Jonathan
Evertz

Machine Learning Security

_

I am a first year doctoral security researcher at the CISPA Helmholtz Center for Information Security in Lea Schönherr's group.

My research interests center on the security and privacy implications of modern machine learning systems, with a particular emphasis on adversarial machine learning. I conducted research on this topic during my master's degree at the chair for Systems Security at the Horst Görtz Institute for IT Security under the supervision of Thorsten Eisenhofer. During this time, I was part of the DFG Cluster of Excellence “Cyber Security in the Age of Large-Scale Adversaries“ (CASA).

The projects revolved around Adversarial Attacks against Image Classification Models, Data Poisoning Attacks that exploit non-robust features in data, Mixed Boolean-Arithmetic deobfuscation using Graph Neural Networks, and more recently attacks and defenses for Large Language Models.

Before that, I was working on Hardware Reversing for Machine Learning Cores on FPGA's in the Embedded Security Group of Christof Paar at the Max Planck Institute for Security and Privacy.

I obtained both my B.Sc. and M.Sc. in Computer Science from Ruhr University Bochum, where my studies were also primarily focused on machine learning. For my master's studies, I was awarded best student in the graduating class. My master's thesis was additionally awarded for outstanding academic performance at the annual academic celebration of the Ruhr University Bochum.
During my master's degree, I spent a semester abroad at the University of Tsukuba in Japan, where I joined Kazuhiro Fukui and his group at the Computer Vision Lab. Together with the Université Grenoble Alpes, and the Ruhr University Bochum, we organized a joint research workshop on the topic of "Computer Science and Artificial Intelligence". I co-chaired the workshop for the German side.

For questions, discussions, or collaborations, feel free to contact me!

Publications

2024

Jonathan Evertz, Merlin Chlosta, Lea Schönherr, and Thorsten Eisenhofer

Whispers in the Machine: Confidentiality in LLM-integrated Systems

Computing Research Repository (CoRR)
[pdf] [arXiv] [code]

Teaching

Teaching Assistant

  • Trustworthy Generative Machine Learning, Saarland University
    Bachelor/Master・Seminar・Summer 2024

    • Reviewing

  • AdvML-Frontiers Workshop (NeurIPS), 2024

    • Personal Stuff

    In my spare time—when I am not tinkering on computers—I enjoy various sports, photography and cooking (and eating as well).
    I am a passionate swimmer and have been active in the German Lifeguard Association (DLRG) since 2009, but I also enjoy running and hiking. Additionally, I am always up for creative and challenging dishes to cook—regardless the cuisine. So if you have any recipes, feel free to share them!