Current browse context:
cs.CL
Change to browse by:
References & Citations
Computer Science > Computation and Language
Title: Token-Modification Adversarial Attacks for Natural Language Processing: A Survey
(Submitted on 1 Mar 2021 (v1), last revised 7 Jan 2024 (this version, v3))
Abstract: Many adversarial attacks target natural language processing systems, most of which succeed through modifying the individual tokens of a document. Despite the apparent uniqueness of each of these attacks, fundamentally they are simply a distinct configuration of four components: a goal function, allowable transformations, a search method, and constraints. In this survey, we systematically present the different components used throughout the literature, using an attack-independent framework which allows for easy comparison and categorisation of components. Our work aims to serve as a comprehensive guide for newcomers to the field and to spark targeted research into refining the individual attack components.
Submission history
From: Tom Roth [view email][v1] Mon, 1 Mar 2021 01:00:09 GMT (111kb,D)
[v2] Mon, 7 Aug 2023 03:25:37 GMT (224kb,D)
[v3] Sun, 7 Jan 2024 08:00:31 GMT (515kb,D)
Link back to: arXiv, form interface, contact.