{"id":"https://openalex.org/W2897749473","doi":"https://doi.org/10.1145/3207677.3277988","title":"Attacks and Defenses towards Machine Learning Based Systems","display_name":"Attacks and Defenses towards Machine Learning Based Systems","publication_year":2018,"publication_date":"2018-10-18","ids":{"openalex":"https://openalex.org/W2897749473","doi":"https://doi.org/10.1145/3207677.3277988","mag":"2897749473"},"language":"en","primary_location":{"id":"doi:10.1145/3207677.3277988","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3207677.3277988","pdf_url":null,"source":{"id":"https://openalex.org/S4306523741","display_name":"Proceedings of the 2nd International Conference on Computer Science and Application Engineering","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2nd International Conference on Computer Science and Application Engineering","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5032773158","display_name":"Yingchao Yu","orcid":"https://orcid.org/0009-0008-8944-9686"},"institutions":[{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Yingchao Yu","raw_affiliation_strings":["Jiangnan Institute of Computing Technology, Wuxi, China"],"affiliations":[{"raw_affiliation_string":"Jiangnan Institute of Computing Technology, Wuxi, China","institution_ids":["https://openalex.org/I4210090176"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Xueyong Liu","orcid":null},"institutions":[{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xueyong Liu","raw_affiliation_strings":["Jiangnan Institute of Computing Technology, Wuxi, China"],"affiliations":[{"raw_affiliation_string":"Jiangnan Institute of Computing Technology, Wuxi, China","institution_ids":["https://openalex.org/I4210090176"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5051366939","display_name":"Zuoning Chen","orcid":"https://orcid.org/0000-0003-1975-5414"},"institutions":[{"id":"https://openalex.org/I4210158984","display_name":"National Supercomputing Center in Wuxi","ror":"https://ror.org/04ypjrs34","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210158984"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zuoning Chen","raw_affiliation_strings":["National Research Center of Parallel Computer Engineering and Technology, Wuxi, China"],"affiliations":[{"raw_affiliation_string":"National Research Center of Parallel Computer Engineering and Technology, Wuxi, China","institution_ids":["https://openalex.org/I4210158984"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5032773158"],"corresponding_institution_ids":["https://openalex.org/I4210090176"],"apc_list":null,"apc_paid":null,"fwci":0.1564,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.55540221,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"7"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9980000257492065,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-machine-learning","display_name":"Adversarial machine learning","score":0.8354103565216064},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7839745879173279},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.7742434740066528},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.7345719933509827},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6936107873916626},{"id":"https://openalex.org/keywords/pipeline","display_name":"Pipeline (software)","score":0.6122236251831055},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.515896201133728},{"id":"https://openalex.org/keywords/online-machine-learning","display_name":"Online machine learning","score":0.4367803931236267},{"id":"https://openalex.org/keywords/active-learning","display_name":"Active learning (machine learning)","score":0.35272371768951416},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.33975809812545776}],"concepts":[{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.8354103565216064},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7839745879173279},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.7742434740066528},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.7345719933509827},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6936107873916626},{"id":"https://openalex.org/C43521106","wikidata":"https://www.wikidata.org/wiki/Q2165493","display_name":"Pipeline (software)","level":2,"score":0.6122236251831055},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.515896201133728},{"id":"https://openalex.org/C115903097","wikidata":"https://www.wikidata.org/wiki/Q7094097","display_name":"Online machine learning","level":3,"score":0.4367803931236267},{"id":"https://openalex.org/C77967617","wikidata":"https://www.wikidata.org/wiki/Q4677561","display_name":"Active learning (machine learning)","level":2,"score":0.35272371768951416},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.33975809812545776},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3207677.3277988","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3207677.3277988","pdf_url":null,"source":{"id":"https://openalex.org/S4306523741","display_name":"Proceedings of the 2nd International Conference on Computer Science and Application Engineering","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2nd International Conference on Computer Science and Application Engineering","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":40,"referenced_works":["https://openalex.org/W398859631","https://openalex.org/W1551848773","https://openalex.org/W1673923490","https://openalex.org/W1826232489","https://openalex.org/W1945616565","https://openalex.org/W1968998685","https://openalex.org/W1981029888","https://openalex.org/W2007562169","https://openalex.org/W2010967033","https://openalex.org/W2047237187","https://openalex.org/W2051267297","https://openalex.org/W2095577883","https://openalex.org/W2151298633","https://openalex.org/W2166939545","https://openalex.org/W2180612164","https://openalex.org/W2230740169","https://openalex.org/W2432142698","https://openalex.org/W2435473771","https://openalex.org/W2460441129","https://openalex.org/W2461943168","https://openalex.org/W2473418344","https://openalex.org/W2535690855","https://openalex.org/W2535873859","https://openalex.org/W2603766943","https://openalex.org/W2611576673","https://openalex.org/W2748789698","https://openalex.org/W2759471388","https://openalex.org/W2774423163","https://openalex.org/W2793398195","https://openalex.org/W2914584698","https://openalex.org/W2949506549","https://openalex.org/W2950468330","https://openalex.org/W2950602864","https://openalex.org/W2963207607","https://openalex.org/W2963564844","https://openalex.org/W2963744840","https://openalex.org/W2963748441","https://openalex.org/W2964082701","https://openalex.org/W2964153729","https://openalex.org/W3102407811"],"related_works":["https://openalex.org/W3048732067","https://openalex.org/W4383468834","https://openalex.org/W4384648009","https://openalex.org/W4303645823","https://openalex.org/W4285263558","https://openalex.org/W2900159906","https://openalex.org/W4287828318","https://openalex.org/W2406556600","https://openalex.org/W4283221438","https://openalex.org/W2899811703"],"abstract_inverted_index":{"Recent":[0],"research1":[1],"has":[2],"shown":[3],"that":[4,51],"machine":[5,19,89,105,127],"learning":[6,20,32,58,68,90,106,128],"models":[7],"are":[8,52,160],"venerable":[9],"to":[10],"attacks":[11,25,29,35,134],"by":[12,64],"adversaries":[13],"almost":[14],"at":[15],"all":[16],"phases":[17],"of":[18,60,74,88,124,138,150],"pipeline,":[21],"such":[22],"as":[23,96],"positioning":[24],"on":[26,30,37,114],"training":[27],"data,":[28],"the":[31,57,67,72,75,80,86,121,133,139,147,156],"algorithm,":[33],"input":[34],"based":[36],"carefully":[38],"crafted":[39],"adversarial":[40],"samples,":[41],"model":[42,45,77],"steal":[43],"and":[44,92,104,108,141,155],"inversion":[46],"attack":[47],"etc.":[48],"Input":[49],"samples":[50],"maliciously":[53],"created":[54],"can":[55],"affect":[56],"process":[59],"a":[61,112,125],"ML":[62],"system":[63,81],"either":[65],"slowing":[66],"process,":[69],"or":[70,78],"affecting":[71],"performance":[73],"learned":[76],"causing":[79],"make":[82],"error.":[83],"So,":[84],"understanding":[85],"security":[87,103],"algorithms":[91],"systems":[93],"is":[94,153],"emerging":[95,116],"an":[97],"important":[98],"research":[99,148,158],"area":[100],"among":[101],"computer":[102],"researchers":[107],"practitioners.":[109],"We":[110],"present":[111],"survey":[113],"this":[115,151],"area:":[117],"firstly,":[118],"we":[119,131],"define":[120],"processing":[122],"pipeline":[123,140],"generic":[126],"system,":[129],"then,":[130],"identify":[132],"in":[135],"different":[136],"points":[137],"its":[142],"potential":[143],"defense":[144],"solution.":[145],"Finally,":[146],"work":[149],"paper":[152],"summarized":[154],"further":[157],"directions":[159],"proposed.":[161]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1}],"updated_date":"2026-04-16T08:26:57.006410","created_date":"2025-10-10T00:00:00"}