{"id":"https://openalex.org/W3164709122","doi":"https://doi.org/10.1145/3468507.3468519","title":"Adversarial Attacks and Defenses","display_name":"Adversarial Attacks and Defenses","publication_year":2021,"publication_date":"2021-05-26","ids":{"openalex":"https://openalex.org/W3164709122","doi":"https://doi.org/10.1145/3468507.3468519","mag":"3164709122"},"language":"en","primary_location":{"id":"doi:10.1145/3468507.3468519","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3468507.3468519","pdf_url":null,"source":{"id":"https://openalex.org/S4210176598","display_name":"ACM SIGKDD Explorations Newsletter","issn_l":"1931-0145","issn":["1931-0145","1931-0153"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM SIGKDD Explorations Newsletter","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5007489034","display_name":"Ninghao Liu","orcid":"https://orcid.org/0000-0002-9170-2424"},"institutions":[{"id":"https://openalex.org/I91045830","display_name":"Texas A&M University","ror":"https://ror.org/01f5ytq51","country_code":"US","type":"education","lineage":["https://openalex.org/I91045830"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Ninghao Liu","raw_affiliation_strings":["Texas A&amp;M University, College Station, TX, USA"],"affiliations":[{"raw_affiliation_string":"Texas A&amp;M University, College Station, TX, USA","institution_ids":["https://openalex.org/I91045830"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5072191151","display_name":"Mengnan Du","orcid":"https://orcid.org/0000-0002-1614-6069"},"institutions":[{"id":"https://openalex.org/I91045830","display_name":"Texas A&M University","ror":"https://ror.org/01f5ytq51","country_code":"US","type":"education","lineage":["https://openalex.org/I91045830"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Mengnan Du","raw_affiliation_strings":["Texas A&amp;M University, College Station, TX, USA"],"affiliations":[{"raw_affiliation_string":"Texas A&amp;M University, College Station, TX, USA","institution_ids":["https://openalex.org/I91045830"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5054719216","display_name":"Ruocheng Guo","orcid":"https://orcid.org/0000-0002-8522-6142"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ruocheng Guo","raw_affiliation_strings":["Arizona State University, Tempe, AZ, USA"],"affiliations":[{"raw_affiliation_string":"Arizona State University, Tempe, AZ, USA","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100338946","display_name":"Huan Liu","orcid":"https://orcid.org/0000-0002-3264-7904"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Huan Liu","raw_affiliation_strings":["Arizona State University, Tempe, AZ, USA"],"affiliations":[{"raw_affiliation_string":"Arizona State University, Tempe, AZ, USA","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5068477431","display_name":"Xia Hu","orcid":"https://orcid.org/0000-0003-2234-3226"},"institutions":[{"id":"https://openalex.org/I91045830","display_name":"Texas A&M University","ror":"https://ror.org/01f5ytq51","country_code":"US","type":"education","lineage":["https://openalex.org/I91045830"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xia Hu","raw_affiliation_strings":["Texas A&amp;M University, College Station, TX, USA"],"affiliations":[{"raw_affiliation_string":"Texas A&amp;M University, College Station, TX, USA","institution_ids":["https://openalex.org/I91045830"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5007489034"],"corresponding_institution_ids":["https://openalex.org/I91045830"],"apc_list":null,"apc_paid":null,"fwci":3.4991,"has_fulltext":false,"cited_by_count":36,"citation_normalized_percentile":{"value":0.93704411,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":100},"biblio":{"volume":"23","issue":"1","first_page":"86","last_page":"99"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12026","display_name":"Explainable Artificial Intelligence (XAI)","score":0.9944000244140625,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9567999839782715,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.9197908043861389},{"id":"https://openalex.org/keywords/interpretation","display_name":"Interpretation (philosophy)","score":0.8193498253822327},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7741084098815918},{"id":"https://openalex.org/keywords/adversary","display_name":"Adversary","score":0.7215257883071899},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6625146269798279},{"id":"https://openalex.org/keywords/adversarial-machine-learning","display_name":"Adversarial machine learning","score":0.5926976799964905},{"id":"https://openalex.org/keywords/perspective","display_name":"Perspective (graphical)","score":0.5809623003005981},{"id":"https://openalex.org/keywords/categorization","display_name":"Categorization","score":0.4858638644218445},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.47937873005867004},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.43683716654777527},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3153582215309143}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.9197908043861389},{"id":"https://openalex.org/C527412718","wikidata":"https://www.wikidata.org/wiki/Q855395","display_name":"Interpretation (philosophy)","level":2,"score":0.8193498253822327},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7741084098815918},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.7215257883071899},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6625146269798279},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.5926976799964905},{"id":"https://openalex.org/C12713177","wikidata":"https://www.wikidata.org/wiki/Q1900281","display_name":"Perspective (graphical)","level":2,"score":0.5809623003005981},{"id":"https://openalex.org/C94124525","wikidata":"https://www.wikidata.org/wiki/Q912550","display_name":"Categorization","level":2,"score":0.4858638644218445},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.47937873005867004},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.43683716654777527},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3153582215309143},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3468507.3468519","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3468507.3468519","pdf_url":null,"source":{"id":"https://openalex.org/S4210176598","display_name":"ACM SIGKDD Explorations Newsletter","issn_l":"1931-0145","issn":["1931-0145","1931-0153"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM SIGKDD Explorations Newsletter","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.5,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":81,"referenced_works":["https://openalex.org/W9657784","https://openalex.org/W1965889239","https://openalex.org/W2111254305","https://openalex.org/W2119858020","https://openalex.org/W2154157725","https://openalex.org/W2163922914","https://openalex.org/W2174868984","https://openalex.org/W2282821441","https://openalex.org/W2295107390","https://openalex.org/W2535873859","https://openalex.org/W2543927648","https://openalex.org/W2593892853","https://openalex.org/W2597603852","https://openalex.org/W2603766943","https://openalex.org/W2606462007","https://openalex.org/W2611576673","https://openalex.org/W2618043096","https://openalex.org/W2621323946","https://openalex.org/W2657631929","https://openalex.org/W2742947407","https://openalex.org/W2743198957","https://openalex.org/W2754049786","https://openalex.org/W2765204106","https://openalex.org/W2774018344","https://openalex.org/W2784986255","https://openalex.org/W2787708942","https://openalex.org/W2799007037","https://openalex.org/W2803831897","https://openalex.org/W2808923352","https://openalex.org/W2809376420","https://openalex.org/W2811104224","https://openalex.org/W2890991187","https://openalex.org/W2895739182","https://openalex.org/W2903785932","https://openalex.org/W2903867357","https://openalex.org/W2912240430","https://openalex.org/W2914018283","https://openalex.org/W2945359720","https://openalex.org/W2945374319","https://openalex.org/W2945976633","https://openalex.org/W2946327826","https://openalex.org/W2951306478","https://openalex.org/W2951384661","https://openalex.org/W2951684477","https://openalex.org/W2954298218","https://openalex.org/W2962843949","https://openalex.org/W2963083752","https://openalex.org/W2963143631","https://openalex.org/W2963389226","https://openalex.org/W2963726920","https://openalex.org/W2965333252","https://openalex.org/W2970692043","https://openalex.org/W2971187489","https://openalex.org/W2979997102","https://openalex.org/W2981485575","https://openalex.org/W2983269435","https://openalex.org/W2984171177","https://openalex.org/W3004193104","https://openalex.org/W3005086430","https://openalex.org/W3022017838","https://openalex.org/W3026235644","https://openalex.org/W3034175346","https://openalex.org/W3035042787","https://openalex.org/W3080189793","https://openalex.org/W3098276446","https://openalex.org/W3101408904","https://openalex.org/W3101609372","https://openalex.org/W3102972033","https://openalex.org/W3103836116","https://openalex.org/W3121171074","https://openalex.org/W4212774754","https://openalex.org/W4229494842","https://openalex.org/W4230707557","https://openalex.org/W4288079704","https://openalex.org/W4288278932","https://openalex.org/W4298051855","https://openalex.org/W4298235707","https://openalex.org/W6729756640","https://openalex.org/W6761184903","https://openalex.org/W6766568290","https://openalex.org/W6772901963"],"related_works":["https://openalex.org/W4320018150","https://openalex.org/W2040808657","https://openalex.org/W3048732067","https://openalex.org/W2918664383","https://openalex.org/W4320855730","https://openalex.org/W106056076","https://openalex.org/W4383468834","https://openalex.org/W2135200719","https://openalex.org/W4384648009","https://openalex.org/W4303645823"],"abstract_inverted_index":{"Despite":[0],"the":[1,33,90,104,109,119,136,148,176,194,242],"recent":[2,185],"advances":[3],"in":[4,72],"a":[5],"wide":[6],"spectrum":[7],"of":[8,123,139,150,163,178,196,214],"applications,":[9],"machine":[10,114,128,197],"learning":[11,115,198],"models,":[12],"especially":[13],"deep":[14],"neural":[15],"networks,":[16],"have":[17,63],"been":[18,64],"shown":[19],"to":[20,23,30,38,44,49,66,83,117,131],"be":[21,173,222],"vulnerable":[22],"adversarial":[24,53,57,68,151,164,188,225],"attacks.":[25],"Attackers":[26],"add":[27],"carefully-crafted":[28],"perturbations":[29,34],"input,":[31],"where":[32],"are":[35,55],"almost":[36],"imperceptible":[37],"humans,":[39],"but":[40],"can":[41,172],"cause":[42],"models":[43,51,116],"make":[45],"wrong":[46],"predictions.":[47],"Techniques":[48],"protect":[50],"against":[52],"input":[54],"called":[56],"defense":[58],"methods.":[59],"Although":[60],"many":[61,160],"approaches":[62,143],"proposed":[65],"study":[67],"attacks":[69,152,165,189,226],"and":[70,77,97,153,166,190,208,227,237,244],"defenses":[71],"different":[73],"scenarios,":[74],"an":[75],"intriguing":[76],"crucial":[78],"challenge":[79,110],"remains":[80],"that":[81,92,159],"how":[82,219],"really":[84],"understand":[85],"model":[86,124],"vulnerability?":[87],"Inspired":[88],"by":[89],"saying":[91],"\"if":[93],"you":[94,100],"know":[95],"yourself":[96],"your":[98],"enemy,":[99],"need":[101],"not":[102,169],"fear":[103],"battles\",":[105],"we":[106,156,183,216,240],"may":[107],"tackle":[108],"above":[111],"after":[112],"interpreting":[113],"open":[118],"black-boxes.":[120],"The":[121],"goal":[122],"interpretation,":[125,207,215],"or":[126],"interpretable":[127],"learning,":[129],"is":[130],"extract":[132],"human-understandable":[133],"terms":[134],"for":[135,224,247],"working":[137],"mechanism":[138],"models.":[140],"Recently,":[141],"some":[142],"start":[144],"incorporating":[145],"interpretation":[146,202,236],"into":[147,203],"exploration":[149],"defenses.":[154,228],"Meanwhile,":[155],"also":[157],"observe":[158],"existing":[161],"methods":[162],"defenses,":[167,191],"although":[168],"explicitly":[170],"claimed,":[171],"understood":[174],"from":[175,193],"perspective":[177,195],"interpretation.":[179,199,210,252],"In":[180],"this":[181],"paper,":[182],"review":[184],"work":[186],"on":[187,218],"particularly":[192],"We":[200,229],"categorize":[201],"two":[204],"types,":[205],"feature-level":[206],"model-level":[209],"For":[211],"each":[212],"type":[213],"elaborate":[217],"it":[220],"could":[221],"used":[223],"then":[230],"briefly":[231],"illustrate":[232],"additional":[233],"correlations":[234],"between":[235],"adversaries.":[238],"Finally,":[239],"discuss":[241],"challenges":[243],"future":[245],"directions":[246],"tackling":[248],"adversary":[249],"issues":[250],"with":[251]},"counts_by_year":[{"year":2026,"cited_by_count":4},{"year":2025,"cited_by_count":6},{"year":2024,"cited_by_count":10},{"year":2023,"cited_by_count":7},{"year":2022,"cited_by_count":5},{"year":2021,"cited_by_count":3},{"year":2020,"cited_by_count":1}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}