CICI: UCSS: Secure Machine Learning as a Service for Collaborative Scientific Research

About This Grant

Scientific progress increasingly depends on sharing powerful machine learning models across stakeholders, especially in sensitive fields like medicine, genomics, and disaster response. Machine Learning as a Service (MLaaS) allows researchers to collaborate without directly exchanging proprietary machine learning models or private data. However, these systems face serious and growing security vulnerabilities. Adversaries can steal models, reconstruct sensitive inputs, or intercept private data in transit, putting years of investment and sensitive societal applications at risk. Current computing platforms lack the protections necessary to guard against such attacks, creating an urgent need for secure infrastructure that supports scientific collaborations without compromising trust. This project develops a security-focused framework to protect collaborative scientific computing in MLaaS environments, supported through a partnership with Florida’s regional data center serving educational and governmental organizations. The project also integrates education, mentoring, and outreach activities to grow the workforce capable of safeguarding future scientific innovation. The project consists of three main research thrusts. First, it develops robust model protection techniques that hinder reverse engineering of machine learning models while preserving their utility. Second, it introduces behavioral monitoring tools to detect and respond to misuse of models, safeguarding sensitive input data without disrupting legitimate scientific computing activities. Third, it enhances data privacy through encryption schemes that allow model usage without exposing user inputs or model inference results. All components are designed for seamless integration into existing workflows and infrastructures. Collectively, these thrusts target trust, safety, and accessibility in MLaaS-based scientific collaborations, and research findings can be widely disseminated through open-source tools, educational modules, and community partnerships. This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.