Digital Insurer

The action of the next cyber saga takes place in the mystical lands of the Asia-Pacific region, where the main characters began their digital activities in the middle of 2021 and qualitatively strengthened it in 2022. Corporate espionage, document theft, audio recordings, and data leaks from messaging platforms were all a matter of one day for Dark Pink. Their geographical focus may have started in the Asia-Pacific region, but their ambitions knew no bounds, targeting a European government ministry in a bold move to expand their portfolio. Their victim profile was as diverse as a UN meeting, targeting military organizations, government agencies, and even a religious organization. Because discrimination is not a fashionable agenda. In the world of cybercrime, they serve as a reminder that sometimes the most serious threats come in the most unassuming packages with a pink bow.

Cyberprint. Dark Pink Apt Group [EN].pdf

Overkill Security

ICT role in 21st century education and its challenges

rafiqahmad00786416

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

Exploring Multimodal Embeddings with Milvus

Zilliz

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

Keynote 2: APIs in 2030: The Risk of Technological Sleepwalk Paolo Malinverno, Growth Advisor - The Business of Technology Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...

apidays

Following the popularity of “Cloud Revolution: Exploring the New Wave of Serverless Spatial Data,” we’re thrilled to announce this much-anticipated encore webinar. In this sequel, we’ll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you’re building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

MS Copilot expands with MS Graph connectors

Nanddeep Nachan

IBM AI Talks #4: Adversarial Robustness 360 Toolbox For ML

1. 1 The Adversarial Robustness Toolbox Mathieu Sinn, PhD Manager AI, Security & Privacy IBM Research Europe Dublin, Ireland AICamp IBM Series on AI Trust August 24, 2020

2. Outline • Adversarial threats to AI • The Adversarial Robustness Toolbox • Resources & Conclusions

3. “AI is the new electricity”

4. But… AI is also surprisingly brittle! https://art-demo.mybluemix.net/

5. This does not only apply to images… “Basketball throw” (72.5%) “Tennis swing” (49.5%) Original Adversarial https://github.com/Trusted-AI/adversarial-robustness- toolbox/blob/main/notebooks/adversarial_action_recognition.ipynb

6. Adversarial Threats to AI

7. Financial services: • Evade fraud detection Autonomous vehicles: • Targeted/untargeted attacks on object recognition and image segmentation models Cybersecurity: • Evade spam filters, malware detectors, network intrusion detection etc. Security: • Disappearance attacks against CCTV surveillance Adversarial Threats to AI Scenarios Undermine trust in AI

8. 8 Reports of cybersecurity vulnerabilities due to evasion attacks against AI in anti-malware / -virus products. Such attacks are already happening...

9. Adversarial Robustness Toolbox (ART) Repo: https://github.com/Trusted-AI/adversarial-robustness-toolbox Docs: https://adversarial-robustness-toolbox.readthedocs.io/ Demo: https://art-demo.mybluemix.net 9 Open-source release @ RSA 2018: Current stats: • 1.6K GitHub stars • 450+ forks • 250+ clones/w • 1K+ downloads/w • Python library, 12K lines of code • State-of-the-art attacks, defences and robustness metrics Load classifier model (Keras, TF, PyTorch etc) Perform attack Load ART modules Evaluate robustness LightGBM

10. • GitHub • https://github.com/Trusted-AI/adversarial-robustness-toolbox • Documentation • https://adversarial-robustness-toolbox.readthedocs.io • Slack • https://ibm-art.slack.com • Demo • https://art-demo.mybluemix.net/ • Blog • https://www.ibm.com/blogs/research/2019/09/adversarial-robustness-360-toolbox- v1-0 • White paper • https://arxiv.org/abs/1807.01069 • Tutorial • http://www.research.ibm.com/labs/ireland/nemesis2018/pdf/tutorial.pdf Resources & Conclusions https://www.research.ibm.com/artificial-intelligence/trusted-ai/

11. • Check Contributions page: • https://github.com/Trusted-AI/adversarial-robustness- toolbox/blob/main/CONTRIBUTING.md • Create github issues for suspected bugs, missing features, ideas for improvements etc. • Contribute bug fixes, new features etc. via pull requests to dev branch • Follow PEP 8 coding style, provide unit tests • Sign DCO (via ‘-s’ flag) for every commit ART – How to contribute?

IBM AI Talks #4: Adversarial Robustness 360 Toolbox For ML

Recomendados

Recomendados

Más contenido relacionado

Más de Bill Liu

Más de Bill Liu (20)

Último

Último (20)

IBM AI Talks #4: Adversarial Robustness 360 Toolbox For ML