As Machine Learning is increasingly integrated in many applications, including safety critical ones such as autonomous cars, robotics, visual authentication and voice control, wrong predictions can have a significant influence on individuals and groups. Advances in prediction accuracy have been impressive, and while machine learning systems still can make rather unexpected mistakes on relatively easy examples, the robustness of algorithms has also steadily increased.

However, many models, and specifically Deep Learning approaches and image analysis, are rather susceptible to adversarial attacks. These attacks are e.g. in the form of small perturbations that remain (almost) imperceptible to human vision, but can cause a neural network classifier to completely change its prediction about an image, with the model reporting a very high confidence on the wrong prediction. A strong form of attack are so-called backdoors, where a specific key is embedded into a data sample, to trigger a pre-defined class prediction in a controlled manner.

This talk will give an overview on various attacks (backdoors, evasion, inversion), and will discuss how they can be mitigated.

Go to the Deep Learning Meetup website for the full schedule.

By reason of the Vienna library’s data breach, senior researcher Johanna Ullrich has been interviewed by Austrian Broadcasting (ORF).

You can see the interview in today’s Wien heute at 7 p.m. on ORF2.
ORF2 Program

Read more

Bernhard Garn (https://matris.sba-research.org/team/bgarn/) from SBA’s MaTRIS research group (https://matris.sba-research.org/) gave an invited talk titled “Algebraic Modelling of Covering Arrays” in the seminar of the algebra research group of the Institute of Discrete Mathematics and Geometry of TU Vienna.

The talk focused on how algebraic techniques can be used to create and reason about covering arrays, which are mathematical structures that are used in a branch of software testing called combinatorial testing to create test sets and concluded with a brief introduction to combinatorial testing. The talk was well received and attended by 10 faculty members from TUW.

A group of highly motivated SBA staff completed the 6K run all across the Vienna zoo on June 13, 2019.

50% of the application fees for the run will be donated to children suffering from pulmonary disease whilst the other 50% go into expansion of zoo infrastructure and animal care.

We look forward to participating in the 9th zoo run in 2020.
Make sure to join us!

Real artificial intelligence and cyber crime – strong defense or mass destruction weapon?
This year´s cyber crime forum targets prevention 4.0 and awareness trainings, risk management 2.0, blockchain technology, security by design, legal issues and many other topics.

Agenda and Details

This weekend SBA Research sponsored the first security related FreeBSD Hackathon! FreeBSD hackers from seven countries met to harden FreeBSD, improve documentation and discuss new features.

Beside that, attendees got to know each other better (i.e. matching IRC nick names to faces) and had a lot of fun!

Twitter
More information

A big thanks to Axel Thoß from PWC for presenting the topic: Cyberangriffe – Haftung von Unternehmen und deren Repräsentanten. We will announce our next Meetup in the days to come!

Stefan Jakoubi speaks about detection, response and recovery, common sense, regulations and standards at “Situational Awareness in IT – Compulsory or Secondary?” on June 26, 2019.

Agenda and Details

Jovan Zivanovic from SBA’s MaTRIS research group (https://matris.sba-research.org/) attended the 14th International Workshop on Automation of Software Test (http://ast2019.isti.cnr.it), in conjunction with ICSE 2019.

Jovan Zivanovic presents the paper ‘Automated Combinatorial Testing for Detecting SQL Vulnerabilities in Web Applications (Dimitris E. Simos (SBA Research), Jovan Zivanovic (SBA Research) and Manuel Leithner (SBA Research))’

Contributions from this paper include three new attack grammars used for exploiting SQL Injections, a fully automated web application vulnerability scanner (for SQL Injections). This research lead to reproduction of known vulnerabilities in real world web applications.