{"id":"https://openalex.org/W2783155279","doi":"https://doi.org/10.1109/tkde.2018.2790928","title":"Sparse Feature Attacks in Adversarial Learning","display_name":"Sparse Feature Attacks in Adversarial Learning","publication_year":2018,"publication_date":"2018-01-08","ids":{"openalex":"https://openalex.org/W2783155279","doi":"https://doi.org/10.1109/tkde.2018.2790928","mag":"2783155279"},"language":"en","primary_location":{"id":"doi:10.1109/tkde.2018.2790928","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tkde.2018.2790928","pdf_url":null,"source":{"id":"https://openalex.org/S30698027","display_name":"IEEE Transactions on Knowledge and Data Engineering","issn_l":"1041-4347","issn":["1041-4347","1558-2191","2326-3865"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Knowledge and Data Engineering","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5000050561","display_name":"Zhizhou Yin","orcid":"https://orcid.org/0000-0002-6250-7988"},"institutions":[{"id":"https://openalex.org/I129604602","display_name":"The University of Sydney","ror":"https://ror.org/0384j8v12","country_code":"AU","type":"education","lineage":["https://openalex.org/I129604602"]}],"countries":["AU"],"is_corresponding":true,"raw_author_name":"Zhizhou Yin","raw_affiliation_strings":["School of Information Technologies, University of Sydney, Camperdown, NSW, Australia"],"raw_orcid":"https://orcid.org/0000-0002-6250-7988","affiliations":[{"raw_affiliation_string":"School of Information Technologies, University of Sydney, Camperdown, NSW, Australia","institution_ids":["https://openalex.org/I129604602"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100455868","display_name":"Fei Wang","orcid":"https://orcid.org/0000-0002-7332-9726"},"institutions":[{"id":"https://openalex.org/I129604602","display_name":"The University of Sydney","ror":"https://ror.org/0384j8v12","country_code":"AU","type":"education","lineage":["https://openalex.org/I129604602"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Fei Wang","raw_affiliation_strings":["School of Information Technologies, University of Sydney, Camperdown, NSW, Australia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Information Technologies, University of Sydney, Camperdown, NSW, Australia","institution_ids":["https://openalex.org/I129604602"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100431652","display_name":"Wei Liu","orcid":"https://orcid.org/0000-0001-6565-5815"},"institutions":[{"id":"https://openalex.org/I114017466","display_name":"University of Technology Sydney","ror":"https://ror.org/03f0f6041","country_code":"AU","type":"education","lineage":["https://openalex.org/I114017466"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Wei Liu","raw_affiliation_strings":["Advanced Analytics Institute, University of Technology, Sydney, Ultimo, NSW, Australia"],"raw_orcid":"https://orcid.org/0000-0001-6565-5815","affiliations":[{"raw_affiliation_string":"Advanced Analytics Institute, University of Technology, Sydney, Ultimo, NSW, Australia","institution_ids":["https://openalex.org/I114017466"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5037947876","display_name":"Sanjay Chawla","orcid":"https://orcid.org/0000-0002-8102-2572"},"institutions":[{"id":"https://openalex.org/I4210138380","display_name":"Qatar Cardiovascular Research Center","ror":"https://ror.org/038vyt185","country_code":"QA","type":"healthcare","lineage":["https://openalex.org/I4210138380"]}],"countries":["QA"],"is_corresponding":false,"raw_author_name":"Sanjay Chawla","raw_affiliation_strings":["Qatar Computing Research Institute (QCRI), HBKU, Doha, Qatar"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Qatar Computing Research Institute (QCRI), HBKU, Doha, Qatar","institution_ids":["https://openalex.org/I4210138380"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5000050561"],"corresponding_institution_ids":["https://openalex.org/I129604602"],"apc_list":null,"apc_paid":null,"fwci":2.0307,"has_fulltext":false,"cited_by_count":30,"citation_normalized_percentile":{"value":0.89587323,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":"30","issue":"6","first_page":"1164","last_page":"1177"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9868999719619751,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.9160209894180298},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8239022493362427},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.766246497631073},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.7021422386169434},{"id":"https://openalex.org/keywords/classifier","display_name":"Classifier (UML)","score":0.6479805111885071},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.6386431455612183},{"id":"https://openalex.org/keywords/adversarial-machine-learning","display_name":"Adversarial machine learning","score":0.5313998460769653},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.4793332517147064},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.42486822605133057},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3396603465080261}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.9160209894180298},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8239022493362427},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.766246497631073},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.7021422386169434},{"id":"https://openalex.org/C95623464","wikidata":"https://www.wikidata.org/wiki/Q1096149","display_name":"Classifier (UML)","level":2,"score":0.6479805111885071},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.6386431455612183},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.5313998460769653},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.4793332517147064},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.42486822605133057},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3396603465080261},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tkde.2018.2790928","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tkde.2018.2790928","pdf_url":null,"source":{"id":"https://openalex.org/S30698027","display_name":"IEEE Transactions on Knowledge and Data Engineering","issn_l":"1041-4347","issn":["1041-4347","1558-2191","2326-3865"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Knowledge and Data Engineering","raw_type":"journal-article"},{"id":"pmh:oai:opus.lib.uts.edu.au:10453/132178","is_oa":false,"landing_page_url":"http://hdl.handle.net/10453/132178","pdf_url":null,"source":{"id":"https://openalex.org/S4306401357","display_name":"UTS ePRESS (University of Technology Sydney)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I114017466","host_organization_name":"University of Technology Sydney","host_organization_lineage":["https://openalex.org/I114017466"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Journal Article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":38,"referenced_works":["https://openalex.org/W648143168","https://openalex.org/W1548486075","https://openalex.org/W1965052658","https://openalex.org/W1966912382","https://openalex.org/W1990676004","https://openalex.org/W1994520254","https://openalex.org/W1996234057","https://openalex.org/W2030611346","https://openalex.org/W2094100186","https://openalex.org/W2097860933","https://openalex.org/W2099471712","https://openalex.org/W2109100253","https://openalex.org/W2109300365","https://openalex.org/W2111589951","https://openalex.org/W2114296159","https://openalex.org/W2115364117","https://openalex.org/W2117173631","https://openalex.org/W2125389028","https://openalex.org/W2145901875","https://openalex.org/W2146211964","https://openalex.org/W2167731287","https://openalex.org/W2293768274","https://openalex.org/W2296452361","https://openalex.org/W2401760721","https://openalex.org/W2494395359","https://openalex.org/W2787894218","https://openalex.org/W2963684088","https://openalex.org/W3018604818","https://openalex.org/W3119651796","https://openalex.org/W3120740533","https://openalex.org/W4298201114","https://openalex.org/W4302571648","https://openalex.org/W4320013936","https://openalex.org/W6621378261","https://openalex.org/W6677054210","https://openalex.org/W6678815747","https://openalex.org/W6685352114","https://openalex.org/W6926261798"],"related_works":["https://openalex.org/W4320018150","https://openalex.org/W2040808657","https://openalex.org/W4239582170","https://openalex.org/W3048732067","https://openalex.org/W2918664383","https://openalex.org/W4320855730","https://openalex.org/W106056076","https://openalex.org/W4383468834","https://openalex.org/W2135200719","https://openalex.org/W4384648009"],"abstract_inverted_index":{"Adversarial":[0],"learning":[1,7,34,51],"is":[2,45,52,66,112,173],"the":[3,30,40,58,62,67,74,88,91,107],"study":[4],"of":[5,32,73,90,98,109],"machine":[6,33],"techniques":[8],"deployed":[9],"in":[10,36,54,124],"non-benign":[11],"environments.":[12],"Example":[13],"applications":[14],"include":[15],"classification":[16],"for":[17,42],"detecting":[18],"spam,":[19],"network":[20],"intrusion":[21],"detection,":[22],"and":[23],"credit":[24],"card":[25],"scoring.":[26],"In":[27],"fact,":[28],"as":[29,101],"use":[31,185],"grows":[35],"diverse":[37],"application":[38],"domains,":[39],"possibility":[41],"adversarial":[43,50,99,168],"behavior":[44,65,100],"likely":[46],"to":[47,69,87,95,115,131,155,163],"increase.":[48],"When":[49],"modelled":[53],"a":[55,84,102,117,125,147,158],"game-theoretic":[56],"setup,":[57],"standard":[59],"assumption":[60],"about":[61],"adversary":[63,82,111,138],"(player)":[64],"ability":[68],"change":[70],"all":[71],"features":[72],"classifiers":[75,183],"(the":[76],"opponent":[77],"player)":[78],"at":[79],"will.":[80],"The":[81],"pays":[83],"cost":[85],"proportional":[86],"size":[89],"\u201cattack\u201d.":[92],"We":[93,134,151],"refer":[94],"this":[96,142],"form":[97],"dense":[103],"feature":[104,149,176],"attack.":[105,150],"However,":[106],"aim":[108],"an":[110,137,153],"not":[113],"just":[114],"subvert":[116],"classifier":[118,159],"but":[119],"carry":[120],"out":[121,146],"data":[122],"transformation":[123],"way":[126],"such":[127],"that":[128,136,174],"spam":[129],"continues":[130],"remain":[132],"effective.":[133],"demonstrate":[135],"could":[139],"potentially":[140],"achieve":[141],"objective":[143],"by":[144,181],"carrying":[145],"sparse":[148,167,175],"design":[152],"algorithm":[154],"show":[156],"how":[157],"should":[160],"be":[161,164],"designed":[162],"robust":[165],"against":[166],"attacks.":[169],"Our":[170],"main":[171],"insight":[172],"attacks":[177],"are":[178],"best":[179],"defended":[180],"designing":[182],"which":[184],"\u2113":[186],"<sub":[187],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[188],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">1</sub>":[189],"regularizers.":[190]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":6},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":5},{"year":2019,"cited_by_count":5},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}