{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,7]],"date-time":"2024-09-07T05:34:11Z","timestamp":1725687251709},"reference-count":28,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,9,17]],"date-time":"2023-09-17T00:00:00Z","timestamp":1694908800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,9,17]],"date-time":"2023-09-17T00:00:00Z","timestamp":1694908800000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,9,17]]},"DOI":"10.1109\/mlsp55844.2023.10286008","type":"proceedings-article","created":{"date-parts":[[2023,10,23]],"date-time":"2023-10-23T13:55:41Z","timestamp":1698069341000},"page":"1-6","source":"Crossref","is-referenced-by-count":0,"title":["A BIC-Based Mixture Model Defense Against Data Poisoning Attacks on Classifiers"],"prefix":"10.1109","author":[{"given":"Xi","family":"Li","sequence":"first","affiliation":[{"name":"Pennsylvania State University,the School of EECS,University Park,PA,16802"}]},{"given":"David J.","family":"Miller","sequence":"additional","affiliation":[{"name":"Pennsylvania State University,the School of EECS,University Park,PA,16802"}]},{"given":"Zhen","family":"Xiang","sequence":"additional","affiliation":[{"name":"Pennsylvania State University,the School of EECS,University Park,PA,16802"}]},{"given":"George","family":"Kesidis","sequence":"additional","affiliation":[{"name":"Pennsylvania State University,the School of EECS,University Park,PA,16802"}]}],"member":"263","reference":[{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1162\/neco.1997.9.8.1735"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/CVPR.2016.90"},{"journal-title":"Learning multiple layers of features from tiny images","year":"2009","author":"krizhevsky","key":"ref15"},{"key":"ref14","article-title":"On the effectiveness of mitigating data poisoning attacks with gradient shaping","author":"hong","year":"2020","journal-title":"arXiv 2002 11497"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/TSP.2006.870586"},{"key":"ref10","article-title":"Unsupervised representation learning by predicting image rotations","author":"gidaris","year":"2018","journal-title":"Proc ICLR"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3264418"},{"key":"ref1","article-title":"Support vector machines under adversarial label noise","author":"biggio","year":"2011","journal-title":"ACML"},{"key":"ref17","article-title":"Deep partition aggregation: Provable defenses against general poisoning attacks","author":"levine","year":"2021","journal-title":"Proc ICLR"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1111\/j.1751-5823.2001.tb00456.x"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-61725-7_31"},{"key":"ref18","article-title":"Data poisoning attacks on factorization-based collaborative filtering","author":"li","year":"2016","journal-title":"Proc NeurIPS"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-88735-7_2"},{"key":"ref23","article-title":"Towards poisoning of deep learning algorithms with backgradient optimization","author":"munoz-gonzalez","year":"2017","journal-title":"Proc ACM AISec"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1214\/aos\/1176344136"},{"key":"ref25","article-title":"Label sanitization against label flipping poisoning attacks","author":"paudice","year":"2018","journal-title":"Proc ECML PKDD Workshops"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.24963\/ijcai.2019\/657"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/JPROC.2020.2970615"},{"journal-title":"Finite Mixture Models","year":"2004","author":"mclachlan","key":"ref21"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1016\/j.neucom.2014.08.081"},{"key":"ref27","article-title":"Improved certified defenses against data poisoning with (deterministic) finite aggregation","author":"wang","year":"2022","journal-title":"Proc ICML"},{"journal-title":"Pattern Classification","year":"1999","author":"duda","key":"ref8"},{"key":"ref7","article-title":"Sever: A robust meta-algorithm for stochastic optimization","author":"diakonikolas","year":"2019","journal-title":"Proc ICML"},{"key":"ref9","article-title":"Robust logistic regression and classification","author":"feng","year":"2014","journal-title":"Proc NeurIPS"},{"journal-title":"TREC 2005 spam public corpora","year":"2005","author":"cormack","key":"ref4"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2021.3080522"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1111\/j.2517-6161.1977.tb01600.x"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1007\/BF00994018"}],"event":{"name":"2023 IEEE 33rd International Workshop on Machine Learning for Signal Processing (MLSP)","start":{"date-parts":[[2023,9,17]]},"location":"Rome, Italy","end":{"date-parts":[[2023,9,20]]}},"container-title":["2023 IEEE 33rd International Workshop on Machine Learning for Signal Processing (MLSP)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10285838\/10285858\/10286008.pdf?arnumber=10286008","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,11,13]],"date-time":"2023-11-13T14:03:36Z","timestamp":1699884216000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10286008\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,9,17]]},"references-count":28,"URL":"https:\/\/doi.org\/10.1109\/mlsp55844.2023.10286008","relation":{},"subject":[],"published":{"date-parts":[[2023,9,17]]}}}