{"id":"https://openalex.org/W2734423986","doi":"https://doi.org/10.1109/ijcnn.2017.7966196","title":"Adversarial learning games with deep learning models","display_name":"Adversarial learning games with deep learning models","publication_year":2017,"publication_date":"2017-05-01","ids":{"openalex":"https://openalex.org/W2734423986","doi":"https://doi.org/10.1109/ijcnn.2017.7966196","mag":"2734423986"},"language":"en","primary_location":{"id":"doi:10.1109/ijcnn.2017.7966196","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn.2017.7966196","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 International Joint Conference on Neural Networks (IJCNN)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://opus.lib.uts.edu.au/bitstream/10453/127099/4/2B0260EE-739B-41B2-B899-FCF0C9FF0533_am.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5043498106","display_name":"Aneesh Sreevallabh Chivukula","orcid":"https://orcid.org/0000-0002-0445-4435"},"institutions":[{"id":"https://openalex.org/I114017466","display_name":"University of Technology Sydney","ror":"https://ror.org/03f0f6041","country_code":"AU","type":"education","lineage":["https://openalex.org/I114017466"]}],"countries":["AU"],"is_corresponding":true,"raw_author_name":"Aneesh Sreevallabh Chivukula","raw_affiliation_strings":["Advanced Analytics Institute, University of Technology, Sydney, Australia"],"affiliations":[{"raw_affiliation_string":"Advanced Analytics Institute, University of Technology, Sydney, Australia","institution_ids":["https://openalex.org/I114017466"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100431652","display_name":"Wei Liu","orcid":"https://orcid.org/0000-0001-6565-5815"},"institutions":[{"id":"https://openalex.org/I114017466","display_name":"University of Technology Sydney","ror":"https://ror.org/03f0f6041","country_code":"AU","type":"education","lineage":["https://openalex.org/I114017466"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Wei Liu","raw_affiliation_strings":["Advanced Analytics Institute, University of Technology, Sydney, Australia"],"affiliations":[{"raw_affiliation_string":"Advanced Analytics Institute, University of Technology, Sydney, Australia","institution_ids":["https://openalex.org/I114017466"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5043498106"],"corresponding_institution_ids":["https://openalex.org/I114017466"],"apc_list":null,"apc_paid":null,"fwci":1.6628,"has_fulltext":true,"cited_by_count":16,"citation_normalized_percentile":{"value":0.88053449,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"2758","last_page":"2767"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12026","display_name":"Explainable Artificial Intelligence (XAI)","score":0.9829999804496765,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9778000116348267,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/stackelberg-competition","display_name":"Stackelberg competition","score":0.8510653972625732},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7431057095527649},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.7341681122779846},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.7143065929412842},{"id":"https://openalex.org/keywords/mnist-database","display_name":"MNIST database","score":0.6405208110809326},{"id":"https://openalex.org/keywords/nash-equilibrium","display_name":"Nash equilibrium","score":0.6360623836517334},{"id":"https://openalex.org/keywords/stochastic-game","display_name":"Stochastic game","score":0.5623656511306763},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.5399799942970276},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.5178447365760803},{"id":"https://openalex.org/keywords/convolutional-neural-network","display_name":"Convolutional neural network","score":0.5146130323410034},{"id":"https://openalex.org/keywords/potential-game","display_name":"Potential game","score":0.4357197880744934},{"id":"https://openalex.org/keywords/game-theory","display_name":"Game theory","score":0.4209996163845062},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.41862356662750244},{"id":"https://openalex.org/keywords/mathematical-optimization","display_name":"Mathematical optimization","score":0.33624953031539917},{"id":"https://openalex.org/keywords/mathematical-economics","display_name":"Mathematical economics","score":0.1547280251979828},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.14552754163742065},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.09904158115386963}],"concepts":[{"id":"https://openalex.org/C199510392","wikidata":"https://www.wikidata.org/wiki/Q1184602","display_name":"Stackelberg competition","level":2,"score":0.8510653972625732},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7431057095527649},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.7341681122779846},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.7143065929412842},{"id":"https://openalex.org/C190502265","wikidata":"https://www.wikidata.org/wiki/Q17069496","display_name":"MNIST database","level":3,"score":0.6405208110809326},{"id":"https://openalex.org/C46814582","wikidata":"https://www.wikidata.org/wiki/Q23389","display_name":"Nash equilibrium","level":2,"score":0.6360623836517334},{"id":"https://openalex.org/C22171661","wikidata":"https://www.wikidata.org/wiki/Q1074380","display_name":"Stochastic game","level":2,"score":0.5623656511306763},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.5399799942970276},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.5178447365760803},{"id":"https://openalex.org/C81363708","wikidata":"https://www.wikidata.org/wiki/Q17084460","display_name":"Convolutional neural network","level":2,"score":0.5146130323410034},{"id":"https://openalex.org/C2778079155","wikidata":"https://www.wikidata.org/wiki/Q288500","display_name":"Potential game","level":3,"score":0.4357197880744934},{"id":"https://openalex.org/C177142836","wikidata":"https://www.wikidata.org/wiki/Q44455","display_name":"Game theory","level":2,"score":0.4209996163845062},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.41862356662750244},{"id":"https://openalex.org/C126255220","wikidata":"https://www.wikidata.org/wiki/Q141495","display_name":"Mathematical optimization","level":1,"score":0.33624953031539917},{"id":"https://openalex.org/C144237770","wikidata":"https://www.wikidata.org/wiki/Q747534","display_name":"Mathematical economics","level":1,"score":0.1547280251979828},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.14552754163742065},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.09904158115386963}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/ijcnn.2017.7966196","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn.2017.7966196","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2017 International Joint Conference on Neural Networks (IJCNN)","raw_type":"proceedings-article"},{"id":"pmh:oai:opus.lib.uts.edu.au:10453/127099","is_oa":true,"landing_page_url":"http://hdl.handle.net/10453/127099","pdf_url":"https://opus.lib.uts.edu.au/bitstream/10453/127099/4/2B0260EE-739B-41B2-B899-FCF0C9FF0533_am.pdf","source":{"id":"https://openalex.org/S4306401357","display_name":"UTS ePRESS (University of Technology Sydney)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I114017466","host_organization_name":"University of Technology Sydney","host_organization_lineage":["https://openalex.org/I114017466"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Conference Proceeding"}],"best_oa_location":{"id":"pmh:oai:opus.lib.uts.edu.au:10453/127099","is_oa":true,"landing_page_url":"http://hdl.handle.net/10453/127099","pdf_url":"https://opus.lib.uts.edu.au/bitstream/10453/127099/4/2B0260EE-739B-41B2-B899-FCF0C9FF0533_am.pdf","source":{"id":"https://openalex.org/S4306401357","display_name":"UTS ePRESS (University of Technology Sydney)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I114017466","host_organization_name":"University of Technology Sydney","host_organization_lineage":["https://openalex.org/I114017466"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Conference Proceeding"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2734423986.pdf","grobid_xml":"https://content.openalex.org/works/W2734423986.grobid-xml"},"referenced_works_count":30,"referenced_works":["https://openalex.org/W176207675","https://openalex.org/W1652603594","https://openalex.org/W1883420340","https://openalex.org/W1965052658","https://openalex.org/W2047237187","https://openalex.org/W2050215344","https://openalex.org/W2095577883","https://openalex.org/W2096633407","https://openalex.org/W2099471712","https://openalex.org/W2107397716","https://openalex.org/W2109300365","https://openalex.org/W2112507308","https://openalex.org/W2114296159","https://openalex.org/W2144906988","https://openalex.org/W2150295936","https://openalex.org/W2163605009","https://openalex.org/W2166348281","https://openalex.org/W2167731287","https://openalex.org/W2274565976","https://openalex.org/W2469469599","https://openalex.org/W2951987509","https://openalex.org/W3111818035","https://openalex.org/W4302161581","https://openalex.org/W4320013936","https://openalex.org/W6674717928","https://openalex.org/W6676935882","https://openalex.org/W6684191040","https://openalex.org/W6684626213","https://openalex.org/W6694611762","https://openalex.org/W6719924153"],"related_works":["https://openalex.org/W2733656312","https://openalex.org/W2976114880","https://openalex.org/W2328458106","https://openalex.org/W2528338391","https://openalex.org/W2025377957","https://openalex.org/W2567986414","https://openalex.org/W3119014777","https://openalex.org/W2953849958","https://openalex.org/W2185830305","https://openalex.org/W3123744589"],"abstract_inverted_index":{"Deep":[0],"learning":[1,43,60,64,97,190],"has":[2],"been":[3],"found":[4],"to":[5,8,30,53,141,164,167,184],"be":[6,182],"vulnerable":[7,52],"changes":[9],"in":[10,36,65,69,188],"the":[11,81,87,89,116,160],"data":[12,28,170],"distribution.":[13],"This":[14],"means":[15],"that":[16,18,159,174],"inputs":[17],"have":[19],"an":[20,40,58,92],"imperceptibly":[21],"and":[22,67,95,127,177],"immeasurably":[23],"small":[24],"difference":[25],"from":[26,130],"training":[27],"correspond":[29],"a":[31,46,76,100,121],"completely":[32],"different":[33,149],"class":[34],"label":[35],"deep":[37,42,84,96,189],"learning.":[38,85],"Thus":[39],"existing":[41],"network":[44],"like":[45],"Convolutional":[47],"Neural":[48],"Network":[49],"(CNN)":[50],"is":[51,99,113,120,133,146],"adversarial":[54,59,169],"examples.":[55],"We":[56,157],"design":[57],"algorithm":[61,144],"for":[62,136],"supervised":[63],"general":[66],"CNNs":[68],"particular.":[70],"Adversarial":[71],"examples":[72],"are":[73],"generated":[74],"by":[75,115],"game":[77,105,112,175],"theoretic":[78],"formulation":[79],"on":[80,152],"performance":[82,145,186],"of":[83,123],"In":[86],"game,":[88],"interaction":[90],"between":[91],"intelligent":[93],"adversary":[94,140],"model":[98],"two-person":[101],"sequential":[102],"noncooperative":[103],"Stackelberg":[104,111],"with":[106],"stochastic":[107,178],"payoff":[108],"functions.":[109],"The":[110,143],"solved":[114],"Nash":[117,161],"equilibrium":[118,162],"which":[119,131],"pair":[122],"strategies":[124],"(learner":[125],"weights":[126],"genetic":[128],"operations)":[129],"there":[132],"no":[134],"incentive":[135],"either":[137],"learner":[138],"or":[139],"deviate.":[142],"evaluated":[147],"under":[148],"strategy":[150],"spaces":[151],"MNIST":[153],"handwritten":[154],"digits":[155],"data.":[156],"show":[158],"leads":[163],"solutions":[165],"robust":[166],"subsequent":[168],"manipulations.":[171],"Results":[172],"suggest":[173],"theory":[176],"optimization":[179],"algorithms":[180],"can":[181],"used":[183],"study":[185],"vulnerabilities":[187],"models.":[191]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":2},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":2}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}