CN117296058A - 作为简单有效的对抗攻击方法的变体不一致攻击(via) - Google Patents

作为简单有效的对抗攻击方法的变体不一致攻击(via) Download PDF

Info

Publication number
CN117296058A
CN117296058A CN202280033706.0A CN202280033706A CN117296058A CN 117296058 A CN117296058 A CN 117296058A CN 202280033706 A CN202280033706 A CN 202280033706A CN 117296058 A CN117296058 A CN 117296058A
Authority
CN
China
Prior art keywords
pair
samples
machine learning
learning model
robot
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202280033706.0A
Other languages
English (en)
Chinese (zh)
Inventor
S·P·K·加德
赵旭
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Oracle International Corp
Original Assignee
Oracle International Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oracle International Corp filed Critical Oracle International Corp
Publication of CN117296058A publication Critical patent/CN117296058A/zh
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F40/00Handling natural language data
    • G06F40/20Natural language analysis
    • G06F40/279Recognition of textual entities
    • G06F40/289Phrasal analysis, e.g. finite state techniques or chunking
    • G06F40/295Named entity recognition
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L51/00User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
    • H04L51/02User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail using automatic reactions or user delegation, e.g. automatic replies or chatbot-generated messages

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Physics & Mathematics (AREA)
  • Bioethics (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Computational Linguistics (AREA)
  • Audiology, Speech & Language Pathology (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Artificial Intelligence (AREA)
  • Machine Translation (AREA)
CN202280033706.0A 2021-05-07 2022-03-29 作为简单有效的对抗攻击方法的变体不一致攻击(via) Pending CN117296058A (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
US202163185531P 2021-05-07 2021-05-07
US63/185,531 2021-05-07
PCT/US2022/022291 WO2022235353A1 (en) 2021-05-07 2022-03-29 Variant inconsistency attack (via) as a simple and effective adversarial attack method

Publications (1)

Publication Number Publication Date
CN117296058A true CN117296058A (zh) 2023-12-26

Family

ID=81346304

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202280033706.0A Pending CN117296058A (zh) 2021-05-07 2022-03-29 作为简单有效的对抗攻击方法的变体不一致攻击(via)

Country Status (5)

Country Link
US (2) US12086274B2 (https=)
EP (1) EP4334832A1 (https=)
JP (2) JP7778160B2 (https=)
CN (1) CN117296058A (https=)
WO (1) WO2022235353A1 (https=)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11316806B1 (en) * 2020-01-28 2022-04-26 Snap Inc. Bulk message deletion
US11776241B1 (en) * 2022-09-30 2023-10-03 Fudan University Method and system for generating adversarial attacks on video recognition models
US12585682B2 (en) * 2022-10-10 2026-03-24 Tata Consultancy Services Limited Method and system for generating longform technical question and answer dataset
US20240232713A1 (en) 2023-01-11 2024-07-11 Dimaag-Ai, Inc. Detection and visualization of novel data instances for self-healing ai/ml model-based solution deployment
US11783233B1 (en) 2023-01-11 2023-10-10 Dimaag-Ai, Inc. Detection and visualization of novel data instances for self-healing AI/ML model-based solution deployment
US12541785B2 (en) 2023-03-03 2026-02-03 State Farm Mutual Automobile Insurance Company Chatbot to assist in vehicle shopping
US20240330504A1 (en) * 2023-04-03 2024-10-03 State Farm Mutual Automobile Insurance Company Generative Artificial Intelligence for Privacy Inspection and Enforcement of Unstructured Data
US12524545B2 (en) * 2023-04-27 2026-01-13 Seagate Technology Llc Detection of ransomware attack at object store
US12158904B2 (en) * 2023-05-04 2024-12-03 Vijay Madisetti Method and system for protecting and removing private information used in large language models
US12306859B2 (en) 2023-05-04 2025-05-20 Vijay Madisetti Method and system for protecting and removing private information used in large language models
US20240394503A1 (en) 2023-05-25 2024-11-28 State Farm Mutual Automobile Insurance Company Providing information via a machine learning chatbot emulating traits of a person

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10839291B2 (en) * 2017-07-01 2020-11-17 Intel Corporation Hardened deep neural networks through training from adversarial misclassified data
US11526601B2 (en) * 2017-07-12 2022-12-13 The Regents Of The University Of California Detection and prevention of adversarial deep learning
US10917421B2 (en) * 2018-02-19 2021-02-09 Cisco Technology, Inc. Refining synthetic malicious samples with unlabeled data
US20210241119A1 (en) * 2018-04-27 2021-08-05 Nec Corporation Pre-trained model update device, pre-trained model update method, and program
US20200125943A1 (en) * 2018-10-18 2020-04-23 International Business Machines Corporation Adversial deep neural network fuzzing
US11036857B2 (en) * 2018-11-15 2021-06-15 International Business Machines Corporation Protecting a machine learning model
JP7192895B2 (ja) * 2019-02-12 2022-12-20 日本電気株式会社 モデル構築装置、モデル構築方法、コンピュータプログラム及び記録媒体
US11227215B2 (en) * 2019-03-08 2022-01-18 International Business Machines Corporation Quantifying vulnerabilities of deep learning computing systems to adversarial perturbations
DE112020001663T5 (de) * 2019-03-29 2022-03-24 Intel Corporation Autonomes Fahrzeugsystem
US11636332B2 (en) * 2019-07-09 2023-04-25 Baidu Usa Llc Systems and methods for defense against adversarial attacks using feature scattering-based adversarial training
JP7175244B2 (ja) * 2019-07-30 2022-11-18 Kddi株式会社 分類装置、学習装置、分類方法及びプログラム
US11856276B2 (en) * 2019-09-13 2023-12-26 Oracle International Corporation Scalable architecture for automatic generation of content distribution images
US11765202B2 (en) * 2020-01-17 2023-09-19 Cisco Technology, Inc. Automatic detection and prevention of injection attacks
US11675896B2 (en) * 2020-04-09 2023-06-13 International Business Machines Corporation Using multimodal model consistency to detect adversarial attacks
US11818163B2 (en) * 2020-09-18 2023-11-14 Paypal, Inc. Automatic machine learning vulnerability identification and retraining
US20220114399A1 (en) * 2020-10-08 2022-04-14 Royal Bank Of Canada System and method for machine learning fairness testing

Also Published As

Publication number Publication date
WO2022235353A1 (en) 2022-11-10
JP7778160B2 (ja) 2025-12-01
US20240403447A1 (en) 2024-12-05
US12086274B2 (en) 2024-09-10
US20220358225A1 (en) 2022-11-10
JP2024518416A (ja) 2024-05-01
JP2026035651A (ja) 2026-03-04
EP4334832A1 (en) 2024-03-13

Similar Documents

Publication Publication Date Title
CN115398437B (zh) 改进的域外(ood)检测技术
CN114424185B (zh) 用于自然语言处理的停用词数据扩充
CN116724305B (zh) 上下文标签与命名实体识别模型的集成
CN116802629B (zh) 用于自然语言处理的多因素建模
CN115398436B (zh) 用于自然语言处理的噪声数据扩充
US12086274B2 (en) Variant inconsistency attack (VIA) as a simple and effective adversarial attack method
CN116583837B (zh) 用于自然语言处理的基于距离的logit值
CN116547676B (zh) 用于自然语言处理的增强型logit
CN119790387A (zh) 将自然语言话语转换成中间数据库查询表示的技术
CN115989490A (zh) 用于为文本分类提供解释的技术
CN112487157A (zh) 用于聊天机器人的基于模板的意图分类
CN116635862A (zh) 用于自然语言处理的域外数据扩充
CN118140230A (zh) 对经预训练的语言模型的单个转换器层的多头网络进行微调
CN118265981B (zh) 用于为预训练的语言模型处置长文本的系统和技术
US20240062108A1 (en) Techniques for training and deploying a named entity recognition model
CN116615727A (zh) 用于自然语言处理的关键词数据扩充工具
US12518098B2 (en) Fusion of word embeddings and word scores for text classification
CN116724306A (zh) 用于自然语言处理器的多特征平衡
CN118202344A (zh) 用于从文档中提取嵌入式数据的深度学习技术
CN116490879A (zh) 用于神经网络中过度预测的方法和系统
CN118215920A (zh) 用于使用散列嵌入进行语言检测的宽深网络
CN119183573A (zh) 实体感知数据增强技术
CN118251668A (zh) 用于从数据中提取问题答案对的基于规则的技术
CN119768794A (zh) 自适应训练数据扩充以促进命名实体识别模型的训练
CN121773407A (zh) 用于将自然语言谈话变换成可视化表示的技术

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination