v1v2 (latest)

DP-InstaHide: Provably Defusing Poisoning and Backdoor Attacks with Differentially Private Data Augmentations

2 March 2021

Furong Huang

Papers citing "DP-InstaHide: Provably Defusing Poisoning and Backdoor Attacks with Differentially Private Data Augmentations"

30 / 30 papers shown

Title
Dataset Security for Machine Learning: Data Poisoning, Backdoor Attacks, and Defenses Micah Goldblum Dimitris Tsipras Chulin Xie Xinyun Chen Avi Schwarzschild Basel Alomair Aleksander Madry Yue Liu Tom Goldstein SILM 102 282 0 18 Dec 2020
Strong Data Augmentation Sanitizes Poisoning and Backdoor Attacks Without an Accuracy Tradeoff Eitan Borgnia Valeriia Cherepanova Liam H. Fowl Amin Ghiasi Jonas Geiping Micah Goldblum Tom Goldstein Arjun Gupta AAML 59 129 0 18 Nov 2020
Is Private Learning Possible with Instance Encoding? Nicholas Carlini Samuel Deng Sanjam Garg S. Jha Saeed Mahloujifar Mohammad Mahmoody Shuang Song Abhradeep Thakurta Florian Tramèr MIACV 67 38 0 10 Nov 2020
How Does Mixup Help With Robustness and Generalization? Linjun Zhang Zhun Deng Kenji Kawaguchi Amirata Ghorbani James Zou AAML 86 252 0 09 Oct 2020
InstaHide: Instance-hiding Schemes for Private Distributed Learning Yangsibo Huang Zhao Song Keqin Li Sanjeev Arora FedML PICV 84 152 0 06 Oct 2020
Witches' Brew: Industrial Scale Data Poisoning via Gradient Matching Jonas Geiping Liam H. Fowl Wenjie Huang W. Czaja Gavin Taylor Michael Moeller Tom Goldstein AAML 89 221 0 04 Sep 2020
Deep Partition Aggregation: Provable Defense against General Poisoning Attacks Alexander Levine Soheil Feizi AAML 58 147 0 26 Jun 2020
Just How Toxic is Data Poisoning? A Unified Benchmark for Backdoor and Data Poisoning Attacks Avi Schwarzschild Micah Goldblum Arjun Gupta John P. Dickerson Tom Goldstein AAML TDI 98 164 0 22 Jun 2020
Bullseye Polytope: A Scalable Clean-Label Poisoning Attack with Improved Transferability H. Aghakhani Dongyu Meng Yu-Xiang Wang Christopher Kruegel Giovanni Vigna AAML 71 104 0 01 May 2020
MetaPoison: Practical General-purpose Clean-label Data Poisoning Wenjie Huang Jonas Geiping Liam H. Fowl Gavin Taylor Tom Goldstein 115 190 0 01 Apr 2020
RAB: Provable Robustness Against Backdoor Attacks Maurice Weber Xiaojun Xu Bojan Karlas Ce Zhang Yue Liu AAML 74 164 0 19 Mar 2020
MaxUp: A Simple Way to Improve Generalization of Neural Network Training Chengyue Gong Zhaolin Ren Mao Ye Qiang Liu AAML 75 56 0 20 Feb 2020
Hidden Trigger Backdoor Attacks Aniruddha Saha Akshayvarun Subramanya Hamed Pirsiavash 87 627 0 30 Sep 2019
Transferable Clean-Label Poisoning Attacks on Deep Neural Nets Chen Zhu Wenjie Huang Ali Shafahi Hengduo Li Gavin Taylor Christoph Studer Tom Goldstein 89 285 0 15 May 2019
CutMix: Regularization Strategy to Train Strong Classifiers with Localizable Features Sangdoo Yun Dongyoon Han Seong Joon Oh Sanghyuk Chun Junsuk Choe Y. Yoo OOD 622 4,802 0 13 May 2019
Data Poisoning against Differentially-Private Learners: Attacks and Defenses Yuzhe Ma Xiaojin Zhu Justin Hsu SILM 52 158 0 23 Mar 2019
Detecting Backdoor Attacks on Deep Neural Networks by Activation Clustering Bryant Chen Wilka Carvalho Wenjie Li Heiko Ludwig Benjamin Edwards Chengyao Chen Ziqiang Cao Biplav Srivastava AAML 92 800 0 09 Nov 2018
Stronger Data Poisoning Attacks Break Data Sanitization Defenses Pang Wei Koh Jacob Steinhardt Percy Liang 76 243 0 02 Nov 2018
Spectral Signatures in Backdoor Attacks Brandon Tran Jerry Li Aleksander Madry AAML 91 795 0 01 Nov 2018
Subsampled Rényi Differential Privacy and Analytical Moments Accountant Yu Wang Borja Balle S. Kasiviswanathan 85 401 0 31 Jul 2018
Is feature selection secure against training data poisoning? Huang Xiao Battista Biggio Gavin Brown Giorgio Fumera Claudia Eckert Fabio Roli AAML SILM 67 423 0 21 Apr 2018
Poison Frogs! Targeted Clean-Label Poisoning Attacks on Neural Networks Ali Shafahi Wenjie Huang Mahyar Najibi Octavian Suciu Christoph Studer Tudor Dumitras Tom Goldstein AAML 86 1,097 0 03 Apr 2018
Label Sanitization against Label Flipping Poisoning Attacks Andrea Paudice Luis Muñoz-González Emil C. Lupu AAML 48 164 0 02 Mar 2018
Targeted Backdoor Attacks on Deep Learning Systems Using Data Poisoning Xinyun Chen Chang-rui Liu Yue Liu Kimberly Lu Basel Alomair AAML SILM 143 1,853 0 15 Dec 2017
mixup: Beyond Empirical Risk Minimization Hongyi Zhang Moustapha Cissé Yann N. Dauphin David Lopez-Paz NoLa 289 9,803 0 25 Oct 2017
Towards Poisoning of Deep Learning Algorithms with Back-gradient Optimization Luis Muñoz-González Battista Biggio Ambra Demontis Andrea Paudice Vasin Wongrassamee Emil C. Lupu Fabio Roli AAML 104 633 0 29 Aug 2017
BadNets: Identifying Vulnerabilities in the Machine Learning Model Supply Chain Tianyu Gu Brendan Dolan-Gavitt S. Garg SILM 130 1,782 0 22 Aug 2017
Improved Regularization of Convolutional Neural Networks with Cutout Terrance Devries Graham W. Taylor 129 3,774 0 15 Aug 2017
Poisoning Attacks against Support Vector Machines Battista Biggio B. Nelson Pavel Laskov AAML 120 1,596 0 27 Jun 2012
On the Geometry of Differential Privacy Moritz Hardt Kunal Talwar 116 464 0 21 Jul 2009