BC SCIENCE
Saved by @ThomassRichards

Next up at #enigma2021, Sanghyun Hong will be speaking about "A SOUND MIND IN A VULNERABLE BODY: PRACTICAL HARDWARE ATTACKS ON DEEP LEARNING"

(Hint: speaker is on the

 In recent years ML models have worked from research labs to production, which makes ML security important. Adversarial ML research studies how to mess with ML
For example by messing with the training data (c.f. Tay which became super-racist super-fast) or by foiling ML models by changing inputs in ways humans can't see.
Prior work considers ML models in a standalone, mathematical way
* looks at the robustness in an isolated manner
* doesn't look at the whole ecosystem and how the model is used -- ML models are running in real hardware with real software which has real vulns!
This talk focuses on hardware-level vulnerabilities. This is particularly interesting because these can break cryptographic guarantees (because those are outside of their threat models)
e.g. fault injection attacks, side-channel attacks
Recent work targets The Cloud
* co-location of VMs from different users
* weak attackers with less subtle control

The cloud providers try to secure things, e.g. protections against Rowhammer
But can you use the weak attacks left after mitigations deployed by cloud compute providers?
DNNs are resilient to numerical perturbations: this is used both to make things more efficient (e.g. pruning) but also in security it's really hard to make accuracy drop

... BUT this focuses on the average or best case, not the worst cast!
What happens when you can mess with the memory at one of these steps?
* negligible effect on the average case accuracy
* but flipping one bit can make significant amount of damage for particular queries

How much damage can a single bit flip cause?
Try it out!
tl;dr in general, one bit flip can really mess with your model! (Looked for the worst bit to flip)
Well, can you use this? There's a lot less control in real life

Some strong attackers might be able to hit an "achilles" bit (one that's really going to mess with the model), but weaker attackers are going to hit bits more randomly.
So they tried it out!
tl;dr running a pretty weak Rowhammer attack is enough to mess with a ML model being trained.
How about side-channel attacks?

The attacker might want to get their hands on fancy DNNs which are considered trade secrets and proprietary to their creators. They're expensive to make! They need good training data! People want to protect them!
Prior work required that the ML-model-trainer uses an off-the-shelf architecture. But people often don't for the fancy models. So what this work does [... if I'm following correctly] is to basically guess from a lot of architecture possibilities and then filter it down
Why is this possible? Because there are regularities in deep-learning calculation.

Does this work? Apparently so: they tried it out using a cache side-channel attack and got back the architectures of the fancy DNN back.
This needs more study
* we need to understand the worst-case ML fails under hardware attack
* don't discount the ability of an attacker with access to a weak hardware attack to cause a disproportionate amount of damage
You can find a writeup of this research at https://t.co/qUx8nAHW52

[end of talk]

More from Lea Kissner

Lea Kissner
Lea Kissner
@LeaKissner
In more Securing Democracy at #enigma2021, @ChrFolini talking about "THE ADVENTUROUS TALE OF ONLINE VOTING IN

Switzerland is a direct democracy where citizens get to vote at least 4x/year, with a lot of mail-in voting. We have a long history of online voting.

Disclaimer: THIS IS NOT SWEDEN.

[I get the picture that @ChrFolini has had to explain the difference several times.]


Process around mail-in ballots.

[tl;dr it's very complicated and wasn't threat-modeled until recently]


But the in-person ballots are complicated, too!


Most security folks don't think that we can't make a secure online voting system.

@ChrFolini says this is because of encryption
[Note: this is not the main reason that a lot of people cite -- we're more worried about things like malware but it's complicated]
WORLD
Lea Kissner
Lea Kissner
@LeaKissner
Next up in Privacy Technology at #enigma2021, Kelly Huang from @ethyca speaking about "GONE, BUT NOT "FORGOTTEN"—TECHNICAL & PRACTICAL CHALLENGES IN OPERATIONALIZING MODERN PRIVACY

Just imagine there's a global pandemic forcing everyone to stay home and buy their stuff over the internet. And you've been working on your sanitization-on-demand startup. You've got more users than you can count! ... literally, because your data's all over.

Now you're a multi-national international country with privacy issues because your information is all over the place.

Now a user writes to request you delete their data. Where is it? How do you do that? Who's responsible for privacy in your business.

How do you operationalize privacy rights?

Primary stakeholders:
* Legal
* Business
* Engineering

We spend a lot of time on Twitter analyzing the legal rulings, but it's harder where the "rubber meets the code" 🥁
TECH
Advertisement
Lea Kissner
Lea Kissner
@LeaKissner
Last up in Privacy Tech for #enigma2021, @xchatty speaking about "IMPLEMENTING DIFFERENTIAL PRIVACY FOR THE 2020

Differential privacy was invented in 2006. Seems like a long time but it's not a long time since a fundamental scientific invention. It took longer than that between the invention of public key cryptography and even the first version of SSL.


But even in 2020, we still can't meet user expectations.
* Data users expect consistent data releases
* Some people call synthetic data "fake data" like
"fake news"
* It's not clear what "quality assurance" and "data exploration" means in a DP framework


We just did the 2020 US census
* required to collect it by the constitution
* but required to maintain privacy by law

But that's hard! What if there were 10 people on the block and all the same sex and age? If you posted something like that, then you would know what everyone's sex and age was on the block.
TECH , TEACH
Lea Kissner
Lea Kissner
@LeaKissner
We're kicking off the Privacy Tech session at #enigma2021 with Mitch Negus speaking about "NO DATA, NO PROBLEM—GIVING NUCLEAR INSPECTORS BETTER TOOLS WITHOUT REVEALING STATE

A nuclear catastrophe hasn't occurred... yet. So we need to stay vigilant. Nuclear inspectors go in according to treaties to check what's going on and check compliance with treaty rules.

But as sophisticated analytics become more common, states will only want to share the minimum amount of information necessary under the treaty.

But perhaps we can use MPC -- secure multi-party computation

Yao's garbled circuits were first demonstrated on the millionaire's problem -- figuring out who's richer without revealing actual amounts.

Used for other things like cryptocurrency these days.

Can we use this for nuclear inspection?

MPC can be used to compute anything computed by a computer [but it's expensive!]
TECH
Lea Kissner
Lea Kissner
@LeaKissner
Last talk about Securing Democracy at #enigma2021: @jackhcable speaking about "THE FULL STACK PROBLEM OF ELECTION

Let's imagine that elections use all the security measures security people have been advocating: risk-limiting audits, paper ballots, etc. Would people trust the elections more?

Jack would argue no. Most people don't understand this stuff and most of the claims people are making can't be disproven. And are massively bogus already.

Georgia did a full recount on paper ballots and it very much didn't stop people from doubting the election!

Are election security results in vain? The point of election security is to convince the loser they lost.

No! Have to focus on the whole stack, from election infrastructure to campaigns to people and mis/dis-informaton


One takeaway from the talk: the parts of the stack must work in tandem. Can't fight misinformation in a vacuum, but must build on other election security measures.
POLITICS

More from Science

Prof. Gavin Yamey MD MPH
Prof. Gavin Yamey MD M...
@GYamey
I want to share my thoughts, as someone who has been so alarmed by the so-called "dissident" scientists like Gupta, Heneghan, Kuldorff, Bhattacharya, & Ioannidis who consider themselves brave Galileos unfairly treated by "establishment scientists." I will try not to swear. 1/n


I want to talk about 3 things:
‼️Their fringe views are inhumane, unethical junk science that promotes harm
‼️They complain that they've been marginalized but this is simply untrue
‼️I am sick of people telling me we have to "listen to both sides." There aren't 2 sides here 2/n

These 'dissident' scientists have consistently downplayed COVID-19, urging policymakers not to take aggressive control measures. They claim it is not a serious threat. Gupta even went on TV saying people under 65 shouldn't worry about it!

RECEIPTS

They have consistently argued that policymakers should just let the virus rip, in an attempt to reach herd immunity by natural infection. Kuldorff *continues* to argue for this even now that we have many highly effective, safe vaccines.


We've never controlled a deadly, contagious pandemic before by just letting the virus spread, as this approach kills & disables too many people. In Manaus, Brazil, 66% of the city was infected & an astonishing *1 in 500* people died of COVID-19
SCIENCE
foone
foone
@Foone
I think I've permanently confused KiCAD
it's reminding me that I need to connect this capacitor to Nothing


attach this end to ground, this end to +5v, and this end to THE VOID

I accidentally made all the capacitors gigantic and they won't fit anymore

halp


gonna design an ISA card using some of these

it's gonna be tricky to fit in the case


that's from this
SCIENCE
Advertisement
Mark Tomasovic
Mark Tomasovic
@MarkTomasovic
What is carbon capture? And how does it work?

While carbon capture is regularly discussed in the media, no one really ever explains what it is.

Below is a quick thread discussing the technology behind traditional carbon capture 👇

Carbon capture is broadly the "capture" of CO2 emissions from a power plant or other type of industrial facility.

Technology is connected to the "tailpipes" of these facilities and is used to remove CO2 from the plant exhaust.

Once the CO2 is removed from the plant exhaust, it is typically pressurized and sent under ground for permanent storage.

This step is called "sequestration" and is why experts often talks about "carbon capture and sequestration" or "CCS".

So how do you "capture" the CO2 molecules from exhaust?

Currently, one of the most economic forms of carbon capture is called "amine-based" capture.

An "amine" is a special liquid chemical which selectively grabs on to CO2 molecules.

To get the amine to grab on to the CO2, the amine is put into the top of a large column, while the exhaust is put into the bottom of the column.

The exhaust bubbles up through the column, and the amine drips down.

The liquid amine and gas exhaust mix in the column.
SCIENCE
Black Hole Group
Black Hole Group
@BlackHolesUSP
Today, we are bringing other exciting results involving black holes and AI. We released a new paper:

"Black Hole Weather Forecasting with Deep Learning: A Pilot Study"

Work by Roberta Duarte (@import_robs), Rodrigo Nemmen (@nemmen) and João Paulo Navarro (from @NVIDIABrasil).

The authors used deep learning to simulate the dynamics of gas accreting onto a black hole, i.e., black hole weather forecasting.

They trained the model (U-Net) with frames from numerical solutions of the hydrodynamical equations.

Numerical simulations are time-consuming. A simple simulation can take as long as 7 days to finish. If we go with more complex simulations, this time may increase.

We want to investigate if deep learning can be a new method to simulate accurately in less time!


In the paper, they discussed two examples:

1- The model simulating only one system after learning only from this system
2- The model simulating an unseen system after training with several systems with different initial conditions

In the first example, they trained the model with a single system and analyzed how the model simulates by iterative predictions.

The result is that the model can simulate up to 8e4 gravitational time accurately with a speed-up of 30000x faster!
SCIENCE
Wonder of Science
Wonder of Science
@wonderofscience
These 'Beach Animals' were created by Theo Jansen as a fusion of art and engineering. The kinetic structures walk on their own and get all their energy from the


Watch the full video on Youtube:
SCIENCE

You May Also Like

Karol296
Karol296
@Karol296
Wracając do sedna dzisiejszego zamieszania z artykułem autosportu / motorsportu. Kubica mówi w nim, że podejmie swoją decyzję w ciągu kilku dni. Rozważa opcję z Williamsem lub posadę kierowcy symulatora w Ferrari. Więc za kilka dni dowiemy się co go czeka za rok. #F1PL

Autosport / motorsport zmienił nagłówek swoje tekstu, bo pierwotnie sugerował on że Kubica jest numerem jeden na liście Williamsa na tytuł mówiący tylko tym, że nadal jest na liście kandydatów. Zrobili to po interwencji zespołu. Same wypowiedzi Kubicy z wywiadu się nie zmieniły.

Trudno powiedzieć czy autor się pośpieszył i wyciągnął inne wnioski niż powinien, a może wie coś więcej, ale nie mógł tego otwarcie napisać. Słowa Kubicy brzmią jednak jednoznacznie: decyzję podejmie w ciągu kilku dni.
SPORT
Jaya_Upadhyaya
Jaya_Upadhyaya
@Jayalko1
NARHARI AND BHAGWAN PANDURANG/VITTHAL

Once a goldsmith by the name of Narhari lived in Pandharpur. He excelled in his craft. He had vowed not to look at Pandurang or visit his mandir ever, as he was a Shiva Bhakt.
One day, a wealthy merchant visited him.


He wanted a gold girdle studded with precious gems, to be made for Prabhu Vitthal. Narhari refused to make it as it was for Vitthal.
After many requests, he agreed to make the girdle but asked the merchant to bring the measurement from the mandir as he himself would not go there


The measurement was given n he made the girdle. When the girdle was put on Vitthal, it was loose. Narhari had to shorten it. Now the girdle became tight. So Narhari was forced to take measurement on his own. He had to go to the mandir but went blindfolded to avoid seeing Vitthal


In the Mandir, when blindfolded Narhari touched Vitthal, he felt as if he was touching Shiva with matted hair, the moon, snake in His neck and Trishul in His hand. Ecstatic with joy, he removed the blindfold to see Shiva but he found the murti of Vitthal with Rukmini there.


He realised the truth that there was no difference between Vitthal and Shiva. Narhari at once fell at the feet of Panduranga. He then took the measurement of the waist of Vitthal and this time the ornament fit the Murti perfectly.

Narayan Hari🙏🏻
ALL
Advertisement
The New York Times
The New York Times
@nytimes
Stan Lee’s fictional superheroes lived in the real New York. Here’s where they lived, and why. https://t.co/oV1IGGN8R6


Stan Lee, who died Monday at 95, was born in Manhattan and graduated from DeWitt Clinton High School in the Bronx. His pulp-fiction heroes have come to define much of popular culture in the early 21st century.

Tying Marvel’s stable of pulp-fiction heroes to a real place — New York — served a counterbalance to the sometimes gravity-challenged action and the improbability of the stories. That was just what Stan Lee wanted. https://t.co/rDosqzpP8i


The New York universe hooked readers. And the artists drew what they were familiar with, which made the Marvel universe authentic-looking, down to the water towers atop many of the buildings. https://t.co/rDosqzpP8i


The Avengers Mansion was a Beaux-Arts palace. Fans know it as 890 Fifth Avenue. The Frick Collection, which now occupies the place, uses the address of the front door: 1 East 70th Street.
CULTURE
ArmaniTalks \U0001f399\U0001f525
ArmaniTalks 🎙🔥...
@ArmaniTalks
A relationship begins to get stiff when excessive patterns begin to form.

Too many patterns leads to a boring, predictable, logical lifestyle.

Get the emotions involved.

Do something spontaneous out of the blue moon & flip the script.

'What's wrong with the patterns?'

Nothing is wrong with patterns.

However, there is a problem when all you have are patterns.

It's boring.

'Can you explain why?'

Sure 👇

The thing with relationships is that it's meant to be an emotional experience.

It's very difficult to logically explain love, right?

'Right.'

Well this is where you want to steer the ship the right way.

1. Too emotional is bad.

2. Too logical is bad.

Let me break it down.

1. Too emotional

If a relationship is completely ruled by emotions, then it's too volatile.

You will never reach productivity if you are aimlessly only following each others emotions.

This lifestyle tarnishes any structure for the couple.

'So why do people do it?'

Because it's fun.

You may ruled by this stage in the honeymoon phase.

Normal.

You'll be so spontaneous that it almost becomes a lifestyle.

But it's hard to level up your life when you're too spontaneous.

Avoid.
LIFE
SK
SK
@sk_diary1
Andhakasuravadha Samharamurti -#story #Thread
Sculpture of Bhagwan Shiva as the destroyer of the Asura Andhaka - Cave 29,Ellora caves

Asura Andhaka hangs on to a trishula held by 6-armed Shiva.

Once Parvathi & Shiva were relaxing in the pleasant gardens of Mount Mandhara.


Bhagwan Shiva sat down there to enjoy the happiness.Parvati closed the eyes of Shiva playfully & darkness covered the whole universe.Parvati was perplexed & her palms were wet with perspiration.A few drops of her sweat mixed with sweat from Shiva’s body& fell to the ground.

From this sweat,a fierce creature was born,it started to roar.Child was born blind as Shiva's eyes were closed so was named as Andaka.Andha means darkness&also ignorance.Around the same time Asura Hiranyaksha was performing rigorous tapas Shiva for a boon of powerful son.

Bhagwan Shiva was pleased by tapas of Hiranyaksha & blessed him with darshan.Hiranyaksha asked for a powerful son,Shiva told him that he cannot have his own son,but can adopt a blind child who would become very powerful later.Shiva gave child Andaka to Hiranyaksha.

Hiranyaksha returned to his kingdom with Andaka.Later after the vadh of Hiranyaksha, Andaka is said to have lived with his cousins.He was ridiculed,so dejected Andaka went to forest.He did severe tapas for over many years towards Brahma Dev. Brahma dev appeared before him.
ALL