Abstract
Sequential decision-making tasks often require satisfaction of multiple, partially-contradictory objectives. Existing approaches are monolithic, where a single policy fulfills all objectives. I will present auction-based scheduling, a new modular framework for multi-objective sequential decision-making. In this framework, each objective is fulfilled using a separate and independent policy. The policies are then composed through a novel run-time composition mechanism, where at each step, they need to bid from pre-allocated budgets for the privilege of choosing the next action. The bidding encourages the policies to adjust their bids according to their urgencies to act, and whoever bids the highest gets scheduled first. We study the following decentralized synthesis problem: How to compute bidding-equipped policies whose composition will simultaneously fulfill all objectives? I will present solutions of the decentralized synthesis problem for path planning on finite graphs with two temporal objectives.

Bio
Kaushik Mallik is a postdoctoral researcher at the Institute of Science and Technology Austria (ISTA). His research interests are broadly in formal verification and synthesis of reactive software. He received the 2023 ETAPS Doctoral Dissertation Award, nominations for best paper awards in HSCC and TACAS, and a number of merit-based fellowships during his bachelor’s and master’s studies. He holds B. Tech (2012) in Electrical Engineering from Meghnad Saha Institute of Technology (India), M. Tech (2015) in System and Control from IIT Roorkee (India), and Dr. rer. nat. (PhD, 2022) in Computer Science from RPTU Kaiserslautern (Germany).

Photo provided by speaker

Abstract
Over the last two decades, cache attacks have emerged as a significant threat to shared computing. At their core, cache attacks exploit minute timing variation to query the state of a cache in the computer. From this cache state, the attacker can infer secret data processed by victim software that uses the shared cache. As these attacks often measure minute variations, at the order of few nanoseconds, multiple proposed defences aim at depriving attackers of high-resolution clocks.
In this talk we show the futility of such attempts. We first show that coarse-grained cache attack can retrieve sensitive information even in the absence of high-resolution timers. We then delve deeper into the nature of cache attacks, demonstrating that they allow arbitrary computation on cache state. Finally, we show how attackers can exploit this observation to implement high-frequency, high-resolution cache attacks without using high-resolution timers.

Bio
Yuval Yarom is a professor at Ruhr University Bochum, where he leads the Chair for Computer Security. He earned his Ph.D. in Computer Science from the University of Adelaide in 2014, and an M.Sc. in Computer Science and a B.Sc. in Mathematics and Computer Science from the Hebrew University of Jerusalem in 1993 and 1990, respectively. In between he has been the Vice President of Research in Memco Software and a co-founder and Chief Technology Officer of Girafa.com.
Yuval’s research explores the security of the interface between the software and the hardware. In particular, he is interested in the discrepancy between the way that programmers think about software execution and the concrete execution in modern processors. He works on identifying micro-architectural vulnerabilities, and on exploitation and mitigation techniques.

Photo © Hilary Brooks

Short bio:
Dr. Sebastian Tschiatschek is assistant professor at the University of Vienna.

He is part of the research group for Data Mining and Machine Learning, leading the work group for Probabilistic and Interactive Machine Learning.

He is also an alumni of TU Graz.

Abstract:

Reinforcement learning has been successfully used for training AI agents when given clearly defined reward signals. However, reinforcement learning can suffer from high sample complexity and is challenging to use in settings in which the reward signal is hard to specify, e.g., for training personal agents that should maximize a human-defined reward function. We investigate imitation learning and reinforcement learning from human feedback which allows us to avoid the specification of a reward function and can drastically reduce sample complexity. Inspired by real-world applications, we particularly study settings in which there is a mismatch between the human providing demonstrations or feedback and the learning AI agent, e.g., in terms of observations, capabilities, or constraints. Our insights emphasize the need for adaptation of the human and the AI agent to achieve the best alignment regarding the human’s goals. Furthermore, we propose practical algorithms to perform this adaptation and sample efficient approaches for learning about rewards and constraints.

Photo: ©University of Vienna

Abstract:
Secure two-party computation allows two parties to securely compute a function on their respective private inputs. It allows to preserve privacy in applications that involve a client and a single server, and in settings where private data is outsourced to two non-colluding servers. In this talk, I will give an overview on recent advances in the area of secure two-party computation. In particular, I will focus on the setting with semi-honest parties, which allows to construct the most efficient protocols. I will summarize three recent research results from the ENCRYPTO group: First, circuit synthesis and secure evaluation of circuits should be considered together to not leak private information when evaluating malformed circuits with popular instantiations of Yao’s garbled circuits protocol (JoC’23). In the area of secret-sharing based protocols, ABY2.0 (USENIX Security’21) allows highly efficient secure evaluation of Boolean circuits with multi-input AND gates and vector products, and FLUTE (IEEE S&P’23) extends these results to multi-input lookup tables. Among many other applications, these protocols substantially improve efficiency of privacy-preserving machine learning.

Short Bio:
Thomas Schneider is full professor for Cryptography and Privacy Engineering in the Department of Computer Science at Technical University of Darmstadt, Germany. Before, he was independent research group leader at TU Darmstadt (2012-2018), did a PhD in IT Security at Ruhr-University Bochum (2008- 2011), and wrote his Master thesis during a research internship at Nokia Bell Labs, NJ, USA (2007). His research focuses on privacy, cryptographic protocols, applied cryptography, and computer security. He heads the Cryptography and Privacy Engineering Group (ENCRYPTO), whose mission is to demonstrate that privacy can be efficiently protected in real-world applications. For this, his group combines applied cryptography and algorithm engineering to develop cryptographic protocols and tools for protecting sensitive data and algorithms. For his research on cryptography and privacy engineering, he was awarded with an ERC Starting Grant 2019 and an ERC Consolidator Grant 2023. See https://encrypto.de/tschneider for more details.

Photo copyright: TU Darmstadt

We present our new open bachelor’s thesis topics and award prizes to excellent students who contributed to scientific publications this past year.

If you’re interested in joining us for your bachelor’s thesis in security, this is the best way to get an impression of our topics as well as how a bachelor’s thesis at IAIK works: You’ll hear about our research areas and current hot topics, our Bachelor@IAIK program where you can work on your thesis together with your fellow students in one of our offices if you like, and maybe you’ll get to know your supervisor while chatting along.

The event will also be the kick-off lecture in Introduction to Scientific Working (ISW) where you will be able to choose your preferred topic!   

We are looking forward to meeting you!