{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,27]],"date-time":"2025-08-27T05:40:32Z","timestamp":1756273232472,"version":"3.44.0"},"reference-count":31,"publisher":"IEEE","license":[{"start":{"date-parts":[[2025,8,4]],"date-time":"2025-08-04T00:00:00Z","timestamp":1754265600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2025,8,4]],"date-time":"2025-08-04T00:00:00Z","timestamp":1754265600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025,8,4]]},"DOI":"10.1109\/csr64739.2025.11130050","type":"proceedings-article","created":{"date-parts":[[2025,8,26]],"date-time":"2025-08-26T19:04:27Z","timestamp":1756235067000},"page":"63-70","source":"Crossref","is-referenced-by-count":0,"title":["Defending Against Beta Poisoning Attacks in Machine Learning Models"],"prefix":"10.1109","author":[{"given":"Nilufer","family":"Gulciftci","sequence":"first","affiliation":[{"name":"Acıbadem University,Department of Computer Engineering,Istanbul,Turkiye"}]},{"given":"M. Emre","family":"Gursoy","sequence":"additional","affiliation":[{"name":"Koç University,Department of Computer Engineering,Istanbul,Turkiye"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/SPW50608.2020.00028"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2023.3299572"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/3551636"},{"key":"ref4","article-title":"Poisoning attacks against support vector machines","author":"Biggio","year":"2012","journal-title":"arXiv preprint arXiv:1206.6389"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/3128572.3140447"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00057"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3128572.3140451"},{"key":"ref8","first-page":"12080","article-title":"Metapoison: Practical general-purpose clean-label data poisoning","volume":"33","author":"Huang","year":"2020","journal-title":"Advances in Neural Information Processing Systems"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/IJCNN52387.2021.9533557"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP51992.2021.00021"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/TPS-ISA56441.2022.00031"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/3585385"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1609\/aaai.v36i9.21191"},{"article-title":"Detection of adversarial training examples in poisoning attacks through anomaly detection","volume-title":"arXiv preprint arXiv:1802.03041","author":"Paudice","key":"ref14"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/IJCNN.2018.8489495"},{"key":"ref16","first-page":"1689","article-title":"Is feature selection secure against training data poisoning?","volume-title":"International Conference on Machine Learning","author":"Xiao"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1609\/aaai.v29i1.9569"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/3128572.3140451"},{"article-title":"Witches\u2019 brew: Industrial scale data poisoning via gradient matching","volume-title":"International Conference on Learning Representations","author":"Geiping","key":"ref19"},{"key":"ref20","article-title":"Poison frogs! targeted clean-label poisoning attacks on neural networks","volume":"31","author":"Shafahi","year":"2018","journal-title":"Advances in Neural Information Processing Systems"},{"key":"ref21","first-page":"7614","article-title":"Transferable clean-label poisoning attacks on deep neural nets","volume-title":"International Conference on Machine Learning","author":"Zhu"},{"key":"ref22","article-title":"Certified defenses for data poisoning attacks","volume":"30","author":"Steinhardt","year":"2017","journal-title":"Advances in neural information processing systems"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/DSC55868.2022.00014"},{"key":"ref24","article-title":"Incompatibility clustering as a defense against backdoor poisoning attacks","author":"Jin","year":"2021","journal-title":"arXiv preprint arXiv:2105.03692"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-66415-2_4"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/TIT.1967.1053964"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/TPAMI.2002.1017616"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-84858-7"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/5.726791"},{"article-title":"Learning multiple layers of features from tiny images","year":"2009","author":"Krizhevsky","key":"ref30"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1145\/3447755"}],"event":{"name":"2025 IEEE International Conference on Cyber Security and Resilience (CSR)","start":{"date-parts":[[2025,8,4]]},"location":"Chania, Crete, Greece","end":{"date-parts":[[2025,8,6]]}},"container-title":["2025 IEEE International Conference on Cyber Security and Resilience (CSR)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11129696\/11129957\/11130050.pdf?arnumber=11130050","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,27]],"date-time":"2025-08-27T05:14:48Z","timestamp":1756271688000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11130050\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,8,4]]},"references-count":31,"URL":"https:\/\/doi.org\/10.1109\/csr64739.2025.11130050","relation":{},"subject":[],"published":{"date-parts":[[2025,8,4]]}}}