Collaborative Research: CCRI: New: Medium: A Development and Experimental Environment for Privacy-preserving and Secure (DEEPSECURE) Machine Learning

合作研究：CCRI：新：媒介：隐私保护和安全（DEEPSECURE）机器学习的开发和实验环境

• 批准号: 2245250
• 负责人: Hongyi Wu
• 金额: $ 78万
• 依托单位: University of Arizona
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2022
• 资助国家: 美国
• 起止时间: 2022-10-01 至 2024-09-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2245250&HistoricalAwards=false
• 关键词: Collaborative; Research; CCRI; New; Medium

While machine learning (ML) is embraced as an important tool for various science, engineering, medical, finance, and homeland security applications, it is becoming an increasingly attractive target for cybercriminals. DEEPSECURE is a first-of-its-kind development and experimental platform to support secure and privacy-preserving ML research. With its novel modular design integrated with fully customizable function blocks and sample modules, DEEPSECURE is a game-changing tool to effectively support research in this emerging field by enabling fast design, prototyping, evaluation, and re-innovation of trust-worthy ML applications. It enables a variety of compelling new research projects that focus on ML security and privacy, leading to breakthroughs to protect ML systems and accelerating their development and widening their adoption. It will contribute significantly to the protection of the future cyber and physical world and safeguard human society. DEEPSECURE receives strong community support from over 20 key stakeholders across the country. The project includes significant efforts for fostering and sustaining an ML security and privacy research community, including monthly virtual open forums to provide a regular update to and seek feedback from the community, quarterly advisory board meetings, annual symposiums, and a training workshop series. The project includes specific measures and plans for inspiring the participation of underrepresented groups and infusing diversity and inclusion in all DEEPSECURE events and activities. The project output includes an open-source and easy-to-use learning platform for curriculum development and workforce training. To support building a sustainable workforce development pipeline, the project team participates in the existing annual GenCyber summer camps for K-12 students and a Cyber Saturday series to introduce cybersecurity and AI career paths and educational resources to K-12 school counselors, teachers, students, and parents.Recent development in privacy-preserving and secure ML draws expertise from both ML and security/privacy to tackle the multi-faceted problem. However, the research community is facing fundamental challenges in this emerging area due to its interdisciplinary nature. On the one hand, although deep learning frameworks such as Pytorch and Tensorflow have been made widely available, a critical hurdle faced by ML researchers is the steep learning curve to effectively use security techniques and libraries to tackle ML security and privacy problems. On the other hand, while the security community has developed highly efficient cryptographic libraries, it remains nontrivial to integrate them into deep learning models to achieve a computation efficiency suited for practical applications. The overarching goal of the project is to close the gap by developing DEEPSECURE, which integrates a spectrum of essential functions and building blocks that are ready-to-use to flatten the learning curve for researchers coming from both ML and security/privacy communities. At the same time, DEEPSECURE is fully customizable and scalable, enabling deep and fundamental research toward privacy-preserving and secure ML. To meet the overarching goal, specific project objectives include: (1) acquiring a scalable and re-configurable compute environment based on the latest Dell, AMD, and Nvidia technologies to establish the DEEPSECURE hardware infrastructure across the campuses of Old Dominion University and University of Buffalo; (2) developing a new software platform to support DEEPSECURE SDE (Software Development Environment) and MEC (Multi-user Experimental Chamber). The platform is integrated with PyTorch to enable great usability for both beginners and advanced researchers and feature a scalable and customizable modular framework with seamlessly integrated libraries, function blocks, and sample modules; (3) promoting DEEPSECURE across the nation to ensure broad participation, collaboration, and sharing; (4) leveraging DEEPSECURE to foster a long-lasting, self-sustainable ML security and privacy research community that engages all stakeholders in a sustained and ongoing way; and last but not least, (5) educating and training diverse cybersecurity workforce to safeguard the future intelligent cyber systems.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

虽然机器学习（ML）被视为各种科学、工程、医疗、金融和国土安全应用的重要工具，但它正成为网络犯罪分子越来越有吸引力的目标。DEEPSECURE是首个支持安全和隐私保护ML研究的开发和实验平台。凭借其新颖的模块化设计与完全可定制的功能模块和样本模块集成，DEEPSECURE是一个改变游戏规则的工具，通过实现可信赖的ML应用程序的快速设计，原型设计，评估和再创新，有效地支持这一新兴领域的研究。它支持各种引人注目的新研究项目，这些项目专注于机器学习安全和隐私，从而在保护机器学习系统、加速其发展和扩大其采用方面取得突破。它将为保护未来的网络和物理世界、维护人类社会做出重要贡献。DEEPSECURE得到了来自全国20多个关键利益相关者的强大社区支持。该项目包括促进和维持机器学习安全和隐私研究社区的重大努力，包括每月的虚拟开放论坛，定期向社区提供更新并寻求反馈，季度咨询委员会会议，年度专题讨论会和培训研讨会系列。该项目包括具体措施和计划，以鼓励代表性不足的群体参与，并在所有DEEPSECURE事件和活动中注入多样性和包容性。项目成果包括一个开源和易于使用的学习平台，用于课程开发和劳动力培训。为了支持建立可持续的劳动力发展管道，项目团队参加了现有的K-12学生年度GenCyber夏令营和Cyber Saturday系列活动，向K-12学校辅导员、教师、学生和家长介绍网络安全和人工智能职业道路和教育资源。隐私保护和安全机器学习的最新发展从机器学习和安全/隐私中汲取专业知识，以解决多方面的问题。然而，由于这一新兴领域的跨学科性质，研究界正面临着根本性的挑战。一方面，尽管深度学习框架（如Pytorch和Tensorflow）已经广泛使用，但ML研究人员面临的一个关键障碍是，要有效地使用安全技术和库来解决ML安全和隐私问题，学习曲线非常陡峭。另一方面，虽然安全社区已经开发出高效的加密库，但将它们集成到深度学习模型中以实现适合实际应用的计算效率仍然是很重要的。该项目的总体目标是通过开发DEEPSECURE来缩小差距，DEEPSECURE集成了一系列基本功能和构建模块，可以随时使用，为来自ML和安全/隐私社区的研究人员提供平坦的学习曲线。同时，DEEPSECURE是完全可定制和可扩展的，能够对隐私保护和安全机器学习进行深入和基础的研究。为实现总体目标，具体项目目标包括：(1)获得基于最新戴尔、AMD和Nvidia技术的可扩展和可重新配置的计算环境，以在Old Dominion University和University of Buffalo校园建立DEEPSECURE硬件基础设施；(2)开发支持DEEPSECURE SDE（软件开发环境）和MEC（多用户实验室）的新软件平台。该平台与PyTorch集成，为初学者和高级研究人员提供了极大的可用性，并具有可扩展和可定制的模块化框架，具有无缝集成的库，功能块和示例模块；(3)在全国范围内推进DEEPSECURE，确保广泛参与、协作和共享；(4)利用DEEPSECURE建立一个持久的、自我可持续的机器学习安全和隐私研究社区，以持续和持续的方式吸引所有利益相关者；最后但并非最不重要的是，(5)教育和培训多样化的网络安全劳动力，以保护未来的智能网络系统。该奖项反映了美国国家科学基金会的法定使命，并通过使用基金会的知识价值和更广泛的影响审查标准进行评估，被认为值得支持。