Wild patterns: Ten years after the rise of adversarial machine learning

Biggio, Battista; Roli, Fabio

doi:10.1016/j.patcog.2018.07.023

Cited by 1,031 publications

(1,009 citation statements)

References 80 publications

(267 reference statements)

Supporting

Mentioning

1,003

Contrasting

Unclassified

Order By: Relevance

“…As machine learning becomes more ubiquitous in applications so too do attacks on the learning algorithms that they are based on [5][6][7][8][9][10][11][12][14][15][16][17]. The key assumption usually made in machine learning is that the training data is independent of the model and the training process.…”

Section: Adversarial Quantum Machine Learningmentioning

confidence: 99%

“…While a laundry list of attacks are known against machine learning systems, the defences that have been developed thus far are somewhat limited [9,43]. A commonly used tactic is to replace classifiers with robust versions of the same classifier.…”

Section: Adversarial Quantum Machine Learningmentioning

confidence: 99%

“…The study of subverting machine learning systems by motivated attackers is called adversarial machine learning and according to [9] dates to 2004. Adversaries can reduce the confidence of prediction, replicate the underlying model [8], recover the training data [10], backdoor models to fail on specific examples [11] and even reprogram the model to a completely different task [12].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Hardening quantum machine learning against adversaries

Wiebe

Kumar

2018

New J. Phys.

View full text Add to dashboard Cite

Security of machine learning has begun to become a serious issue for present day applications. An important question remaining is whether emerging quantum technologies will help or hinder the security of machine learning. Here we discuss a number of ways that quantum information can be used to help make quantum classifiers more secure or private. In particular, we demonstrate a form of robust principal component analysis that, under some circumstances, can provide an exponential speedup relative to robust methods used at present. To demonstrate this approach we introduce a linear combinations of unitaries Hamiltonian simulation method that we show functions when given an imprecise Hamiltonian oracle, which may be of independent interest. We also introduce a new quantum approach for bagging and boosting that can use quantum superposition over the classifiers or splits of the training set to aggragate over many more models than would be possible classically. Finally, we provide a private form of k-means clustering that can be used to prevent an all powerful adversary from learning more than a small fraction of a bit from any user. These examples show the role that quantum technologies can play in the security of ML and vice versa. This illustrates that quantum computing can provide useful advantages to machine learning apart from speedups.

show abstract

Section: Adversarial Quantum Machine Learningmentioning

confidence: 99%

Section: Adversarial Quantum Machine Learningmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Hardening quantum machine learning against adversaries

Wiebe

Kumar

2018

New J. Phys.

View full text Add to dashboard Cite

show abstract

“…Given the immense impact of deep learning on a diversity of fields, its vulnerability to tiny adversarial perturbations [1,2] is of great concern. For image datasets, for example, such perturbations are almost imperceptible for humans, but they can render state-of-the-art models useless, causing misclassification with high confidence.…”

Section: Introductionmentioning

confidence: 99%

“…Attacks: State of the art ∞ bounded attacks (used in our evaluations) are all based on gradient ascent on the cost function in (1). The Fast Gradient Sign Method (FGSM) [3], computes the perturbation by e = · sign(∇ x L(θ, x, y))…”

Section: Introductionmentioning

confidence: 99%

Polarizing Front Ends for Robust Cnns

Bakiskan

Gopalakrishnan

Cekic

et al. 2020

ICASSP 2020 - 2020 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP)

View full text Add to dashboard Cite

The vulnerability of deep neural networks to small, adversarially designed perturbations can be attributed to their "excessive linearity." In this paper, we propose a bottom-up strategy for attenuating adversarial perturbations using a nonlinear front end which polarizes and quantizes the data. We observe that ideal polarization can be utilized to completely eliminate perturbations, develop algorithms to learn approximately polarizing bases for data, and investigate the effectiveness of the proposed strategy on the MNIST and Fashion MNIST datasets.

show abstract

5G Mobile Networks Security Landscape and Major Risks

Mitra

Marina

2021

Wiley 5G Ref

View full text Add to dashboard Cite

The 5G is all set to create a paradigm shift in the telecommunication network architecture by introducing a millimeter‐wave‐based customizable radio network and a redesigned cloud‐native core network to offer high‐speed, low‐latency mobile broadband anytime anywhere. The key enabling technologies of the 5G are massive MIMO, beamforming, Software‐Defined Networking (SDN), Network Functions Virtualization (NFV), and Mobile Edge Computing (MEC). However, the network agility, connection to billions of smart things, and blind adoption of machine learning models and open‐source software in the networked systems bring in a unique set of security threats and privacy concerns to the network and its stakeholders. This article provides a comprehensive analysis of the evolving security threat landscape of 5G, recommended security measures, current state‐of‐the‐art solutions, and open research areas.

show abstract

Wild patterns: Ten years after the rise of adversarial machine learning

Cited by 1,031 publications

References 80 publications

Hardening quantum machine learning against adversaries

Hardening quantum machine learning against adversaries

Polarizing Front Ends for Robust Cnns

5G Mobile Networks Security Landscape and Major Risks

Contact Info

Product

Resources

About