{"id":"https://openalex.org/W2791319131","doi":"https://doi.org/10.1109/access.2018.2805680","title":"A Survey on Security Threats and Defensive Techniques of Machine Learning: A Data Driven View","display_name":"A Survey on Security Threats and Defensive Techniques of Machine Learning: A Data Driven View","publication_year":2018,"publication_date":"2018-01-01","ids":{"openalex":"https://openalex.org/W2791319131","doi":"https://doi.org/10.1109/access.2018.2805680","mag":"2791319131"},"language":"en","primary_location":{"id":"doi:10.1109/access.2018.2805680","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2805680","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2018.2805680","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100409530","display_name":"Qiang Liu","orcid":"https://orcid.org/0000-0003-2922-3518"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Qiang Liu","raw_affiliation_strings":["College of Computer, National University of Defense Technology, Changsha, China","ORCiD"],"raw_orcid":"https://orcid.org/0000-0003-2922-3518","affiliations":[{"raw_affiliation_string":"College of Computer, National University of Defense Technology, Changsha, China","institution_ids":["https://openalex.org/I170215575"]},{"raw_affiliation_string":"ORCiD","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100455171","display_name":"Pan Li","orcid":"https://orcid.org/0000-0001-6522-2446"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Pan Li","raw_affiliation_strings":["College of Computer, National University of Defense Technology, Changsha, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"College of Computer, National University of Defense Technology, Changsha, China","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103149594","display_name":"Wentao Zhao","orcid":"https://orcid.org/0000-0002-2906-3238"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Wentao Zhao","raw_affiliation_strings":["College of Computer, National University of Defense Technology, Changsha, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"College of Computer, National University of Defense Technology, Changsha, China","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5053432286","display_name":"Wei Cai","orcid":"https://orcid.org/0000-0002-4658-0034"},"institutions":[{"id":"https://openalex.org/I141945490","display_name":"University of British Columbia","ror":"https://ror.org/03rmrcq20","country_code":"CA","type":"education","lineage":["https://openalex.org/I141945490"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Wei Cai","raw_affiliation_strings":["Department of Electrical and Computer Engineering, The University of British Columbia, Vancouver, BC, Canada"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Electrical and Computer Engineering, The University of British Columbia, Vancouver, BC, Canada","institution_ids":["https://openalex.org/I141945490"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005228053","display_name":"Shui Yu","orcid":"https://orcid.org/0000-0003-4485-6743"},"institutions":[{"id":"https://openalex.org/I149704539","display_name":"Deakin University","ror":"https://ror.org/02czsnj07","country_code":"AU","type":"education","lineage":["https://openalex.org/I149704539"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Shui Yu","raw_affiliation_strings":["School of Information Technology, Deakin University Melbourne Burwood Campus, Burwood, VIC, Australia","ORCiD"],"raw_orcid":"https://orcid.org/0000-0003-4485-6743","affiliations":[{"raw_affiliation_string":"School of Information Technology, Deakin University Melbourne Burwood Campus, Burwood, VIC, Australia","institution_ids":["https://openalex.org/I149704539"]},{"raw_affiliation_string":"ORCiD","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5035919267","display_name":"Victor C. M. Leung","orcid":"https://orcid.org/0000-0003-3529-2640"},"institutions":[{"id":"https://openalex.org/I141945490","display_name":"University of British Columbia","ror":"https://ror.org/03rmrcq20","country_code":"CA","type":"education","lineage":["https://openalex.org/I141945490"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Victor C. M. Leung","raw_affiliation_strings":["Department of Electrical and Computer Engineering, The University of British Columbia, Vancouver, BC, Canada"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Electrical and Computer Engineering, The University of British Columbia, Vancouver, BC, Canada","institution_ids":["https://openalex.org/I141945490"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":34.0379,"has_fulltext":false,"cited_by_count":425,"citation_normalized_percentile":{"value":0.99717154,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"6","issue":null,"first_page":"12103","last_page":"12117"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7591643929481506},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5467048287391663},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3599868416786194},{"id":"https://openalex.org/keywords/data-science","display_name":"Data science","score":0.3357703685760498}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7591643929481506},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5467048287391663},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3599868416786194},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.3357703685760498}],"mesh":[],"locations_count":5,"locations":[{"id":"doi:10.1109/access.2018.2805680","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2805680","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:cf0cbfd9b05f4406a99de7570848f400","is_oa":true,"landing_page_url":"https://doaj.org/article/cf0cbfd9b05f4406a99de7570848f400","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 6, Pp 12103-12117 (2018)","raw_type":"article"},{"id":"pmh:oai:dro.deakin.edu.au:DU:30106991","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4306401102","display_name":"Own your potential (DEAKIN)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I149704539","host_organization_name":"Deakin University","host_organization_lineage":["https://openalex.org/I149704539"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Journal Article"},{"id":"pmh:oai:figshare.com:article/20809765","is_oa":true,"landing_page_url":"https://figshare.com/articles/journal_contribution/A_survey_on_security_threats_and_defensive_techniques_of_machine_learning_a_data_driven_view/20809765","pdf_url":null,"source":{"id":"https://openalex.org/S4377196282","display_name":"Figshare","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210132348","host_organization_name":"Figshare (United Kingdom)","host_organization_lineage":["https://openalex.org/I4210132348"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Text"},{"id":"pmh:oai:opus.lib.uts.edu.au:10453/130120","is_oa":false,"landing_page_url":"http://hdl.handle.net/10453/130120","pdf_url":null,"source":{"id":"https://openalex.org/S4306401357","display_name":"UTS ePRESS (University of Technology Sydney)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I114017466","host_organization_name":"University of Technology Sydney","host_organization_lineage":["https://openalex.org/I114017466"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Journal Article"}],"best_oa_location":{"id":"doi:10.1109/access.2018.2805680","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2805680","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.46000000834465027,"id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G4048028816","display_name":null,"funder_award_id":"61728201","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G7063847093","display_name":null,"funder_award_id":"61702539","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":144,"referenced_works":["https://openalex.org/W3805906","https://openalex.org/W9657784","https://openalex.org/W73527130","https://openalex.org/W176891897","https://openalex.org/W290150691","https://openalex.org/W1473189865","https://openalex.org/W1535019556","https://openalex.org/W1551848773","https://openalex.org/W1557136905","https://openalex.org/W1564743226","https://openalex.org/W1590456070","https://openalex.org/W1673923490","https://openalex.org/W1883420340","https://openalex.org/W1913201021","https://openalex.org/W1932198206","https://openalex.org/W1945616565","https://openalex.org/W1966912382","https://openalex.org/W1968411139","https://openalex.org/W1969381345","https://openalex.org/W1981029888","https://openalex.org/W1984020445","https://openalex.org/W1984662960","https://openalex.org/W1987896470","https://openalex.org/W2007562169","https://openalex.org/W2014466911","https://openalex.org/W2018061979","https://openalex.org/W2026258420","https://openalex.org/W2038296020","https://openalex.org/W2047237187","https://openalex.org/W2051267297","https://openalex.org/W2054922243","https://openalex.org/W2068458211","https://openalex.org/W2072750586","https://openalex.org/W2088454850","https://openalex.org/W2089103284","https://openalex.org/W2095195675","https://openalex.org/W2095577883","https://openalex.org/W2096633407","https://openalex.org/W2097860933","https://openalex.org/W2105037940","https://openalex.org/W2107397716","https://openalex.org/W2112507308","https://openalex.org/W2114296159","https://openalex.org/W2125908420","https://openalex.org/W2128155976","https://openalex.org/W2134063365","https://openalex.org/W2142992973","https://openalex.org/W2144906988","https://openalex.org/W2151298633","https://openalex.org/W2167421362","https://openalex.org/W2167529272","https://openalex.org/W2170005069","https://openalex.org/W2180612164","https://openalex.org/W2224750461","https://openalex.org/W2243397390","https://openalex.org/W2274565976","https://openalex.org/W2293768274","https://openalex.org/W2296452361","https://openalex.org/W2401293755","https://openalex.org/W2402235285","https://openalex.org/W2406349003","https://openalex.org/W2408141691","https://openalex.org/W2410216425","https://openalex.org/W2417524550","https://openalex.org/W2417915283","https://openalex.org/W2432142698","https://openalex.org/W2435473771","https://openalex.org/W2460937040","https://openalex.org/W2461943168","https://openalex.org/W2462906003","https://openalex.org/W2473418344","https://openalex.org/W2479004360","https://openalex.org/W2486441166","https://openalex.org/W2509109313","https://openalex.org/W2512472178","https://openalex.org/W2517229335","https://openalex.org/W2535690855","https://openalex.org/W2535873859","https://openalex.org/W2543927648","https://openalex.org/W2557044351","https://openalex.org/W2570685808","https://openalex.org/W2574797807","https://openalex.org/W2576683119","https://openalex.org/W2590523583","https://openalex.org/W2591602089","https://openalex.org/W2591788621","https://openalex.org/W2594867206","https://openalex.org/W2602110945","https://openalex.org/W2603766943","https://openalex.org/W2607219512","https://openalex.org/W2609731728","https://openalex.org/W2612637113","https://openalex.org/W2738229973","https://openalex.org/W2741594031","https://openalex.org/W2745565856","https://openalex.org/W2752586018","https://openalex.org/W2768209273","https://openalex.org/W2776884785","https://openalex.org/W2911978475","https://openalex.org/W2949190449","https://openalex.org/W2949274245","https://openalex.org/W2949479613","https://openalex.org/W2950468330","https://openalex.org/W2950864148","https://openalex.org/W2951807304","https://openalex.org/W2963047332","https://openalex.org/W2963058055","https://openalex.org/W2963165448","https://openalex.org/W2963207607","https://openalex.org/W2963299894","https://openalex.org/W2963542245","https://openalex.org/W2963739340","https://openalex.org/W2963744840","https://openalex.org/W2963777745","https://openalex.org/W2963857521","https://openalex.org/W2963903822","https://openalex.org/W2964082701","https://openalex.org/W2964153729","https://openalex.org/W2964318098","https://openalex.org/W3099608705","https://openalex.org/W3102407811","https://openalex.org/W3103836116","https://openalex.org/W3103940881","https://openalex.org/W3111818035","https://openalex.org/W4244185563","https://openalex.org/W4293584023","https://openalex.org/W4297573953","https://openalex.org/W4394644156","https://openalex.org/W6600171677","https://openalex.org/W6603010935","https://openalex.org/W6610316898","https://openalex.org/W6628547770","https://openalex.org/W6632160336","https://openalex.org/W6640300313","https://openalex.org/W6676935882","https://openalex.org/W6679204901","https://openalex.org/W6679728604","https://openalex.org/W6680744341","https://openalex.org/W6684559340","https://openalex.org/W6713680328","https://openalex.org/W6717974185","https://openalex.org/W6722479552","https://openalex.org/W6725794477","https://openalex.org/W6730054736"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052"],"abstract_inverted_index":{"Machine":[0],"learning":[1,36,114,168],"is":[2,72],"one":[3],"of":[4,31,34,62,86,113,166,206],"the":[5,152,156,177,182,198],"most":[6],"prevailing":[7,132],"techniques":[8,85,165,205],"in":[9,18,38,94,176,181,197,215],"computer":[10],"science,":[11],"and":[12,27,48,53,82,102,131,142,155,189,203],"it":[13,71],"has":[14],"been":[15],"widely":[16],"applied":[17],"image":[19],"processing,":[20,23],"natural":[21],"language":[22],"pattern":[24],"recognition,":[25,43],"cybersecurity,":[26],"other":[28],"fields.":[29],"Regardless":[30],"successful":[32],"applications":[33],"machine":[35,87,125,167,207],"algorithms":[37,52],"many":[39,107],"scenarios,":[40],"e.g.,":[41],"facial":[42],"malware":[44],"detection,":[45,50],"automatic":[46],"driving,":[47],"intrusion":[49],"these":[51],"corresponding":[54,83],"training":[55,153,178],"data":[56,187],"are":[57,210],"vulnerable":[58],"to":[59,74],"a":[60,66,91,111,144],"variety":[61,112],"security":[63,80,108,140,172,201],"threats,":[64],"inducing":[65],"significant":[67],"performance":[68],"decrease.":[69],"Hence,":[70],"vital":[73],"call":[75],"for":[76],"further":[77],"attention":[78],"regarding":[79],"threats":[81,109,141,202],"defensive":[84,164,204],"learning,":[88,208],"which":[89,209],"motivates":[90],"comprehensive":[92],"survey":[93,146],"this":[95],"paper.":[96],"Until":[97],"now,":[98],"researchers":[99],"from":[100,149],"academia":[101],"industry":[103],"have":[104],"found":[105],"out":[106],"against":[110],"algorithms,":[115],"including":[116],"naive":[117],"Bayes,":[118],"logistic":[119],"regression,":[120],"decision":[121],"tree,":[122],"support":[123],"vector":[124],"(SVM),":[126],"principle":[127],"component":[128],"analysis,":[129],"clustering,":[130],"deep":[133],"neural":[134],"networks.":[135],"Thus,":[136],"we":[137,161,192],"revisit":[138],"existing":[139],"give":[143],"systematic":[145],"on":[147,200],"them":[148],"two":[150],"aspects,":[151],"phase":[154],"testing/inferring":[157],"phase.":[158],"After":[159],"that,":[160],"categorize":[162],"current":[163],"into":[169],"four":[170],"groups:":[171],"assessment":[173],"mechanisms,":[174],"countermeasures":[175],"phase,":[179,186],"those":[180],"testing":[183],"or":[184],"inferring":[185],"security,":[188],"privacy.":[190],"Finally,":[191],"provide":[193],"five":[194],"notable":[195],"trends":[196],"research":[199],"worth":[211],"doing":[212],"in-depth":[213],"studies":[214],"future.":[216]},"counts_by_year":[{"year":2026,"cited_by_count":11},{"year":2025,"cited_by_count":46},{"year":2024,"cited_by_count":40},{"year":2023,"cited_by_count":66},{"year":2022,"cited_by_count":54},{"year":2021,"cited_by_count":59},{"year":2020,"cited_by_count":76},{"year":2019,"cited_by_count":59},{"year":2018,"cited_by_count":14}],"updated_date":"2026-07-02T09:51:11.867554","created_date":"2025-10-10T00:00:00"}
