research
∙
06/11/2023
Securing Visually-Aware Recommender Systems: An Adversarial Image Reconstruction and Detection Framework
With rich visual data, such as images, becoming readily associated with ...
share
research
∙
06/07/2023
PromptBench: Towards Evaluating the Robustness of Large Language Models on Adversarial Prompts
The increasing reliance on Large Language Models (LLMs) across academia ...
research
∙
05/05/2023
Evading Watermark based Detection of AI-Generated Content
A generative AI model – such as DALL-E, Stable Diffusion, and ChatGPT – ...
research
∙
03/26/2023
PORE: Provably Robust Recommender Systems against Data Poisoning Attacks
Data poisoning attacks spoof a recommender system to make arbitrary, att...
research
∙
03/03/2023
PointCert: Point Cloud Classification with Deterministic Certified Robustness Guarantees
Point cloud classification is an essential component in many security-cr...
research
∙
01/07/2023
REaaS: Enabling Adversarially Robust Downstream Classifiers via Robust Encoder as a Service
Encoder as a service is an emerging cloud service. Specifically, a servi...
research
∙
12/13/2022
AFLGuard: Byzantine-robust Asynchronous Federated Learning
Federated learning (FL) is an emerging machine learning paradigm, in whi...
research
∙
12/06/2022
Pre-trained Encoders in Self-Supervised Learning Improve Secure and Privacy-preserving Supervised Learning
Classifiers in supervised learning have various security and privacy iss...
research
∙
11/15/2022
CorruptEncoder: Data Poisoning based Backdoor Attacks to Contrastive Learning
Contrastive learning (CL) pre-trains general-purpose encoders using an u...
research
∙
10/26/2022
Addressing Heterogeneity in Federated Learning via Distributional Transformation
Federated learning (FL) allows multiple clients to collaboratively train...
research
∙
10/20/2022
FedRecover: Recovering from Poisoning Attacks in Federated Learning using Historical Information
Federated learning is vulnerable to poisoning attacks in which malicious...
research
∙
10/03/2022
MultiGuard: Provably Robust Multi-label Classification against Adversarial Examples
Multi-label classification, which predicts a set of labels for an input,...
research
∙
10/02/2022
FLCert: Provably Secure Federated Learning against Poisoning Attacks
Due to its distributed nature, federated learning is vulnerable to poiso...
research
∙
07/19/2022
FLDetector: Defending Federated Learning Against Model Poisoning Attacks via Detecting Malicious Clients
Federated learning (FL) is vulnerable to model poisoning attacks, in whi...
research
∙
05/24/2022
Fine-grained Poisoning Attacks to Local Differential Privacy Protocols for Mean and Variance Estimation
Local differential privacy (LDP) protects individual data contributors a...
research
∙
05/13/2022
PoisonedEncoder: Poisoning the Unlabeled Pre-training Data in Contrastive Learning
Contrastive learning pre-trains an image encoder using a large amount of...
research
∙
03/16/2022
MPAF: Model Poisoning Attacks to Federated Learning based on Fake Clients
Existing model poisoning attacks to federated learning assume that an at...
research
∙
03/14/2022
GraphTrack: A Graph-based Cross-Device Tracking Framework
Cross-device tracking has drawn growing attention from both commercial c...
research
∙
01/15/2022
StolenEncoder: Stealing Pre-trained Encoders
Pre-trained encoders are general-purpose feature extractors that can be ...
research
∙
11/23/2021
HERO: Hessian-Enhanced Robust Optimization for Unifying and Improving Generalization and Quantization Performance
With the recent demand of deploying neural network models on mobile and ...
research
∙
11/22/2021
Poisoning Attacks to Local Differential Privacy Protocols for Key-Value Data
Local Differential Privacy (LDP) protocols enable an untrusted server to...
research
∙
10/28/2021
10 Security and Privacy Problems in Self-Supervised Learning
Self-supervised learning has achieved revolutionary progress in the past...
research
∙
09/13/2021
FaceGuard: Proactive Deepfake Detection
Existing deepfake-detection methods focus on passive detection, i.e., th...
research
∙
08/25/2021
EncoderMI: Membership Inference against Pre-trained Encoders in Contrastive Learning
Given a set of unlabeled images or (image, text) pairs, contrastive lear...
research
∙
08/01/2021
BadEncoder: Backdoor Attacks to Pre-trained Encoders in Self-Supervised Learning
Self-supervised learning in computer vision aims to pre-train an image e...
research
∙
07/05/2021
Understanding the Security of Deepfake Detection
Deepfakes pose growing challenges to the trust of information on the Int...
research
∙
05/28/2021
Linear-Time Self Attention with Codeword Histogram for Efficient Recommendation
Self-attention has become increasingly popular in a variety of sequence ...
research
∙
05/28/2021
Rethinking Lifelong Sequential Recommendation with Incremental Multi-Interest Attention
Sequential recommendation plays an increasingly important role in many e...
research
∙
03/04/2021
PointGuard: Provably Robust 3D Point Cloud Classification
3D point cloud classification has many safety-critical applications such...
research
∙
02/18/2021
Data Poisoning Attacks and Defenses to Crowdsourcing Systems
A key challenge of big data analytics is how to collect a large volume o...
research
∙
02/03/2021
Provably Secure Federated Learning against Malicious Clients
Federated learning enables clients to collaboratively learn a shared glo...
research
∙
01/07/2021
Data Poisoning Attacks to Deep Learning Based Recommender Systems
Recommender systems play a crucial role in helping users to find their i...
research
∙
01/05/2021
Practical Blind Membership Inference Attack via Differential Comparisons
Membership inference (MI) attacks affect user privacy by inferring wheth...
research
∙
12/27/2020
FLTrust: Byzantine-robust Federated Learning via Trust Bootstrapping
Byzantine-robust federated learning aims to enable a service provider to...
research
∙
12/24/2020
Semi-Supervised Node Classification on Graphs: Markov Random Fields vs. Graph Neural Networks
Semi-supervised node classification on graph-structured data has many ap...
research
∙
12/07/2020
Certified Robustness of Nearest Neighbors against Data Poisoning Attacks
Data poisoning attacks aim to corrupt a machine learning model via modif...
research
∙
11/15/2020
Almost Tight L0-norm Certified Robustness of Top-k Predictions against Adversarial Perturbations
Top-k predictions are used in many real-world applications such as machi...
research
∙
10/26/2020
Robust and Verifiable Information Embedding Attacks to Deep Neural Networks via Error-Correcting Codes
In the era of deep learning, a user often leverages a third-party machin...
research
∙
08/24/2020
Certified Robustness of Graph Neural Networks against Adversarial Structural Perturbation
Graph neural networks (GNNs) have recently gained much attention for nod...
research
∙
08/22/2020
On the Intrinsic Differential Privacy of Bagging
Differentially private machine learning trains models while protecting p...
research
∙
08/11/2020
Intrinsic Certified Robustness of Bagging against Data Poisoning Attacks
In a data poisoning attack, an attacker modifies, deletes, and/or insert...
research
∙
06/19/2020
Backdoor Attacks to Graph Neural Networks
Node classification and graph classification are two basic graph analyti...
research
∙
05/05/2020
Stealing Links from Graph Neural Networks
Graph data, such as social networks and chemical networks, contains a we...
research
∙
02/26/2020
On Certifying Robustness against Backdoor Attacks via Randomized Smoothing
Backdoor attack is a severe security threat to deep neural networks (DNN...
research
∙
02/19/2020
Influence Function based Data Poisoning Attacks to Top-N Recommender Systems
Recommender system is an essential component of web services to engage u...
research
∙
02/09/2020
Certified Robustness of Community Detection against Adversarial Structural Perturbation via Randomized Smoothing
Community detection plays a key role in understanding graph structure. H...
research
∙
12/20/2019
Certified Robustness for Top-k Predictions against Adversarial Perturbations via Randomized Smoothing
It is well-known that classifiers are vulnerable to adversarial perturba...
research
∙
11/26/2019
Local Model Poisoning Attacks to Byzantine-Robust Federated Learning
In federated learning, multiple client devices jointly learn a machine l...
research
∙
11/05/2019
Data Poisoning Attacks to Local Differential Privacy Protocols
Local Differential Privacy (LDP) protocols enable an untrusted data coll...
research
∙
10/28/2019