CN117296058A - 作为简单有效的对抗攻击方法的变体不一致攻击(via) - Google Patents

作为简单有效的对抗攻击方法的变体不一致攻击(via) Download PDF

Info

Publication number
CN117296058A
CN117296058A CN202280033706.0A CN202280033706A CN117296058A CN 117296058 A CN117296058 A CN 117296058A CN 202280033706 A CN202280033706 A CN 202280033706A CN 117296058 A CN117296058 A CN 117296058A
Authority
CN
China
Prior art keywords
pair
samples
machine learning
learning model
robot
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202280033706.0A
Other languages
English (en)
Chinese (zh)
Inventor
S·P·K·加德
赵旭
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Oracle International Corp
Original Assignee
Oracle International Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oracle International Corp filed Critical Oracle International Corp
Publication of CN117296058A publication Critical patent/CN117296058A/zh
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F40/00Handling natural language data
    • G06F40/20Natural language analysis
    • G06F40/279Recognition of textual entities
    • G06F40/289Phrasal analysis, e.g. finite state techniques or chunking
    • G06F40/295Named entity recognition
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L51/00User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
    • H04L51/02User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail using automatic reactions or user delegation, e.g. automatic replies or chatbot-generated messages

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Bioethics (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Computational Linguistics (AREA)
  • Audiology, Speech & Language Pathology (AREA)
  • Artificial Intelligence (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Machine Translation (AREA)
CN202280033706.0A 2021-05-07 2022-03-29 作为简单有效的对抗攻击方法的变体不一致攻击(via) Pending CN117296058A (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US202163185531P 2021-05-07 2021-05-07
US63/185,531 2021-05-07
PCT/US2022/022291 WO2022235353A1 (en) 2021-05-07 2022-03-29 Variant inconsistency attack (via) as a simple and effective adversarial attack method

Publications (1)

Publication Number Publication Date
CN117296058A true CN117296058A (zh) 2023-12-26

Family

ID=81346304

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202280033706.0A Pending CN117296058A (zh) 2021-05-07 2022-03-29 作为简单有效的对抗攻击方法的变体不一致攻击(via)

Country Status (5)

Country Link
US (2) US12086274B2 (https=)
EP (1) EP4334832A1 (https=)
JP (2) JP7778160B2 (https=)
CN (1) CN117296058A (https=)
WO (1) WO2022235353A1 (https=)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11316806B1 (en) * 2020-01-28 2022-04-26 Snap Inc. Bulk message deletion
US11776241B1 (en) * 2022-09-30 2023-10-03 Fudan University Method and system for generating adversarial attacks on video recognition models
US12585682B2 (en) * 2022-10-10 2026-03-24 Tata Consultancy Services Limited Method and system for generating longform technical question and answer dataset
US11783233B1 (en) 2023-01-11 2023-10-10 Dimaag-Ai, Inc. Detection and visualization of novel data instances for self-healing AI/ML model-based solution deployment
US20240232713A1 (en) 2023-01-11 2024-07-11 Dimaag-Ai, Inc. Detection and visualization of novel data instances for self-healing ai/ml model-based solution deployment
US12541785B2 (en) 2023-03-03 2026-02-03 State Farm Mutual Automobile Insurance Company Chatbot to assist in vehicle shopping
US20240330504A1 (en) * 2023-04-03 2024-10-03 State Farm Mutual Automobile Insurance Company Generative Artificial Intelligence for Privacy Inspection and Enforcement of Unstructured Data
US12524545B2 (en) * 2023-04-27 2026-01-13 Seagate Technology Llc Detection of ransomware attack at object store
US12306859B2 (en) 2023-05-04 2025-05-20 Vijay Madisetti Method and system for protecting and removing private information used in large language models
US12158904B2 (en) * 2023-05-04 2024-12-03 Vijay Madisetti Method and system for protecting and removing private information used in large language models
US12608689B2 (en) 2023-05-25 2026-04-21 State Farm Mutual Automobile Insurance Company Generating social media content for a user associated with an enterprise

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10839291B2 (en) * 2017-07-01 2020-11-17 Intel Corporation Hardened deep neural networks through training from adversarial misclassified data
WO2019014487A1 (en) * 2017-07-12 2019-01-17 The Regents Of The University Of California DETECTION AND PREVENTION OF DEEP ANTAGONIST LEARNING
US10917421B2 (en) * 2018-02-19 2021-02-09 Cisco Technology, Inc. Refining synthetic malicious samples with unlabeled data
JP7010371B2 (ja) * 2018-04-27 2022-01-26 日本電気株式会社 学習済みモデル更新装置、学習済みモデル更新方法、プログラム
US20200125943A1 (en) * 2018-10-18 2020-04-23 International Business Machines Corporation Adversial deep neural network fuzzing
US11036857B2 (en) * 2018-11-15 2021-06-15 International Business Machines Corporation Protecting a machine learning model
US12190239B2 (en) * 2019-02-12 2025-01-07 Nec Corporation Model building apparatus, model building method, computer program and recording medium
US11227215B2 (en) * 2019-03-08 2022-01-18 International Business Machines Corporation Quantifying vulnerabilities of deep learning computing systems to adversarial perturbations
US20220126864A1 (en) * 2019-03-29 2022-04-28 Intel Corporation Autonomous vehicle system
US11636332B2 (en) * 2019-07-09 2023-04-25 Baidu Usa Llc Systems and methods for defense against adversarial attacks using feature scattering-based adversarial training
JP7175244B2 (ja) * 2019-07-30 2022-11-18 Kddi株式会社 分類装置、学習装置、分類方法及びプログラム
US11856276B2 (en) * 2019-09-13 2023-12-26 Oracle International Corporation Scalable architecture for automatic generation of content distribution images
US11765202B2 (en) * 2020-01-17 2023-09-19 Cisco Technology, Inc. Automatic detection and prevention of injection attacks
US11675896B2 (en) * 2020-04-09 2023-06-13 International Business Machines Corporation Using multimodal model consistency to detect adversarial attacks
US12088621B2 (en) * 2020-09-18 2024-09-10 Paypal, Inc. Meta-learning and auto-labeling for machine learning
US20220114399A1 (en) * 2020-10-08 2022-04-14 Royal Bank Of Canada System and method for machine learning fairness testing

Also Published As

Publication number Publication date
US20240403447A1 (en) 2024-12-05
EP4334832A1 (en) 2024-03-13
US12086274B2 (en) 2024-09-10
US20220358225A1 (en) 2022-11-10
WO2022235353A1 (en) 2022-11-10
JP7778160B2 (ja) 2025-12-01
JP2026035651A (ja) 2026-03-04
JP2024518416A (ja) 2024-05-01

Similar Documents

Publication Publication Date Title
CN115398437B (zh) 改进的域外(ood)检测技术
CN114424185B (zh) 用于自然语言处理的停用词数据扩充
CN116724305B (zh) 上下文标签与命名实体识别模型的集成
CN116802629B (zh) 用于自然语言处理的多因素建模
CN115398436B (zh) 用于自然语言处理的噪声数据扩充
US12086274B2 (en) Variant inconsistency attack (VIA) as a simple and effective adversarial attack method
CN116583837B (zh) 用于自然语言处理的基于距离的logit值
CN116547676B (zh) 用于自然语言处理的增强型logit
CN119790387A (zh) 将自然语言话语转换成中间数据库查询表示的技术
CN115989490A (zh) 用于为文本分类提供解释的技术
CN116635862A (zh) 用于自然语言处理的域外数据扩充
CN112487157A (zh) 用于聊天机器人的基于模板的意图分类
CN118140230A (zh) 对经预训练的语言模型的单个转换器层的多头网络进行微调
CN118265981B (zh) 用于为预训练的语言模型处置长文本的系统和技术
US20240062108A1 (en) Techniques for training and deploying a named entity recognition model
CN116615727A (zh) 用于自然语言处理的关键词数据扩充工具
CN116724306A (zh) 用于自然语言处理器的多特征平衡
US12518098B2 (en) Fusion of word embeddings and word scores for text classification
CN118202344A (zh) 用于从文档中提取嵌入式数据的深度学习技术
CN116490879A (zh) 用于神经网络中过度预测的方法和系统
CN118215920A (zh) 用于使用散列嵌入进行语言检测的宽深网络
CN119183573A (zh) 实体感知数据增强技术
CN118251668A (zh) 用于从数据中提取问题答案对的基于规则的技术
CN121936414A (zh) 用于为预训练的语言模型处置长文本的系统和技术
CN119768794A (zh) 自适应训练数据扩充以促进命名实体识别模型的训练

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination