Data Poisoning Attack

Data poisoning attacks involve injecting malicious data into training datasets to compromise the performance or behavior of machine learning models. Current research focuses on understanding the vulnerabilities of various model architectures, including linear solvers, federated learning systems, large language models, and clustering algorithms, to different poisoning strategies (e.g., backdoor attacks, label flipping, feature manipulation). This is a critical area of study because successful data poisoning attacks can severely undermine the reliability and trustworthiness of machine learning systems across numerous applications, from healthcare to autonomous vehicles, necessitating the development of robust defenses.

Papers

March 7, 2023

Exploring the Limits of Model-Targeted Indiscriminate Data Poisoning Attacks
Yiwei Lu, Gautam Kamath, Yaoliang Yu
Continuum Limit Poisoning Attack Data Poisoning Attack Data Poisoning Model Poisoning Attack Parameter Based Attack

March 6, 2023

CleanCLIP: Mitigating Data Poisoning Attacks in Multimodal Contrastive Learning
Hritik Bansal, Nishad Singhi, Yu Yang, Fan Yin, Aditya Grover, Kai-Wei Chang
Contrastive Learning Backdoor Attack Multimodal Representation Data Poisoning Attack CLIP Vision Encoder COntrastive Multimodal Pretraining

February 20, 2023

Poisoning Web-Scale Training Datasets is Practical
Nicholas Carlini, Matthew Jagielski, Christopher A. Choquette-Choo, Daniel Paleka, Will Pearce, Hyrum Anderson, Andreas Terzis, Kurt Thomas, Florian Tramèr
Poisoning Attack Data Poisoning Attack State of the Art Defense Malicious Code Web Scale

February 8, 2023

Explainable Label-flipping Attacks on Human Emotion Assessment System
Zhibo Zhang, Ahmed Y. Al Hammadi, Ernesto Damiani, Chan Yeob Yeun
Data Poisoning Attack Human Emotion Label Flipping Attack Label Flipping

February 7, 2023

Temporal Robustness against Data Poisoning
Wenxiao Wang, Soheil Feizi
Data Poisoning Attack Threat Model Data Poisoning Temporal Robustness Malicious Training

February 5, 2023

Run-Off Election: Improved Provable Defense against Data Poisoning Attacks
Keivan Rezaei, Kiarash Banihashem, Atoosa Chegini, Soheil Feizi
Data Poisoning Attack Data Poisoning Defense Method Provable Defense Ensemble Defense

January 17, 2023

Explainable Data Poison Attacks on Human Emotion Evaluation Systems based on EEG Signals
Zhibo Zhang, Sani Umar, Ahmed Y. Al Hammadi, Sangyoung Yoon, Ernesto Damiani, Claudio Agostino Ardagna, Nicola Bena, Chan Yeob Yeun
Data Poisoning Attack Human Emotion Electroencephalography Signal

January 6, 2023

TrojanPuzzle: Covertly Poisoning Code-Suggestion Models
Hojjat Aghakhani, Wei Dai, Andre Manoel, Xavier Fernandes, Anant Kharkar, Christopher Kruegel, Giovanni Vigna, David Evans, Ben Zorn, Robert Sim
Data Poisoning Attack Poisoned Data

December 21, 2022

Hidden Poison: Machine Unlearning Enables Camouflaged Poisoning Attacks
Jimmy Z. Di, Jack Douglas, Jayadev Acharya, Gautam Kamath, Ayush Sekhari
Machine Unlearning Poisoning Attack Data Poisoning Attack Model Retraining Attack Vector Camouflage Image

December 5, 2022

Rethinking Backdoor Data Poisoning Attacks in the Context of Semi-Supervised Learning
Marissa Connor, Vincent Emanuele
Semi Supervised Learning Semi Supervised Context Information Poisoning Attack Data Poisoning Attack Backdoor Poisoning Attack Attack Framework

November 29, 2022

Data Poisoning Attack Aiming the Vulnerability of Continual Learning
Gyojin Han, Jaehyun Choi, Hyeong Gwon Hong, Junmo Kim
Continual LEArning Continual Learning Data Poisoning Attack Latent Vulnerability Continual Learning Model Regularization Based Continual Learning

November 23, 2022

Adversarial Attacks are a Surprisingly Strong Baseline for Poisoning Few-Shot Meta-Learners
Elre T. Oldewage, John Bronskill, Richard E. Turner
Adversarial Attack Adversarial Example Poisoning Attack Strong Baseline Adversarial Input Data Poisoning Attack Meta Learner Shot Meta Learning

November 16, 2022

Analysis and Detectability of Offline Data Poisoning Attacks on Linear Dynamical Systems
Alessio Russo
General Analysis Data Driven Data Poisoning Attack Linear Dynamical System Information Theoretic Detectability

November 3, 2022

Try to Avoid Attacks: A Federated Data Sanitization Defense for Healthcare IoMT Systems
Chong Chen, Ying Gao, Leyu Shi, Siquan Huang
New Attack Data Poisoning Attack Internet of Medical Thing Poisoned Data Malicious Data Federated Data Sanitization Defense

November 2, 2022

Generative Poisoning Using Random Discriminators
Dirren van Vlijmen, Alex Kolmus, Zhuoran Liu, Zhengyu Zhao, Martha Larson
Poisoning Attack Data Poisoning Attack Shortcut Feature Effective Augmentation Dual Discriminator Poisoning Efficiency

October 18, 2022

Not All Poisons are Created Equal: Robust Training against Data Poisoning
Yu Yang, Tian Yu Liu, Baharan Mirzasoleiman
Poisoning Attack Data Poisoning Attack Robust Training Data Poisoning State of the Art Defense Targeted Attack Poisoning Efficiency

October 12, 2022

How to Sift Out a Clean Data Subset in the Presence of Data Poisoning?
Yi Zeng, Minzhou Pan, Himanshu Jahagirdar, Ming Jin, Lingjuan Lyu, Ruoxi Jia
Training Data Speech Presence Poisoning Attack Data Poisoning Attack Data Poisoning Clean Data

September 30, 2022

Data Poisoning Attacks Against Multimodal Encoders
Ziqing Yang, Xinlei He, Zheng Li, Michael Backes, Mathias Humbert, Pascal Berrang, Yang Zhang
Text Modality Multimodal Model Different Modality Data Poisoning Attack Visual Modality Multimodal Encoder

August 17, 2022

Label Flipping Data Poisoning Attack Against Wearable Human Activity Recognition System
Abdur R. Shahid, Ahmed Imteaj, Peter Y. Wu, Diane A. Igoche, Tauhidul Alam
Activity Recognition Data Poisoning Attack Label Poisoning Attack Flip Attack Label Poisoning

August 14, 2022

Friendly Noise against Adversarial Noise: A Powerful Defense against Data Poisoning Attacks
Tian Yu Liu, Yu Yang, Baharan Mirzasoleiman
Adversarial Perturbation Adversarial Noise Data Poisoning Attack Defense Method Backdoor Poisoning Attack