{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,8]],"date-time":"2026-05-08T15:50:04Z","timestamp":1778255404181,"version":"3.51.4"},"reference-count":64,"publisher":"IEEE","license":[{"start":{"date-parts":[[2021,7,26]],"date-time":"2021-07-26T00:00:00Z","timestamp":1627257600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2021,7,26]],"date-time":"2021-07-26T00:00:00Z","timestamp":1627257600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2021,7,26]],"date-time":"2021-07-26T00:00:00Z","timestamp":1627257600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,7,26]]},"DOI":"10.1109\/csr51186.2021.9527986","type":"proceedings-article","created":{"date-parts":[[2021,9,6]],"date-time":"2021-09-06T21:35:06Z","timestamp":1630964106000},"page":"536-542","source":"Crossref","is-referenced-by-count":22,"title":["Towards Resilient Artificial Intelligence: Survey and Research Issues"],"prefix":"10.1109","author":[{"given":"Oliver","family":"Eigner","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sebastian","family":"Eresheim","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Peter","family":"Kieseberg","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lukas Daniel","family":"Klausner","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Martin","family":"Pirker","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Torsten","family":"Priebe","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Simon","family":"Tjoa","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Fiammetta","family":"Marulli","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Francesco","family":"Mercaldo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","article-title":"Data Poisoning Attack against Unsupervised Node Embedding Methods","author":"sun","year":"2020"},{"key":"ref38","article-title":"Efficient Estimation of Word Representations in Vector Space","author":"mikolov","year":"2013","journal-title":"Int Conf on Learning Representations"},{"key":"ref33","article-title":"Towards Resilient Data Management for the Internet of Moving Things","author":"paz","year":"2021","journal-title":"19 Fachtagung für Datenbank-systeme für Business Technologie und Web"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/SPW.2017.39"},{"key":"ref31","article-title":"Stagefright: An Android Exploitation Case Study","author":"drake","year":"2016","journal-title":"10th USENIX Workshop on Offensive Technologies"},{"key":"ref30","author":"seriot","year":"2018","journal-title":"JSON Parsing Considered Harmful"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1145\/3422622"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/ALLERTON.2018.8636048"},{"key":"ref35","article-title":"Explaining and Harnessing Adversarial Examples","author":"goodfellow","year":"2015","journal-title":"Int Conf on Learning Representations"},{"key":"ref34","author":"bengio","year":"2017","journal-title":"Deep Learning"},{"key":"ref60","article-title":"Solving Rubik’s Cube with a Robot Hand","author":"akkaya","year":"2019"},{"key":"ref62","article-title":"A Review on Android Malware: Attacks, Countermeasures and Challenges Ahead","volume":"10","author":"selvaganapathy","year":"2021","journal-title":"J Cyber Security and Mobility"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2013.2290431"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866353"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-62582-5_19"},{"key":"ref64","doi-asserted-by":"publisher","DOI":"10.1145\/3230833.3230852"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1631\/FITEE.1800573"},{"key":"ref29","article-title":"Exploit Programming: From Buffer Overflows to “Weird Machines” and Theory of Computation","volume":"36","author":"bratus","year":"2011","journal-title":"login"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.14361\/9783839408421-004"},{"key":"ref1","doi-asserted-by":"crossref","DOI":"10.1007\/978-3-031-79971-6","volume":"17","author":"vermaas","year":"2011","journal-title":"A philosophy of technology from technical artefacts to sociotechnical systems"},{"key":"ref20","article-title":"Adversarial Deep Learning for Energy Management in Buildings","author":"marulli","year":"2019","journal-title":"Proc of the 2019 Summer Simulation Conference"},{"key":"ref22","year":"2014","journal-title":"Cyber Resilience in Financial Market Infrastructures"},{"key":"ref21","year":"2018","journal-title":"Cyber Resilience Oversight Expectations for Financial Narket Infrastructures"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.3390\/info10040122"},{"key":"ref23","article-title":"Evasion Attacks against Banking Fraud Detection Systems","author":"carminati","year":"2020","journal-title":"Proc of the 23rd Int Symp on Research in Attacks Intrusions and Defenses"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-018-0415-3"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2018.2866319"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1145\/3298981"},{"key":"ref51","article-title":"Do Adversarially Robust ImageNet Models Transfer Better?","volume":"33","author":"huai","year":"2020","journal-title":"Advances in neural information processing systems"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1109\/IROS.2017.8202133"},{"key":"ref58","author":"winter","year":"2021","journal-title":"Trusted Artificial Intelligence Towards Certification of Machine Learning Applications"},{"key":"ref57","article-title":"MLsploit: A Framework for Interactive Experimentation with Adversarial Machine Learning Research","author":"das","year":"2019","journal-title":"Proc ACM SIGKDD Int Conf Knowledge Discovery and Data Mining"},{"key":"ref56","year":"2020","journal-title":"Artificial Intelligence Cybersecurity Challenges Threat Landscape for Artificial Intelligence"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.3233\/IDA-2004-8305"},{"key":"ref54","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2017.09.053"},{"key":"ref53","article-title":"Local Model Poisoning Attacks to Byzantine-Robust Federated Learning","author":"fang","year":"2020","journal-title":"29th USENIX Security Symposium"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-58951-6_24"},{"key":"ref10","article-title":"How We Analyzed the COMPAS Recidivism Algorithm","author":"larson","year":"2016","journal-title":"ProPublica"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1177\/2053951719861703"},{"key":"ref40","article-title":"Adversarial Attacks on Neural Network Policies","author":"huang","year":"2017","journal-title":"Int Conf on Learning Representations"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1001\/jama.2017.14585"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1038\/nature21056"},{"key":"ref14","article-title":"CheXNet: Radiologist-Level Pneumonia Detection on Chest X-Rays with Deep Learning","author":"rajpurkar","year":"2017"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1159\/000504292"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1001\/jama.2016.17216"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/RBME.2020.3013489"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1016\/j.eng.2019.01.014"},{"key":"ref19","article-title":"Adversarial Attacks on Optimization Based Planners","author":"vemprala","year":"2020"},{"key":"ref4","author":"konaev","year":"2020","journal-title":"U S Military Investments in Autonomy and AI A Budgetary Assessment"},{"key":"ref3","year":"2014","journal-title":"Towards Testing Critical Infrastructure Resilience"},{"key":"ref6","article-title":"Penetration Testing Artificial Intelligence","volume":"123","author":"tjoa","year":"2020","journal-title":"ERCIM News"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-99740-7_21"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.14429\/dsj.68.12371"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1117\/12.2526661"},{"key":"ref49","article-title":"Causal Inference Q-Network: Toward Resilient Reinforcement Learning","author":"yang","year":"2021"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.3389\/frai.2021.655486"},{"key":"ref46","article-title":"Adversarial Policies: Attacking Deep Reinforcement Learning","author":"gleave","year":"2019"},{"key":"ref45","doi-asserted-by":"crossref","DOI":"10.1109\/TCDS.2020.2974509","article-title":"Minimalistic Attacks: How Little it Takes to Fool Deep Reinforcement Learning Policies","author":"qu","year":"2021","journal-title":"IEEE Trans Cogn Develop Syst"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1145\/3394486.3403089"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1038\/s41586-019-1724-z"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-62416-7_19"},{"key":"ref41","article-title":"CopyCAT: Taking Control of Neural Policies with Constant Attacks","author":"hussenot","year":"2020","journal-title":"Proc Int Conf Autonomous Agents and Multiagent Systems"},{"key":"ref44","article-title":"Robust Adversarial Reinforcement Learning","author":"pinto","year":"2017","journal-title":"34th Intl Conf on Machine Learning"},{"key":"ref43","article-title":"Robust Deep Reinforcement Learning with Adversarial Attacks","author":"pattanaik","year":"2018","journal-title":"Proc Int Conf Autonomous Agents and Multiagent Systems"}],"event":{"name":"2021 IEEE International Conference on Cyber Security and Resilience (CSR)","location":"Rhodes, Greece","start":{"date-parts":[[2021,7,26]]},"end":{"date-parts":[[2021,7,28]]}},"container-title":["2021 IEEE International Conference on Cyber Security and Resilience (CSR)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9527731\/9527900\/09527986.pdf?arnumber=9527986","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,1,8]],"date-time":"2023-01-08T18:46:11Z","timestamp":1673203571000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9527986\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,7,26]]},"references-count":64,"URL":"https:\/\/doi.org\/10.1109\/csr51186.2021.9527986","relation":{},"subject":[],"published":{"date-parts":[[2021,7,26]]}}}