{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,24]],"date-time":"2026-02-24T01:56:12Z","timestamp":1771898172741,"version":"3.50.1"},"reference-count":55,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,5,23]],"date-time":"2023-05-23T00:00:00Z","timestamp":1684800000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,5,23]],"date-time":"2023-05-23T00:00:00Z","timestamp":1684800000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,5,23]]},"DOI":"10.1109\/sera57763.2023.10197774","type":"proceedings-article","created":{"date-parts":[[2023,8,3]],"date-time":"2023-08-03T17:29:18Z","timestamp":1691083758000},"page":"138-143","source":"Crossref","is-referenced-by-count":5,"title":["Towards an Adversarial Machine Learning Framework in Cyber-Physical Systems"],"prefix":"10.1109","author":[{"given":"John","family":"Mulo","sequence":"first","affiliation":[{"name":"Towson University,Department of Computer and Information Sciences,Towson,MD,21252"}]},{"given":"Pu","family":"Tian","sequence":"additional","affiliation":[{"name":"Towson University,Department of Computer and Information Sciences,Towson,MD,21252"}]},{"given":"Adamu","family":"Hussaini","sequence":"additional","affiliation":[{"name":"Towson University,Department of Computer and Information Sciences,Towson,MD,21252"}]},{"given":"Hengshuo","family":"Liang","sequence":"additional","affiliation":[{"name":"Towson University,Department of Computer and Information Sciences,Towson,MD,21252"}]},{"given":"Wei","family":"Yu","sequence":"additional","affiliation":[{"name":"Towson University,Department of Computer and Information Sciences,Towson,MD,21252"}]}],"member":"263","reference":[{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2019.2963635"},{"key":"ref12","article-title":"Foolbox: A python toolbox to benchmark the robustness of machine learning models","author":"rauber","year":"0"},{"key":"ref15","article-title":"Adversarial attacks on neural network policies","author":"huang","year":"2017"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2017.2683200"},{"key":"ref53","article-title":"Intriguing properties of neural networks","author":"szegedy","year":"2014","journal-title":"Proc Int'l Conf on Learning Representations"},{"key":"ref52","doi-asserted-by":"publisher","DOI":"10.3390\/app9050909"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.49"},{"key":"ref55","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134057"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/3547330"},{"key":"ref54","article-title":"Towards deep neural network architectures robust to adversarial examples","author":"gu","year":"2014"},{"key":"ref17","first-page":"2578","article-title":"Adversarial examples: Opportunities and challenges","volume":"31","author":"zhang","year":"2019","journal-title":"IEEE Transactions on Neural Networks and Learning Systems"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/DASC-PICom-CBDCom-CyberSciTech52372.2021.00058"},{"key":"ref19","first-page":"684","article-title":"Defending against whitebox adversarial attacks via randomized discretization","author":"zhang","year":"2019","journal-title":"International Conference on Artificial Intelligence and Statistics"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1201\/9781351251389-8"},{"key":"ref51","article-title":"Electrical Grid Stability Simulated Data","author":"arzamasov","year":"2018","journal-title":"UCI Machine Learning Repository"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/SmartGridComm52983.2022.9960972"},{"key":"ref46","article-title":"Cascading failures in smart grids under random, targeted and adaptive attacks","author":"ruj","year":"2022"},{"key":"ref45","article-title":"Cascading failures in power grids","author":"meyur","year":"2022"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/PAINE56030.2022.10014927"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/TCCN.2022.3147203"},{"key":"ref42","article-title":"Robust prototypical few-shot organ segmentation with regularized neural-odes","author":"pandey","year":"2022"},{"key":"ref41","article-title":"White- box membership attack against machine learning based retinopathy classification","author":"hamidouche","year":"2022"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-36708-4_39"},{"key":"ref43","article-title":"Saliency guided adversarial training for learning generalizable features with applications to medical imaging classification system","author":"li","year":"2022"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/SOCC56010.2022.9908114"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/TNSE.2020.3002796"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2022.3163894"},{"key":"ref9","article-title":"Explaining and harnessing adversarial examples","author":"goodfellow","year":"0"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/ICII.2019.00063"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2018.2884906"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1016\/j.hcc.2021.100002"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/ICC45855.2022.9838333"},{"key":"ref40","article-title":"Practical adversarial attacks on spatiotemporal traffic forecasting models","author":"fan liu","year":"2022","journal-title":"Proceedings of the Thirty-sixth Annual Conference on Neural Information Processing Systems (NeurIPS)"},{"key":"ref35","article-title":"Delving into transferable adversarial examples and black-box attacks","author":"liu","year":"2016"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1145\/3321707.3321749"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/GLOBECOM48099.2022.10000757"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/ICMLA.2017.0-136"},{"key":"ref31","article-title":"A rotation and a translation suffice: Fooling cnns with simple transformations","author":"engstrom","year":"2017","journal-title":"ArXiv"},{"key":"ref30","first-page":"77","article-title":"Decision- based adversarial attacks: Reliable attacks against black-box machine learning models","author":"brendel","year":"2021","journal-title":"Advances in Reliably Evaluating and Improving Adversarial Robustness"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00045"},{"key":"ref32","first-page":"1","article-title":"Towards the first adversarially robust neural network model on mnist","author":"schott","year":"2019","journal-title":"Seventh International Conference on Learning Representations (ICLR 2019)"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2018.2830661"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2948912"},{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/GLOBECOM48099.2022.10000872"},{"key":"ref38","article-title":"Advdo: Realistic adversarial attacks for trajectory prediction","author":"yulong cao","year":"2022","journal-title":"European Conference on Computer Vision (ECCV)"},{"key":"ref24","article-title":"Gradient-based adversarial attacks: An introduction","author":"haldar","year":"2020"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2022.3163894"},{"key":"ref26","article-title":"Adversarial examples in the physical world","author":"kurakin","year":"2017","journal-title":"Proc Int'l Conf on Learning Representations"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00057"},{"key":"ref20","first-page":"2484","article-title":"Simple black-box adversarial attacks","author":"guo","year":"2019","journal-title":"International Conference on Machine Learning"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1049\/cit2.12028"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-01267-0_13"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/3128572.3140448"},{"key":"ref27","article-title":"Simple black-box adversarial perturbations for deep networks","author":"narodytska","year":"2016"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/SPW.2018.00015"}],"event":{"name":"2023 IEEE\/ACIS 21st International Conference on Software Engineering Research, Management and Applications (SERA)","location":"Orlando, FL, USA","start":{"date-parts":[[2023,5,23]]},"end":{"date-parts":[[2023,5,25]]}},"container-title":["2023 IEEE\/ACIS 21st International Conference on Software Engineering Research, Management and Applications (SERA)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10197651\/10197644\/10197774.pdf?arnumber=10197774","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,8,21]],"date-time":"2023-08-21T17:45:49Z","timestamp":1692639949000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10197774\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,5,23]]},"references-count":55,"URL":"https:\/\/doi.org\/10.1109\/sera57763.2023.10197774","relation":{},"subject":[],"published":{"date-parts":[[2023,5,23]]}}}