Machine learning for adversarial environments

SUPR uses JavaScript for certain functions. We cannot guarantee that you will be able to use the system with JavaScript disabled.

Dnr:

NAISS 2025/5-650

Type:

NAISS Medium Compute

Principal Investigator:

György Dán

Affiliation:

Kungliga Tekniska högskolan

Start Date:

2025-12-01

End Date:

2026-12-01

Primary Classification:

10202: Information Systems (Social aspects at 50804)

Webpage:

https://people.kth.se/~gyuri

Allocation

Centre Storage at NSC: 500 GiB
Tetralith at NSC: 30 x 1000 core-h/month

Abstract

The project investigates robust machine learning algorithms in adversarial environments. Motivated by the well known vulnerability of deep neural networks to norm-bounded perturbation attacks and physically realizable attacks, the objective of the project is to develop algorithms and methods for detecting attacks combining Bayesian inference with sequential detection, and to use these algorithms and methods for developing effective methods and frameworks for incident response automation.