We gratefully acknowledge support from
the Simons Foundation and member institutions.
Full-text links:


Current browse context:


Change to browse by:

References & Citations

DBLP - CS Bibliography


(what is this?)
CiteULike logo BibSonomy logo Mendeley logo del.icio.us logo Digg logo Reddit logo ScienceWISE logo

Computer Science > Machine Learning

Title: Dataset Security for Machine Learning: Data Poisoning, Backdoor Attacks, and Defenses

Abstract: As machine learning systems grow in scale, so do their training data requirements, forcing practitioners to automate and outsource the curation of training data in order to achieve state-of-the-art performance. The absence of trustworthy human supervision over the data collection process exposes organizations to security vulnerabilities; training data can be manipulated to control and degrade the downstream behaviors of learned models. The goal of this work is to systematically categorize and discuss a wide range of dataset vulnerabilities and exploits, approaches for defending against these threats, and an array of open problems in this space. In addition to describing various poisoning and backdoor threat models and the relationships among them, we develop their unified taxonomy.
Subjects: Machine Learning (cs.LG); Artificial Intelligence (cs.AI); Cryptography and Security (cs.CR); Computer Vision and Pattern Recognition (cs.CV)
Cite as: arXiv:2012.10544 [cs.LG]
  (or arXiv:2012.10544v4 [cs.LG] for this version)

Submission history

From: Micah Goldblum [view email]
[v1] Fri, 18 Dec 2020 22:38:47 GMT (398kb,D)
[v2] Wed, 30 Dec 2020 03:03:30 GMT (398kb,D)
[v3] Sun, 28 Mar 2021 19:01:07 GMT (399kb,D)
[v4] Wed, 31 Mar 2021 22:21:34 GMT (372kb,D)

Link back to: arXiv, form interface, contact.