BriefGPT.xyz
Sep, 2020
巫婆之酿:通过梯度匹配实现工业规模数据毒化
Witches' Brew: Industrial Scale Data Poisoning via Gradient Matching
HTML
PDF
Jonas Geiping, Liam Fowl, W. Ronny Huang, Wojciech Czaja, Gavin Taylor...
TL;DR
本文针对数据污染攻击进行研究, 发现匹配恶意示例梯度方向的攻击方法能够对现代深度网络造成威胁, 且现有的防御策略并不能有效对抗此类攻击, 进一步证明数据污染对大规模深度学习系统是一个可信的威胁。
Abstract
data poisoning
attacks involve an attacker modifying training data to maliciouslycontrol a model trained on this data. Previous poisoning attacks against
deep neural networks
have been limited in scope and succes
→