{"id":"https://openalex.org/W4392843850","doi":"https://doi.org/10.1109/tkde.2024.3365548","title":"BIC-Based Mixture Model Defense Against Data Poisoning Attacks on Classifiers: A Comprehensive Study","display_name":"BIC-Based Mixture Model Defense Against Data Poisoning Attacks on Classifiers: A Comprehensive Study","publication_year":2024,"publication_date":"2024-02-14","ids":{"openalex":"https://openalex.org/W4392843850","doi":"https://doi.org/10.1109/tkde.2024.3365548"},"language":"en","primary_location":{"id":"doi:10.1109/tkde.2024.3365548","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tkde.2024.3365548","pdf_url":null,"source":{"id":"https://openalex.org/S30698027","display_name":"IEEE Transactions on Knowledge and Data Engineering","issn_l":"1041-4347","issn":["1041-4347","1558-2191","2326-3865"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Knowledge and Data Engineering","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5103270996","display_name":"Xi Li","orcid":"https://orcid.org/0000-0003-2768-8717"},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Xi Li","raw_affiliation_strings":["School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA"],"raw_orcid":"https://orcid.org/0000-0003-2768-8717","affiliations":[{"raw_affiliation_string":"School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101739086","display_name":"David J. Miller","orcid":"https://orcid.org/0000-0001-8848-1643"},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"David J. Miller","raw_affiliation_strings":["School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA"],"raw_orcid":"https://orcid.org/0000-0001-8848-1643","affiliations":[{"raw_affiliation_string":"School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085283385","display_name":"Zhen Xiang","orcid":"https://orcid.org/0000-0002-4284-2041"},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Zhen Xiang","raw_affiliation_strings":["School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA"],"raw_orcid":"https://orcid.org/0000-0002-4284-2041","affiliations":[{"raw_affiliation_string":"School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5063903486","display_name":"George Kesidis","orcid":"https://orcid.org/0000-0001-7947-8127"},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"George Kesidis","raw_affiliation_strings":["School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA"],"raw_orcid":"https://orcid.org/0000-0001-7947-8127","affiliations":[{"raw_affiliation_string":"School of Electrical Engineering and Computer Science, Pennsylvania State University, State College, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5103270996"],"corresponding_institution_ids":["https://openalex.org/I130769515"],"apc_list":null,"apc_paid":null,"fwci":2.3179,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.89272496,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":97,"max":99},"biblio":{"volume":"36","issue":"8","first_page":"3697","last_page":"3711"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.875,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.875,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.8489000201225281,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.8328999876976013,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7447217702865601},{"id":"https://openalex.org/keywords/data-modeling","display_name":"Data modeling","score":0.4957205057144165},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4553118944168091},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.40634840726852417},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3617176413536072},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.11708620190620422}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7447217702865601},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.4957205057144165},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4553118944168091},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.40634840726852417},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3617176413536072},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.11708620190620422}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tkde.2024.3365548","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tkde.2024.3365548","pdf_url":null,"source":{"id":"https://openalex.org/S30698027","display_name":"IEEE Transactions on Knowledge and Data Engineering","issn_l":"1041-4347","issn":["1041-4347","1558-2191","2326-3865"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Knowledge and Data Engineering","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320337345","display_name":"Office of Naval Research","ror":"https://ror.org/00rk2pe57"},{"id":"https://openalex.org/F4320338279","display_name":"Air Force Office of Scientific Research","ror":"https://ror.org/011e9bt93"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":60,"referenced_works":["https://openalex.org/W9657784","https://openalex.org/W1493526108","https://openalex.org/W1506281249","https://openalex.org/W1662191912","https://openalex.org/W2007339694","https://openalex.org/W2054658115","https://openalex.org/W2064675550","https://openalex.org/W2107397716","https://openalex.org/W2107551505","https://openalex.org/W2142405592","https://openalex.org/W2167529272","https://openalex.org/W2168175751","https://openalex.org/W2180612164","https://openalex.org/W2194775991","https://openalex.org/W2410216425","https://openalex.org/W2488678869","https://openalex.org/W2603766943","https://openalex.org/W2753783305","https://openalex.org/W2774423163","https://openalex.org/W2789304371","https://openalex.org/W2801490189","https://openalex.org/W2898601267","https://openalex.org/W2942091739","https://openalex.org/W2963618920","https://openalex.org/W2964043980","https://openalex.org/W2965721472","https://openalex.org/W2997546679","https://openalex.org/W3007264885","https://openalex.org/W3007358161","https://openalex.org/W3030764521","https://openalex.org/W3095970110","https://openalex.org/W3097922432","https://openalex.org/W3103836116","https://openalex.org/W3118608800","https://openalex.org/W3160274714","https://openalex.org/W3163222347","https://openalex.org/W3174526319","https://openalex.org/W3190748826","https://openalex.org/W4214694907","https://openalex.org/W4239510810","https://openalex.org/W4301880089","https://openalex.org/W6637034065","https://openalex.org/W6677919164","https://openalex.org/W6681673350","https://openalex.org/W6682350343","https://openalex.org/W6683272254","https://openalex.org/W6686674283","https://openalex.org/W6714085031","https://openalex.org/W6725794477","https://openalex.org/W6739088070","https://openalex.org/W6746897123","https://openalex.org/W6747899497","https://openalex.org/W6748277150","https://openalex.org/W6748556508","https://openalex.org/W6750462152","https://openalex.org/W6774177702","https://openalex.org/W6787972765","https://openalex.org/W6789206308","https://openalex.org/W6810206781","https://openalex.org/W6810300553"],"related_works":["https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W2382290278","https://openalex.org/W2478288626","https://openalex.org/W4391913857","https://openalex.org/W2350741829","https://openalex.org/W2530322880"],"abstract_inverted_index":{"Data":[0],"Poisoning":[1],"(DP)":[2],"is":[3,59,76],"an":[4,43,82],"effective":[5],"attack":[6,25],"that":[7],"causes":[8],"trained":[9],"classifiers":[10],"to":[11,33,106,113,150],"misclassify":[12],"their":[13],"inputs.":[14],"DP":[15,57,71,75,171,180],"attacks":[16,58],"significantly":[17],"degrade":[18],"a":[19,102,118],"classifier's":[20],"accuracy":[21],"by":[22,132],"covertly":[23],"injecting":[24],"samples":[26,80,116,131],"into":[27],"the":[28,41,65,78,90,122,134,139,144,164],"training":[29,91,141],"set.":[30],"Broadly":[31],"applicable":[32],"different":[34],"classifier":[35,151,158],"structures,":[36],"without":[37],"strong":[38,170],"assumptions":[39],"about":[40],"attacker,":[42],"<italic":[44,68,83],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[45,69,84],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">unsupervised</i>":[46],"Bayesian":[47],"Information":[48],"Criterion":[49],"(BIC)-based":[50],"mixture":[51,103,123],"model":[52,104],"defense":[53,168],"against":[54],"\u201cerror":[55],"generic\u201d":[56],"herein":[60],"proposed":[61],"that:":[62],"1)":[63],"addresses":[64],"most":[66],"challenging":[67],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">embedded</i>":[70],"scenario":[72],"wherein,":[73],"if":[74],"present,":[77],"poisoned":[79,115,128,146],"are":[81],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">a":[85],"priori</i>":[86],"unknown":[87],"subset":[88,120],"of":[89,121,166],"set,":[92,142],"and":[93,112,130,160],"with":[94,143],"no":[95],"clean":[96],"validation":[97],"set":[98],"available;":[99],"2)":[100],"applies":[101],"both":[105],"well-fit":[107],"potentially":[108],"multi-modal":[109],"class":[110],"distributions":[111],"capture":[114],"within":[117],"small":[119],"components;":[124],"3)":[125],"jointly":[126],"identifies":[127],"components":[129],"minimizing":[133],"BIC":[135],"cost":[136],"defined":[137],"over":[138,178],"whole":[140],"identified":[145],"data":[147],"removed":[148],"prior":[149],"training.":[152],"Our":[153],"experimental":[154],"results,":[155],"for":[156],"various":[157],"structures":[159],"benchmark":[161],"datasets,":[162],"demonstrate":[163],"effectiveness":[165],"our":[167],"under":[169],"attacks,":[172],"as":[173,175],"well":[174],"its":[176],"superiority":[177],"other":[179],"defenses.":[181]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":4}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}