TU Wien:Security, Privacy and Explainability in Machine Learning/S2025

What is fingerprinting and Watermarking? In what context are they mentioned in the lectures?

Name and discuss two defenses against evasion. Discuss how hey work, the differences between them and potential security concerns.

Explain in detail Diro2C - What is it, how does it work, what are it's disadvantages?

Explain model extraction, threat model, use cases etc.

How would you implement federated learning. Explain for 2 models from different families. Consider challenges, how they differ, what is in common, etc.