{"id":"https://openalex.org/W4319323649","doi":"https://doi.org/10.48550/arxiv.2302.01757","title":"RS-Del: Edit Distance Robustness Certificates for Sequence Classifiers via Randomized Deletion","display_name":"RS-Del: Edit Distance Robustness Certificates for Sequence Classifiers via Randomized Deletion","publication_year":2023,"publication_date":"2023-01-31","ids":{"openalex":"https://openalex.org/W4319323649","doi":"https://doi.org/10.48550/arxiv.2302.01757"},"language":"en","primary_location":{"id":"pmh:oai:arXiv.org:2302.01757","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2302.01757","pdf_url":"https://arxiv.org/pdf/2302.01757","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"type":"preprint","indexed_in":["arxiv","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2302.01757","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5083473056","display_name":"Zhuoqun Huang","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Huang, Zhuoqun","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5080946416","display_name":"Neil G. Marchant","orcid":"https://orcid.org/0000-0001-5713-4235"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Marchant, Neil G.","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055066834","display_name":"Keane Lucas","orcid":"https://orcid.org/0000-0002-4705-3412"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Lucas, Keane","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5002939847","display_name":"Lujo Bauer","orcid":"https://orcid.org/0000-0002-8209-6792"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Bauer, Lujo","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5011082117","display_name":"Olga Ohrimenko","orcid":"https://orcid.org/0000-0002-9735-0538"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Ohrimenko, Olga","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5078824132","display_name":"Benjamin I. P. Rubinstein","orcid":"https://orcid.org/0000-0002-2947-6980"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Rubinstein, Benjamin I. P.","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5083473056"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9588000178337097,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/smoothing","display_name":"Smoothing","score":0.7200173139572144},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6434389352798462},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.5195624828338623},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.46692535281181335},{"id":"https://openalex.org/keywords/bounded-function","display_name":"Bounded function","score":0.44565722346305847},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.41315871477127075},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3943560719490051},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.35503774881362915},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.2908117175102234},{"id":"https://openalex.org/keywords/computer-vision","display_name":"Computer vision","score":0.10773733258247375},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.09815627336502075}],"concepts":[{"id":"https://openalex.org/C3770464","wikidata":"https://www.wikidata.org/wiki/Q775963","display_name":"Smoothing","level":2,"score":0.7200173139572144},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6434389352798462},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.5195624828338623},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.46692535281181335},{"id":"https://openalex.org/C34388435","wikidata":"https://www.wikidata.org/wiki/Q2267362","display_name":"Bounded function","level":2,"score":0.44565722346305847},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.41315871477127075},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3943560719490051},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.35503774881362915},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.2908117175102234},{"id":"https://openalex.org/C31972630","wikidata":"https://www.wikidata.org/wiki/Q844240","display_name":"Computer vision","level":1,"score":0.10773733258247375},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.09815627336502075},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:arXiv.org:2302.01757","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2302.01757","pdf_url":"https://arxiv.org/pdf/2302.01757","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"doi:10.48550/arxiv.2302.01757","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2302.01757","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2302.01757","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2302.01757","pdf_url":"https://arxiv.org/pdf/2302.01757","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.5899999737739563}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4319323649.pdf"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2097492617","https://openalex.org/W2753240997","https://openalex.org/W1764168690","https://openalex.org/W2537959205","https://openalex.org/W2740895074","https://openalex.org/W2772446090","https://openalex.org/W4284893819","https://openalex.org/W3152891574","https://openalex.org/W2249809453","https://openalex.org/W196429367"],"abstract_inverted_index":{"Randomized":[0],"smoothing":[1,20,62,70,85,165],"is":[2,120,126,150],"a":[3,135,151,169],"leading":[4],"approach":[5],"for":[6,44,53,71],"constructing":[7],"classifiers":[8,24,45,74],"that":[9],"are":[10,35,95],"certifiably":[11],"robust":[12],"against":[13,79,102],"adversarial":[14,103],"examples.":[15],"Existing":[16],"work":[17,43],"on":[18,23,138,144],"randomized":[19,69,87],"has":[21,40],"focused":[22],"with":[25,46],"continuous":[26],"inputs,":[27,50],"such":[28,51],"as":[29,52],"images,":[30],"where":[31,147],"$\\ell_p$-norm":[32],"bounded":[33],"adversaries":[34],"commonly":[36],"studied.":[37],"However,":[38],"there":[39],"been":[41],"limited":[42],"discrete":[47,72],"or":[48],"variable-size":[49],"source":[54],"code,":[55],"which":[56,94,119],"require":[57],"different":[58],"threat":[59,153],"models":[60],"and":[61,106,125],"mechanisms.":[63],"In":[64],"this":[65],"work,":[66],"we":[67],"adapt":[68],"sequence":[73],"to":[75,99,157],"provide":[76],"certified":[77,170],"robustness":[78,101],"edit":[80,176],"distance-bounded":[81],"adversaries.":[82],"Our":[83,109],"proposed":[84],"mechanism":[86,166],"deletion":[88,92],"(RS-Del)":[89],"applies":[90],"random":[91],"edits,":[93],"(perhaps":[96],"surprisingly)":[97],"sufficient":[98],"confer":[100],"deletion,":[104],"insertion":[105],"substitution":[107],"edits.":[108],"proof":[110],"of":[111,172,179],"certification":[112],"deviates":[113],"from":[114],"the":[115,158],"established":[116],"Neyman-Pearson":[117],"approach,":[118],"intractable":[121],"in":[122],"our":[123,164],"setting,":[124],"instead":[127],"organized":[128],"around":[129],"longest":[130],"common":[131],"subsequences.":[132],"We":[133],"present":[134],"case":[136],"study":[137],"malware":[139,161],"detection--a":[140],"binary":[141],"classification":[142],"problem":[143],"byte":[145],"sequences":[146],"classifier":[148],"evasion":[149],"well-established":[152],"model.":[154],"When":[155],"applied":[156],"popular":[159],"MalConv":[160],"detection":[162],"model,":[163],"RS-Del":[167],"achieves":[168],"accuracy":[171],"91%":[173],"at":[174],"an":[175],"distance":[177],"radius":[178],"128":[180],"bytes.":[181]},"counts_by_year":[{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":1}],"updated_date":"2026-02-09T09:26:11.010843","created_date":"2023-02-08T00:00:00"}