Ellen Tsaprailis, May 17, 2022
Photo credit: Lindsay Ralph
Security in ML Applications a Priority for Ericsson Fellow Xinrui Zhang
Ericsson Fellow Xinrui Zhang is researching a pattern-driven approach to make Machine Learning Operations (MLOps) safer and more secure while maintaining reasonable efficiency.
Since the effectiveness of ML has been validated in various fields, there are tremendous needs to develop diverse ML-based systems and maintain their performances during operation time. Consequently, the slow and manual development and operation of ML-based systems does not fit current business environments.
“While creating efficiencies in developing ML-based systems, security is another top priority as many systems are security-critical and/or safety-critical. Due to the complexity of ML applications and their security requirements, it is essential to integrate security in the early design phase of the ML lifecycle. Meanwhile, the potential threats and countermeasures to ML should be sufficiently understood to develop secure ML-based applications,” explains Zhang.
Patterns are a systematic way to capture the experience of experts about good or best practices and documents these nuggets of wisdom in an accessible format for designers. As an extension, a security pattern is a way to document security mechanisms to the recurring threats in a certain context.
“We have decided to establish a pattern-driven methodology that can be applied to build and operate secure ML applications, aiming to achieve a reasonable tradeoff of efficiency and cost. Once evaluated, this is very likely going to be helpful to a large organization who frequently develops and operates ML applications like Ericsson,” says Zhang. “Security should be valued at least the same or even higher than efficiency and cost when developing and operating security-critical and/or safety-critical ML-based systems.”
Zhang has written and submitted a paper for publication titled, Security Patterns for Machine Learning: The Data-oriented Stages to the 25th European Conference on Pattern Languages of Programs (EuroPLoP 2022). In this paper, a collection of security patterns for the data-oriented stages in the ML workflow is documented, including data collection, data storage, and data preparation. Zhang provides a concise guide on how to protect each stage from known threats, as well as a communication vocabulary for different roles to consider security without being security experts.
Systems and Computer Engineering Assistant Professor Jason Jaskolka is supervising Zhang’s research in Carleton’s Cyber Security Evaluation and Assurance (CyberSEA) Research Lab.
“Many critical systems such as those found in the transportation, energy, and e-health domains are evolving with the inclusion of 5G networks and ML solutions. With this evolution comes a wide range of security threats that need to be mitigated to assure safe, secure, and reliable system operation,” says Professor Jaskolka. “Xinrui’s research is focused on exploring design solutions for building more secure ML-enabled systems and networks. Her results have the potential to reduce security risks at early stages of development when it is less costly to make changes, which is of interest to Ericsson’s software development divisions.”
Zhang is one of six graduate students who are Ericsson Fellows at Carleton University—a unique, talent-building program born out of the Ericsson-Carleton University Partnership for Research and Leadership in Wireless Networks.
Instead of working as a teaching assistant during their graduate studies, Zhang and the other fellows are being supported to focus on their pioneering wireless communications research and get input from both their academic supervisors and Ericsson professionals.
With a Bachelor of Engineering degree from Carleton, Zhang took the accelerated pathway and moved straight into her PhD program in electrical and computer engineering. Through her PhD, her work as an Ericsson Fellow and in the CyberSEA Lab, Zhang is committed to working on designing security solutions.
Continuing her research long-term is important to Zhang as she considers her future career goals.
“I very much appreciate this great opportunity that Carleton and Ericsson have offered. I have gained a lot of industrial insights from this experience. It would be exciting to continue working with Ericsson, whether directly or as an academic collaborator,” says Zhang.
In this prestigious fellowship program, Carleton graduate students conduct hands-on research alongside Ericsson experts in state-of-the-art facilities, ensuring students build skills that are in high demand in today’s telecommunications industry.
Share: Twitter, Facebook