Current browse context:
cs.LG
Change to browse by:
References & Citations
Computer Science > Machine Learning
Title: Data Security for Machine Learning: Data Poisoning, Backdoor Attacks, and Defenses
(Submitted on 18 Dec 2020 (this version), latest version 31 Mar 2021 (v4))
Abstract: As machine learning systems consume more and more data, practitioners are increasingly forced to automate and outsource the curation of training data in order to meet their data demands. This absence of human supervision over the data collection process exposes organizations to security vulnerabilities: malicious agents can insert poisoned examples into the training set to exploit the machine learning systems that are trained on it. Motivated by the emergence of this paradigm, there has been a surge in work on data poisoning including a variety of threat models as well as attack and defense methods. The goal of this work is to systematically categorize and discuss a wide range of data poisoning and backdoor attacks, approaches to defending against these threats, and an array of open problems in this space. In addition to describing these methods and the relationships among them in detail, we develop their unified taxonomy.
Submission history
From: Micah Goldblum [view email][v1] Fri, 18 Dec 2020 22:38:47 GMT (398kb,D)
[v2] Wed, 30 Dec 2020 03:03:30 GMT (398kb,D)
[v3] Sun, 28 Mar 2021 19:01:07 GMT (399kb,D)
[v4] Wed, 31 Mar 2021 22:21:34 GMT (372kb,D)
Link back to: arXiv, form interface, contact.