首页    期刊浏览 2024年12月01日 星期日
登录注册

文章基本信息

  • 标题:Systematic Attack Surface Reduction for Deployed Sentiment Analysis Models
  • 本地全文:下载
  • 作者:Josh Kalin ; David Noever ; Gerry Dozier
  • 期刊名称:Computer Science & Information Technology
  • 电子版ISSN:2231-5403
  • 出版年度:2020
  • 卷号:10
  • 期号:6
  • 页码:89-99
  • DOI:10.5121/csit.2020.100609
  • 出版社:Academy & Industry Research Collaboration Center (AIRCC)
  • 摘要:This work proposes a structured approach to baselining a model, identifying attack vectors, and securing the machine learning models after deployment. This method for securing each model post deployment is called the BAD (Build, Attack, and Defend) Architecture. Two implementations of the BAD architecture are evaluated to quantify the adversarial life cycle for a black box Sentiment Analysis system. As a challenging diagnostic, the Jigsaw Toxic Bias dataset is selected as the baseline in our performance tool. Each implementation of the architecture will build a baseline performance report, attack a common weakness, and defend the incoming attack. As an important note: each attack surface demonstrated in this work is detectable and preventable. The goal is to demonstrate a viable methodology for securing a machine learning model in a production setting.
  • 关键词:Machine Learning ;Sentiment Analysis ;Adversarial Attacks ;Substitution Attacks.
国家哲学社会科学文献中心版权所有