We gratefully acknowledge support from
the Simons Foundation and member institutions.
Full-text links:

Download:

Current browse context:

cs.CL
< prev | next >
new | recent | 2103

Change to browse by:

cs
cs.CR
cs.LG

References & Citations

DBLP - CS Bibliography

listing | bibtex

Bookmark

(what is this?)
CiteULike logo BibSonomy logo Mendeley logo del.icio.us logo Digg logo Reddit logo

Computer Science > Computation and Language

Title: Token-Modification Adversarial Attacks for Natural Language Processing: A Survey

Authors: Tom Roth, Yansong Gao, Alsharif Abuadbba, Surya Nepal, Wei Liu
(Submitted on 1 Mar 2021 (v1), last revised 7 Jan 2024 (this version, v3))
Abstract: Many adversarial attacks target natural language processing systems, most of which succeed through modifying the individual tokens of a document. Despite the apparent uniqueness of each of these attacks, fundamentally they are simply a distinct configuration of four components: a goal function, allowable transformations, a search method, and constraints. In this survey, we systematically present the different components used throughout the literature, using an attack-independent framework which allows for easy comparison and categorisation of components. Our work aims to serve as a comprehensive guide for newcomers to the field and to spark targeted research into refining the individual attack components.
Comments: Version 3: edited and expanded
Subjects: Computation and Language (cs.CL); Cryptography and Security (cs.CR); Machine Learning (cs.LG)
Cite as: arXiv:2103.00676 [cs.CL]
  (or arXiv:2103.00676v3 [cs.CL] for this version)

Submission history

From: Tom Roth [view email]
[v1] Mon, 1 Mar 2021 01:00:09 GMT (111kb,D)
[v2] Mon, 7 Aug 2023 03:25:37 GMT (224kb,D)
[v3] Sun, 7 Jan 2024 08:00:31 GMT (515kb,D)
Which authors of this paper are endorsers? | Disable MathJax (What is MathJax?)

Link back to: arXiv, form interface, contact.