Training Set Attack

Training set attacks involve injecting malicious data points into a machine learning model's training data to manipulate its behavior, often targeting specific test instances or biasing overall predictions. Current research focuses on developing both more effective attack strategies, such as those leveraging co-training or game-theoretic approaches, and robust defense mechanisms, including improved influence estimation and dimensionality reduction techniques. Understanding and mitigating these attacks is crucial for ensuring the reliability and security of machine learning systems across diverse applications, from recommender systems to general classification tasks. The ability to identify targeted attacks and their victims is a particularly active area of investigation.

Papers

January 23, 2024

Securing Recommender System via Cooperative Training
Qingyang Wang, Chenwang Wu, Defu Lian, Enhong Chen
Privacy Preserving Collaborative Training Robust Recommendation Training Set Attack

August 15, 2022

Training-Time Attacks against k-Nearest Neighbors
Ara Vartanian, Will Rosenbaum, Scott Alfeld
Nearest Neighbor Training Time Attack Neighborhood Selection K Nearest Neighbor Training Set Attack

January 25, 2022

Identifying a Training-Set Attack's Target Using Renormalized Influence Estimation
Zayd Hammoudeh, Daniel Lowd
Target Amazon Ally Adversarial Instance Influence Estimation Training Set Attack

Training Set Attack

Papers

Securing Recommender System via Cooperative Training

Training-Time Attacks against k-Nearest Neighbors

Identifying a Training-Set Attack's Target Using Renormalized Influence Estimation