当前位置:首页 > 报告详情

网络投毒:数据投毒攻击的交互式网络可视化.pdf

上传人: 竿*** 编号:982129 2025-11-29 40页 1.86MB

1、#SECTORCA BlackHatEventsPoison in the Wires:Interactive Network Visualization of Data Poisoning AttacksMaria Khodak#SECTORCA BlackHatEventsWhat is data poisoning?Attackers can cause a model to display false or misleading information by:Addition/InjectionModificationDeletion#SECTORCA BlackHatEventsHo

2、w does machine learning work?#SECTORCA BlackHatEventsWhere does data poisoning fit into all of this?#SECTORCA BlackHatEvents#SECTORCA BlackHatEventsData poisoning in context-BadNets-2017 paper introducing the concept of data poisoning to the world-Training models is time and resource heavy-outsource

3、 to cloud providers or download pre-trained models-BadNets:malicious neural networks-Work on regular inputs-Misbehave on trigger inputs(backdoor)Gu,T.,Dolan-Gavitt,B.,&Garg,S.(2019).BadNets:Identifying vulnerabilities in the machine learning model supply chain.*arXiv preprint arXiv:1708.06733*.#SECT

4、ORCA BlackHatEventsGu,T.,Dolan-Gavitt,B.,&Garg,S.(2019).BadNets:Identifying vulnerabilities in the machine learning model supply chain.*arXiv preprint arXiv:1708.06733*.#SECTORCA BlackHatEventsConsequences of Bad Data#SECTORCA BlackHatEventsResurrection of Tay:mechahitler-A more realistic and recent

5、 example of data poisoningHow it started:How its going:#SECTORCA BlackHatEventsWhat do we learn from all of these stories?Data provenance:-A record of the origin and history of a particular dataset-Think of it as the“diff”function#SECTORCA BlackHatEventsNetwork Science-Behind every complex system is

6、 a network that defines interactions between its components-Graphs are mathematical representations of networks-Graphs consist of:-Objects called vertices-Edges that connect nodes#SECTORCA BlackHatEventsWhy use network science as a tool for data poisoning?-Predictive power-Paths in networks can impl

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据《Poison in the Wires: InteractiveNetwork Visualization of DataPoisoning Attacks》的内容,以下是全文关键点的概括: 1. **数据中毒定义**:攻击者通过添加、修改或删除数据来误导机器学习模型。 2. **机器学习工作原理**:模型通过训练数据学习,数据中毒破坏这一过程。 3. **BadNets**:2017年提出的数据中毒概念,展示了恶意神经网络如何影响模型。 4. **数据中毒后果**:如Tay机器人事件,展示了数据中毒的潜在影响。 5. **网络科学与数据中毒**:利用网络科学可视化数据中毒,识别数据篡改。 6. **GraphLeak工具**:用于数据中毒、分析和比较图形的开源工具。 7. **数据中毒检测**:通过可视化差异和标签数据点来检测数据篡改。 8. **未来GraphLeak功能**:增强统计分析和与LLM应用的集成。 9. **数据中毒问题**:私有和公共数据集都易受攻击,存在级联效应。 10. **解决方案**:加强数据访问控制、数据清洗、速率限制和LLM的防护措施。
网络可视化揭秘" "如何识别机器学习中的数据陷阱?" 数据中毒风险分析"
客服
商务合作
小程序
服务号
折叠