2022 CCI Integrated Security Seminar Fall Series
Monday, Nov. 7, 2022, 10:00 a.m. - 11:00 a.m.
Date: Monday, Nov. 7, 2022
Time:
Coffee and connections: 9:30 a.m.
Seminar: 10 a.m. - 11 a.m.
Location:
Integrated Security Education and Research Center
New Classroom Building (170)
1455 Perry Street, Virginia Tech
Blacksburg, VA 24061
Or via Zoom (link provided in registration)
Nov. 7 seminars
Inexpert Supervision: Field Evidence on Boards’ Oversight of Cybersecurity
Speaker: Michelle Lowry, assistant professor, accounting and information systems, Virginia Tech Pamplin College of Business
Through an interview-based field study, we investigate how directors provide cybersecurity oversight and the role of expertise in determining its effectiveness. We find that directors’ cybersecurity expertise is an important determinant of oversight effectiveness, primarily through increasing directors’ attention to cybersecurity issues and enabling them to ask incisive questions of management. In contrast, a lack of board expertise can result overreliance on CISOs and thus in circular governance between the board and management, whereby the terms of oversight are largely dictated by the supposed subjects of that oversight.
Studying Large Language Models Through the Lens of Security: Defending Against Misuse and Vulnerabilities
Speaker: Bimal Viswanath, assistant professor, Virginia Tech Department of Computer Science
Large language models (LLMs) or neural network models trained on large text datasets of human language have enabled huge advances in convincingly generating text. In this talk, I will examine applications of text generation through the lens of security, focusing on mitigating threats posed by misuse and vulnerabilities of this technology. First, LLMs can be misused for malicious purposes to generate misleading text, e.g., generating fake news articles, opinion spam. Our work investigates the effectiveness of defenses that aim to detect such synthetic text by considering real-world settings, i.e., on real-world datasets and by considering an adaptive adversary, and lays out new directions for robust detection of synthetic text. Second, we examine data poisoning vulnerabilities impacting interactive applications of LLMs, by focusing on open-domain dialog systems. We systematically study such threats to understand their effectiveness, and propose mitigation strategies.
About this seminar series
This seminar series, co-hosted by the Commonwealth Cyber Initiative in Southwest Virginia (CCI SWVA) and The Integrated Security Education and Research Center (ISERC), focuses on integrated security. Each seminar features two speakers from different areas of research who delve into the real-world, salient cybersecurity issues impacting businesses and individuals around the world.