We put a tentative syllabus here to give you an idea what future may bring. This syllabus is subject to change as the course progresses.
| # | Day | Date | Topic | Assignment | Speakers |
|---|---|---|---|---|---|
| 1 | Tue | Sep 14 | Introduction | Form reading group | |
| 2 | Tue | Sep 21 | Deep learning | Read Lecun-90c, AlexNet | |
| 3 | Tue | Sep 28 | Adversarial ML (1) | Read Intriguing properties of neural networks, FGSM attack | |
| 4 | Tue | Oct 5 | Adversarial ML (2) | Read PGD attack, Obfuscated gradients not useful | |
| 5 | Tue | Oct 12 | Adversarial ML (3) | Read Unrestricted attack, Blackbox attack | |
| 6 | Tue | Oct 19 | Testing DL | Read DeepXplore, VeriVis | Guest: Kexin Pei |
| 7 | Tue | Oct 26 | Verifying DL (1) | Read Reluplex, DeepSafe | |
| 8 | Tue | Nov 2 | No class (Election Day) | ||
| 9 | Tue | Nov 9 | Verifying DL (2) | Read Reluval, Neurify | Guest: Shiqi Wang |
| 10 | Tue | Nov 16 | Verifying DL (3) | Read AI2, Abstract domain | |
| 11 | Tue | Nov 23 | Robustness training | Read Stability training, Adversarial logit training | |
| 12 | Tue | Nov 30 | Robustness training (2) | Read Metrics learning for robustness, Multitask learning for robustness | Guest: Chengzhi Mao |
| 13 | Tue | Dec 7 | Robustness tradeoffs | Read Robustness vs accuracy, Adversarial examples are features | |
| 14 | Tue | Dec 14 | Mini-research conference | Present and demo your final project |