Some Submodular Data-Poisoning Attacks on Machine Learners

Mei, Shike; Zhu, Xiaojin

File(s)

tech report (530.9Kb)

Date

2017-03-08

Author

Mei, Shike

Zhu, Xiaojin

Metadata

Show full item record

Abstract

We study data-poisoning attacks using a machine teaching framework. For a family of NP-hard attack problems we pose them as submodular function maximization, thereby inheriting efficient greedy algorithms with theoretical guarantees. We demonstrate some attacks with experiments.

Subject

Machine Teaching

Submodularity

Data Poisoning Attack

Permanent Link

http://digital.library.wisc.edu/1793/76118

Type

Technical Report

Citation

TR1822

Part of

CS Technical Reports