Amplifying Membership Exposure via Data Poisoning Y ufei Chen

Neural Information Processing Systems 

We first propose a generic dirty-label attack for supervised classification algorithms. We then propose an optimization-based clean-label attack in the transfer learning scenario, whereby the poisoning samples are correctly labeled and look "natural" to evade human moderation.

Similar Docs  Excel Report  more

TitleSimilaritySource
None found