A Novel Defense Mechanism Against Label-Flipping Attacks for Support Vector Machines

被引：0

作者：

Kuo, Ming-Yu ^{[1
]}

Cheng, Bo-Chao ^{[1
]}

机构：

[1] Natl Chung Cheng Univ, Dept Commun Engn, Chiayi, Taiwan

来源：

2021 INTERNATIONAL CONFERENCE ON SECURITY AND INFORMATION TECHNOLOGIES WITH AI, INTERNET COMPUTING AND BIG-DATA APPLICATIONS | 2023年 / 314卷

关键词：

Data poisoning; Label flipping attack; Machine learning; Support vector machine; Dimensionality reduction;

D O I：

10.1007/978-3-031-05491-4_25

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

Datasets are important for machine learning for training, and they can be searched on the Internet these days. However, attackers may attack datasets by label flipping attacks. Therefore, a method to defend against the attack is needed. In this paper, we propose an algorithm with two processes, namely sanitizer and defender (SPD), to protect against uncertain datasets and label flipping attacks. We also conduct a series experiments to validate the relabeled dataset and maintain the accuracy of the support vector machine (SVM). Our experiment results show that the proposed SPD algorithm can effectively block the attack by relabeling the dataset and gain high accuracy with relabeled data.

引用

页码：247 / 256

页数：10

共 14 条

[1] Principal component analysis
Abdi, Herve
Williams, Lynne J.
[J]. WILEY INTERDISCIPLINARY REVIEWS-COMPUTATIONAL STATISTICS, 2010, 2 (04): : 433 - 459
[2] Bhagoji Arjun Nitin, 2018, 2018 52nd Annual Conference on Information Sciences and Systems (CISS), DOI 10.1109/CISS.2018.8362326
[3] Transfer learning based countermeasure against label flipping poisoning attack
Chan, Patrick P. K.
Luo, Fengzhi
Chen, Zitong
Shu, Ying
Yeung, Daniel S.
[J]. INFORMATION SCIENCES, 2021, 548 : 450 - 460
[4] Cheng N., 2021, LABEL NOISE DETECTIO, DOI [10.21203/rs.3.rs-176698/v1, DOI 10.21203/RS.3.RS-176698/V1]
[5] Laishram R, 2016, Arxiv, DOI arXiv:1606.01584
[6] Predicting phishing websites based on self-structuring neural network
Mohammad, Rami M.
Thabtah, Fadi
McCluskey, Lee
[J]. NEURAL COMPUTING & APPLICATIONS, 2014, 25 (02) : 443 - 458
[7] Paudice Andrea, 2019, ECML PKDD 2018 Workshops. Nemesis 2018, UrbReas 2018, SoGood 2018 IWAISe 2018, and Green Data Mining 2018. Proceedings: Lecture Notes in Artificial Intelligence (LNAI 11329), P5, DOI 10.1007/978-3-030-13453-2_1
[8] Perumal P., 2020, Journal of Critical Reviews, V7, P8089
[9] Razmi F, 2022, Arxiv, DOI [arXiv:2108.04206, arXiv:2108.04206]
[10] Selvakumari M., 2021, J PHYS C SER, V1916, DOI DOI 10.1088/1742-6596/1916/1/012169

← 1 2 →