{"id":"https://openalex.org/W4318185024","doi":"https://doi.org/10.1109/bigdata55660.2022.10020474","title":"Defending Evasion Attacks via Adversarially Adaptive Training","display_name":"Defending Evasion Attacks via Adversarially Adaptive Training","publication_year":2022,"publication_date":"2022-12-17","ids":{"openalex":"https://openalex.org/W4318185024","doi":"https://doi.org/10.1109/bigdata55660.2022.10020474"},"language":"en","primary_location":{"id":"doi:10.1109/bigdata55660.2022.10020474","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata55660.2022.10020474","pdf_url":null,"source":{"id":"https://openalex.org/S4363607709","display_name":"2022 IEEE International Conference on Big Data (Big Data)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5017117630","display_name":"Minh-Hao Van","orcid":"https://orcid.org/0000-0001-7342-6801"},"institutions":[{"id":"https://openalex.org/I78715868","display_name":"University of Arkansas at Fayetteville","ror":"https://ror.org/05jbt9m15","country_code":"US","type":"education","lineage":["https://openalex.org/I78715868"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Minh-Hao Van","raw_affiliation_strings":["University of Arkansas,Fayetteville,AR,USA","University of Arkansas, Fayetteville, AR, USA"],"affiliations":[{"raw_affiliation_string":"University of Arkansas,Fayetteville,AR,USA","institution_ids":["https://openalex.org/I78715868"]},{"raw_affiliation_string":"University of Arkansas, Fayetteville, AR, USA","institution_ids":["https://openalex.org/I78715868"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103096824","display_name":"Wei Du","orcid":"https://orcid.org/0000-0001-8562-5154"},"institutions":[{"id":"https://openalex.org/I78715868","display_name":"University of Arkansas at Fayetteville","ror":"https://ror.org/05jbt9m15","country_code":"US","type":"education","lineage":["https://openalex.org/I78715868"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Wei Du","raw_affiliation_strings":["University of Arkansas,Fayetteville,AR,USA","University of Arkansas, Fayetteville, AR, USA"],"affiliations":[{"raw_affiliation_string":"University of Arkansas,Fayetteville,AR,USA","institution_ids":["https://openalex.org/I78715868"]},{"raw_affiliation_string":"University of Arkansas, Fayetteville, AR, USA","institution_ids":["https://openalex.org/I78715868"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5008463509","display_name":"Xintao Wu","orcid":"https://orcid.org/0000-0002-2823-3063"},"institutions":[{"id":"https://openalex.org/I78715868","display_name":"University of Arkansas at Fayetteville","ror":"https://ror.org/05jbt9m15","country_code":"US","type":"education","lineage":["https://openalex.org/I78715868"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xintao Wu","raw_affiliation_strings":["University of Arkansas,Fayetteville,AR,USA","University of Arkansas, Fayetteville, AR, USA"],"affiliations":[{"raw_affiliation_string":"University of Arkansas,Fayetteville,AR,USA","institution_ids":["https://openalex.org/I78715868"]},{"raw_affiliation_string":"University of Arkansas, Fayetteville, AR, USA","institution_ids":["https://openalex.org/I78715868"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100352754","display_name":"Feng Chen","orcid":"https://orcid.org/0000-0003-4813-2494"},"institutions":[{"id":"https://openalex.org/I162577319","display_name":"The University of Texas at Dallas","ror":"https://ror.org/049emcs32","country_code":"US","type":"education","lineage":["https://openalex.org/I162577319"]},{"id":"https://openalex.org/I87573096","display_name":"University of North Texas at Dallas","ror":"https://ror.org/01n51v443","country_code":"US","type":"education","lineage":["https://openalex.org/I87573096"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Feng Chen","raw_affiliation_strings":["University of Texas at Dallas,Dallas,TX,USA","University of Texas at Dallas, Dallas, TX, USA"],"affiliations":[{"raw_affiliation_string":"University of Texas at Dallas,Dallas,TX,USA","institution_ids":["https://openalex.org/I87573096","https://openalex.org/I162577319"]},{"raw_affiliation_string":"University of Texas at Dallas, Dallas, TX, USA","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5015271163","display_name":"Aidong Lu","orcid":"https://orcid.org/0000-0002-7684-4512"},"institutions":[{"id":"https://openalex.org/I102149020","display_name":"University of North Carolina at Charlotte","ror":"https://ror.org/04dawnj30","country_code":"US","type":"education","lineage":["https://openalex.org/I102149020"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Aidong Lu","raw_affiliation_strings":["University of North Carolina at Charlotte,Charlotte,NC,USA","University of North Carolina at Charlotte, Charlotte, NC, USA"],"affiliations":[{"raw_affiliation_string":"University of North Carolina at Charlotte,Charlotte,NC,USA","institution_ids":["https://openalex.org/I102149020"]},{"raw_affiliation_string":"University of North Carolina at Charlotte, Charlotte, NC, USA","institution_ids":["https://openalex.org/I102149020"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5017117630"],"corresponding_institution_ids":["https://openalex.org/I78715868"],"apc_list":null,"apc_paid":null,"fwci":0.1039,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.35148675,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"1515","last_page":"1524"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9501000046730042,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7937514781951904},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.7686207294464111},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.6808068752288818},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6220051646232605},{"id":"https://openalex.org/keywords/empirical-risk-minimization","display_name":"Empirical risk minimization","score":0.6056457757949829},{"id":"https://openalex.org/keywords/regularization","display_name":"Regularization (linguistics)","score":0.4841611981391907},{"id":"https://openalex.org/keywords/evasion","display_name":"Evasion (ethics)","score":0.48164239525794983},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.47802814841270447},{"id":"https://openalex.org/keywords/feature-vector","display_name":"Feature vector","score":0.43862855434417725},{"id":"https://openalex.org/keywords/empirical-research","display_name":"Empirical research","score":0.41879117488861084},{"id":"https://openalex.org/keywords/support-vector-machine","display_name":"Support vector machine","score":0.4117041230201721},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.08065482974052429}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7937514781951904},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.7686207294464111},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.6808068752288818},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6220051646232605},{"id":"https://openalex.org/C107321475","wikidata":"https://www.wikidata.org/wiki/Q5374254","display_name":"Empirical risk minimization","level":2,"score":0.6056457757949829},{"id":"https://openalex.org/C2776135515","wikidata":"https://www.wikidata.org/wiki/Q17143721","display_name":"Regularization (linguistics)","level":2,"score":0.4841611981391907},{"id":"https://openalex.org/C2781251061","wikidata":"https://www.wikidata.org/wiki/Q5416089","display_name":"Evasion (ethics)","level":3,"score":0.48164239525794983},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.47802814841270447},{"id":"https://openalex.org/C83665646","wikidata":"https://www.wikidata.org/wiki/Q42139305","display_name":"Feature vector","level":2,"score":0.43862855434417725},{"id":"https://openalex.org/C120936955","wikidata":"https://www.wikidata.org/wiki/Q2155640","display_name":"Empirical research","level":2,"score":0.41879117488861084},{"id":"https://openalex.org/C12267149","wikidata":"https://www.wikidata.org/wiki/Q282453","display_name":"Support vector machine","level":2,"score":0.4117041230201721},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.08065482974052429},{"id":"https://openalex.org/C203014093","wikidata":"https://www.wikidata.org/wiki/Q101929","display_name":"Immunology","level":1,"score":0.0},{"id":"https://openalex.org/C8891405","wikidata":"https://www.wikidata.org/wiki/Q1059","display_name":"Immune system","level":2,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/bigdata55660.2022.10020474","is_oa":false,"landing_page_url":"https://doi.org/10.1109/bigdata55660.2022.10020474","pdf_url":null,"source":{"id":"https://openalex.org/S4363607709","display_name":"2022 IEEE International Conference on Big Data (Big Data)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Conference on Big Data (Big Data)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":56,"referenced_works":["https://openalex.org/W1673923490","https://openalex.org/W1945616565","https://openalex.org/W2112796928","https://openalex.org/W2180612164","https://openalex.org/W2243397390","https://openalex.org/W2543927648","https://openalex.org/W2572504188","https://openalex.org/W2607219512","https://openalex.org/W2618043096","https://openalex.org/W2746600820","https://openalex.org/W2768783441","https://openalex.org/W2774423163","https://openalex.org/W2774607536","https://openalex.org/W2898759955","https://openalex.org/W2902809608","https://openalex.org/W2945033152","https://openalex.org/W2952541330","https://openalex.org/W2963070423","https://openalex.org/W2963178695","https://openalex.org/W2963744840","https://openalex.org/W2963857521","https://openalex.org/W2964082701","https://openalex.org/W2983044655","https://openalex.org/W2983358147","https://openalex.org/W2996564870","https://openalex.org/W3013520104","https://openalex.org/W3015625436","https://openalex.org/W3034619610","https://openalex.org/W3102720581","https://openalex.org/W3106412272","https://openalex.org/W3107235539","https://openalex.org/W3119543788","https://openalex.org/W3135970545","https://openalex.org/W3172762010","https://openalex.org/W3206667797","https://openalex.org/W3215641581","https://openalex.org/W3217417806","https://openalex.org/W4288322578","https://openalex.org/W4289300166","https://openalex.org/W4293846201","https://openalex.org/W6637162671","https://openalex.org/W6640425456","https://openalex.org/W6738693630","https://openalex.org/W6745840574","https://openalex.org/W6746608116","https://openalex.org/W6746897123","https://openalex.org/W6752654261","https://openalex.org/W6756074407","https://openalex.org/W6756333562","https://openalex.org/W6756392754","https://openalex.org/W6762970624","https://openalex.org/W6769760169","https://openalex.org/W6771809012","https://openalex.org/W6788125050","https://openalex.org/W6796679587","https://openalex.org/W6804017529"],"related_works":["https://openalex.org/W2502115930","https://openalex.org/W4246396837","https://openalex.org/W2482350142","https://openalex.org/W3176240006","https://openalex.org/W3126451824","https://openalex.org/W1561927205","https://openalex.org/W3191453585","https://openalex.org/W2294590153","https://openalex.org/W149387564","https://openalex.org/W1165581346"],"abstract_inverted_index":{"Adversarial":[0],"machine":[1],"learning":[2,148],"has":[3],"been":[4],"extensively":[5],"studied":[6],"from":[7,79,101,140],"perspectives":[8],"of":[9,103],"attack":[10,76,168],"settings":[11],"and":[12,24,53,71,108,117,143,159,179,182],"defense":[13,41,160],"strategies.":[14],"However,":[15],"existing":[16],"adversarial":[17,129,157],"training":[18,47,67,107],"models":[19,55],"fail":[20],"to":[21,60,127],"be":[22],"adaptive":[23,40,46],"robust":[25,87],"against":[26],"new":[27,61,128],"attacks":[28,158],"during":[29,106],"test":[30,58,125],"time.":[31],"In":[32],"this":[33],"paper,":[34],"we":[35],"propose":[36],"a":[37,85,98,137,146],"novel":[38],"adversarially":[39],"(AAD)":[42],"framework":[43],"based":[44],"on":[45,162],"such":[48],"that":[49,83,173],"the":[50,66,110],"trained":[51],"prediction":[52,116,178],"detection":[54,118,180],"adapt":[56,123],"at":[57,124],"time":[59,126],"attacks.":[62,130],"Our":[63],"AAD":[64,96,121,174],"structures":[65],"data":[68],"into":[69,114],"groups":[70],"each":[72,104],"group":[73],"represents":[74],"one":[75],"scenario.":[77],"Different":[78],"empirical":[80,153],"risk":[81],"minimization":[82],"trains":[84],"single":[86],"model":[88],"or":[89],"learns":[90,97],"an":[91],"invariant":[92],"feature":[93],"space,":[94],"our":[95,133],"context":[99,112],"vector":[100,113],"features":[102],"batch":[105],"incorporates":[109],"learned":[111],"both":[115,176],"models.":[119],"Thus,":[120],"can":[122],"We":[131,150],"formulate":[132],"problem":[134],"by":[135],"optimizing":[136],"joint":[138],"loss":[139],"prediction,":[141],"detection,":[142],"regularization":[144],"via":[145],"multi-task":[147],"framework.":[149],"conduct":[151],"comprehensive":[152],"evaluations":[154],"with":[155],"popular":[156],"strategies":[161],"two":[163],"real-world":[164],"datasets":[165],"under":[166],"different":[167],"settings.":[169],"Empirical":[170],"results":[171],"show":[172],"achieves":[175],"high":[177],"accuracy":[181],"significantly":[183],"outperforms":[184],"baselines.":[185]},"counts_by_year":[{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}