{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,22]],"date-time":"2026-04-22T17:44:50Z","timestamp":1776879890654,"version":"3.51.2"},"publisher-location":"New York, NY, USA","reference-count":19,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,11,3]],"date-time":"2017-11-03T00:00:00Z","timestamp":1509667200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,11,3]]},"DOI":"10.1145\/3128572.3140450","type":"proceedings-article","created":{"date-parts":[[2017,11,3]],"date-time":"2017-11-03T12:36:10Z","timestamp":1509712570000},"page":"103-110","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":89,"title":["Mitigating Poisoning Attacks on Machine Learning Models"],"prefix":"10.1145","author":[{"given":"Nathalie","family":"Baracaldo","sequence":"first","affiliation":[{"name":"IBM Research, San Jose, CA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Bryant","family":"Chen","sequence":"additional","affiliation":[{"name":"IBM Research, San Jose, CA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Heiko","family":"Ludwig","sequence":"additional","affiliation":[{"name":"IBM Research, San Jose, CA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jaehoon Amir","family":"Safavi","sequence":"additional","affiliation":[{"name":"IBM Research, San Jose, CA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,11,3]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Data Provenance Model for Internet of Things (IoT) Systems. In ServiceOriented Computing - ICSOC 2016 Workshops. Springer Berlin Heidelberg","unstructured":"2017. Data Provenance Model for Internet of Things (IoT) Systems. In ServiceOriented Computing - ICSOC 2016 Workshops. Springer Berlin Heidelberg , Berlin, Heidelberg. 2017. Data Provenance Model for Internet of Things (IoT) Systems. In ServiceOriented Computing - ICSOC 2016 Workshops. Springer Berlin Heidelberg, Berlin, Heidelberg."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/3055245.3055255"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10994-010-5188-5"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/TKDE.2013.57"},{"key":"e_1_3_2_1_5_1","unstructured":"Battista Biggio Blaine Nelson and Pavel Laskov. 2011. Support vector machines under adversarial label noise Asian Conference on Machine Learning. 97--112.  Battista Biggio Blaine Nelson and Pavel Laskov. 2011. Support vector machines under adversarial label noise Asian Conference on Machine Learning. 97--112."},{"key":"e_1_3_2_1_6_1","volume-title":"Poisoning attacks against support vector machines. arXiv preprint arXiv:1206.6389","author":"Biggio Battista","year":"2012","unstructured":"Battista Biggio , Blaine Nelson , and Pavel Laskov . 2012. Poisoning attacks against support vector machines. arXiv preprint arXiv:1206.6389 ( 2012 ). Battista Biggio, Blaine Nelson, and Pavel Laskov. 2012. Poisoning attacks against support vector machines. arXiv preprint arXiv:1206.6389 (2012)."},{"key":"e_1_3_2_1_7_1","volume-title":"Debugging machine learning tasks. arXiv preprint arXiv:1603.07292","author":"Chakarov Aleksandar","year":"2016","unstructured":"Aleksandar Chakarov , Aditya Nori , Sriram Rajamani , Shayak Sen , and Deepak Vijaykeerthy . 2016. Debugging machine learning tasks. arXiv preprint arXiv:1603.07292 ( 2016 ). Aleksandar Chakarov, Aditya Nori, Sriram Rajamani, Shayak Sen, and Deepak Vijaykeerthy. 2016. Debugging machine learning tasks. arXiv preprint arXiv:1603.07292 (2016)."},{"key":"e_1_3_2_1_8_1","unstructured":"Jr Gadelha etal Kairos: an architecture for securing authorship and temporal information of provenance data in grid-enabled workflow management systems eScience'08.  Jr Gadelha et al. Kairos: an architecture for securing authorship and temporal information of provenance data in grid-enabled workflow management systems eScience'08."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/3003816"},{"key":"e_1_3_2_1_10_1","volume-title":"FAST","volume":"9","author":"Hasan Ragib","year":"2009","unstructured":"Ragib Hasan , Radu Sion , and Marianne Winslett . 2009 . The Case of the Fake Picasso: Preventing History Forgery with Secure Provenance . FAST , Vol. Vol. 9 . 1--14. Ragib Hasan, Radu Sion, and Marianne Winslett. 2009. The Case of the Fake Picasso: Preventing History Forgery with Secure Provenance. FAST, Vol. Vol. 9. 1--14."},{"key":"e_1_3_2_1_11_1","volume-title":"Proceedings of the 2nd Workshop on the Theory and Practice of Provenance. Usenix.","author":"Lyle John","year":"2010","unstructured":"John Lyle and Andrew Martin . 2010 . Trusted computing and provenance: better together . Proceedings of the 2nd Workshop on the Theory and Practice of Provenance. Usenix. John Lyle and Andrew Martin. 2010. Trusted computing and provenance: better together. Proceedings of the 2nd Workshop on the Theory and Practice of Provenance. Usenix."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/JBHI.2014.2344095"},{"key":"e_1_3_2_1_13_1","volume-title":"Anthony D. Joseph, Benjamin I. P. Rubinstein, Udam Saini, Charles Sutton, J. D. Tygar, and Kai Xia.","author":"Nelson Blaine","year":"2009","unstructured":"Blaine Nelson , Marco Barreno , Fuching Jack Chi , Anthony D. Joseph, Benjamin I. P. Rubinstein, Udam Saini, Charles Sutton, J. D. Tygar, and Kai Xia. 2009 . Misleading learners: Co-opting your spam filter. Machine learning in cyber trust. Springer , 17--51. Blaine Nelson, Marco Barreno, Fuching Jack Chi, Anthony D. Joseph, Benjamin I. P. Rubinstein, Udam Saini, Charles Sutton, J. D. Tygar, and Kai Xia. 2009. Misleading learners: Co-opting your spam filter. Machine learning in cyber trust. Springer, 17--51."},{"key":"e_1_3_2_1_14_1","first-page":"1","article-title":"Exploiting Machine Learning to Subvert Your Spam Filter","volume":"8","author":"Nelson Blaine","year":"2008","unstructured":"Blaine Nelson , Marco Barreno , Fuching Jack Chi , Anthony D. Joseph , Benjamin I. P. Rubinstein , Udam Saini , Charles A. Sutton , J. Doug Tygar , and Kai Xia . 2008 . Exploiting Machine Learning to Subvert Your Spam Filter . LEET Vol. 8 (2008), 1 -- 9 . Blaine Nelson, Marco Barreno, Fuching Jack Chi, Anthony D. Joseph, Benjamin I. P. Rubinstein, Udam Saini, Charles A. Sutton, J. Doug Tygar, and Kai Xia. 2008. Exploiting Machine Learning to Subvert Your Spam Filter. LEET Vol. 8 (2008), 1--9.","journal-title":"LEET"},{"key":"e_1_3_2_1_15_1","volume-title":"Behavior of Machine Learning Algorithms in Adversarial Environments","author":"Nelson Blaine Alan","unstructured":"Blaine Alan Nelson . 2010. Behavior of Machine Learning Algorithms in Adversarial Environments . University of California , Berkeley. Blaine Alan Nelson. 2010. Behavior of Machine Learning Algorithms in Adversarial Environments. University of California, Berkeley."},{"key":"e_1_3_2_1_16_1","volume-title":"Towards the science of security and privacy in machine learning. arXiv preprint arXiv:1611.03814","author":"Papernot Nicolas","year":"2016","unstructured":"Nicolas Papernot , Patrick McDaniel , Arunesh Sinha , and Michael Wellman . 2016. Towards the science of security and privacy in machine learning. arXiv preprint arXiv:1611.03814 ( 2016 ). Nicolas Papernot, Patrick McDaniel, Arunesh Sinha, and Michael Wellman. 2016. Towards the science of security and privacy in machine learning. arXiv preprint arXiv:1611.03814 (2016)."},{"key":"e_1_3_2_1_17_1","volume-title":"A Mutual Agreement Signature Scheme for Secure Data Provenance. environments","author":"Rangwala Mohammed","year":"2014","unstructured":"Mohammed Rangwala , Zhengli Liang , Wei Peng , Xukai Zou , and Feng Li. 2014. A Mutual Agreement Signature Scheme for Secure Data Provenance. environments Vol. 13 ( 2014 ), 14. Mohammed Rangwala, Zhengli Liang, Wei Peng, Xukai Zou, and Feng Li. 2014. A Mutual Agreement Signature Scheme for Secure Data Provenance. environments Vol. 13 (2014), 14."},{"key":"e_1_3_2_1_18_1","volume-title":"Chaining for securing data provenance in distributed information networks MILCOM","author":"Wang Xinlei","year":"2012","unstructured":"Xinlei Wang , Kai Zeng , Kannan Govindan , and Prasant Mohapatra . 2012. Chaining for securing data provenance in distributed information networks MILCOM 2012 . 1--6. Xinlei Wang, Kai Zeng, Kannan Govindan, and Prasant Mohapatra. 2012. Chaining for securing data provenance in distributed information networks MILCOM 2012. 1--6."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/2339530.2339697"}],"event":{"name":"CCS '17: 2017 ACM SIGSAC Conference on Computer and Communications Security","location":"Dallas Texas USA","acronym":"CCS '17","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 10th ACM Workshop on Artificial Intelligence and Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3128572.3140450","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3128572.3140450","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:11:01Z","timestamp":1750212661000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3128572.3140450"}},"subtitle":["A Data Provenance Based Approach"],"short-title":[],"issued":{"date-parts":[[2017,11,3]]},"references-count":19,"alternative-id":["10.1145\/3128572.3140450","10.1145\/3128572"],"URL":"https:\/\/doi.org\/10.1145\/3128572.3140450","relation":{},"subject":[],"published":{"date-parts":[[2017,11,3]]},"assertion":[{"value":"2017-11-03","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}