We use distributionally-robust optimization for machine learning to mitigate the effect of data poisoning attacks. We provide performance guarantees for the trained model on the original data (not including the poison records) by training the model for the worst-case distribution on a neighbourhood around the empirical distribution (extracted from the training dataset corrupted by a poisoning attack) defined using the Wasserstein distance. We relax the distributionally-robust machine learning problem by finding an upper bound for the worst-case fitness based on the empirical sampled-averaged fitness and the Lipschitz-constant of the fitness function (on the data for given model parameters) as regularizer. For regression models, we prove tha...
The goal of regression and classification methods in supervised learning is to minimize the empirica...
Poisoning attack is one of the attack types commonly studied in the field of adversarial machine lea...
Comunicació presentada al ECML PKDD 2020: Machine Learning and Knowledge Discovery in Databases, cel...
Machine Learning (ML) algorithms are vulnerable to poisoning attacks, where a fraction of the traini...
Machine learning algorithms are vulnerable to poisoning attacks, where a fraction of the training da...
We consider machine learning, particularly regression, using locally-differentially private datasets...
A central problem in statistical learning is to design prediction algorithms that not only perform w...
As machine learning becomes widely used for automated decisions, attackers have strong incentives to...
Optimal transport has recently proved to be a useful tool in various machine learning applications n...
Optimal transport has recently proved to be a useful tool in various machine learning applications n...
Certified robustness in machine learning has primarily focused on adversarial perturbations of the i...
This paper studies defense mechanisms against model inversion (MI) attacks -- a type of privacy atta...
We study indiscriminate poisoning for linear learners where an adversary injects a few crafted examp...
This dissertation develops a comprehensive statistical learning framework that is robust to (distrib...
The goal of regression and classification methods in supervised learning is to minimize the empirica...
The goal of regression and classification methods in supervised learning is to minimize the empirica...
Poisoning attack is one of the attack types commonly studied in the field of adversarial machine lea...
Comunicació presentada al ECML PKDD 2020: Machine Learning and Knowledge Discovery in Databases, cel...
Machine Learning (ML) algorithms are vulnerable to poisoning attacks, where a fraction of the traini...
Machine learning algorithms are vulnerable to poisoning attacks, where a fraction of the training da...
We consider machine learning, particularly regression, using locally-differentially private datasets...
A central problem in statistical learning is to design prediction algorithms that not only perform w...
As machine learning becomes widely used for automated decisions, attackers have strong incentives to...
Optimal transport has recently proved to be a useful tool in various machine learning applications n...
Optimal transport has recently proved to be a useful tool in various machine learning applications n...
Certified robustness in machine learning has primarily focused on adversarial perturbations of the i...
This paper studies defense mechanisms against model inversion (MI) attacks -- a type of privacy atta...
We study indiscriminate poisoning for linear learners where an adversary injects a few crafted examp...
This dissertation develops a comprehensive statistical learning framework that is robust to (distrib...
The goal of regression and classification methods in supervised learning is to minimize the empirica...
The goal of regression and classification methods in supervised learning is to minimize the empirica...
Poisoning attack is one of the attack types commonly studied in the field of adversarial machine lea...
Comunicació presentada al ECML PKDD 2020: Machine Learning and Knowledge Discovery in Databases, cel...