Dataset Security for Machine Learning: Data Poisoning, Backdoor Attacks, and Defenses

Goldblum, Micah; Tsipras, Dimitris; Xie, Chulin; Chen, Xinyun; Schwarzschild, Avi; Song, Dawn; Mądry, Aleksander; Li, Bo; Goldstein, Tom

doi:10.1109/tpami.2022.3162397

articleIEEE Transactions on Pattern Analysis and Machine IntelligenceMar 25, 2022Closed access

Dataset Security for Machine Learning: Data Poisoning, Backdoor Attacks, and Defenses

MGMicah Goldblum DTDimitris Tsipras CXChulin Xie XCXinyun Chen ASAvi Schwarzschild

University of Maryland, College Park · Massachusetts Institute of Technology · +2 more institutions

PubMed

Indexed incrossrefpubmed

Abstract

As machine learning systems grow in scale, so do their training data requirements, forcing practitioners to automate and outsource the curation of training data in order to achieve state-of-the-art performance. The absence of trustworthy human supervision over the data collection process exposes organizations to security vulnerabilities; training data can be manipulated to control and degrade the downstream behaviors of learned models. The goal of this work is to systematically categorize and discuss a wide range of dataset vulnerabilities and exploits, approaches for defending against these threats, and an array of open problems in this space.

Citation impact

290

total citations

FWCI: 33.71
Percentile: 100%
References: 359

Citations per year

Authors

9

Topics & keywords

Topics

Keywords

Backdoor
Computer science
Exploit
Machine learning
Categorization
Computer security
Malware
Artificial intelligence

UN Sustainable Development Goals

Peace, Justice and strong institutions

No related works found for this paper.