Open Problems in the Security of Learning

TitleOpen Problems in the Security of Learning
Publication TypeConference Proceedings
Year of Conference2008
AuthorsBarreno, Marco, Peter L. Bartlett, Fuching Jack Chi, Anthony D. Joseph, Blaine Nelson, Benjamin I. P. Rubinstein, Udam Saini, & J. D. Tygar
Conference Name1st ACM Workshop on AlSec
Series TitlePosition Papers
Pagination19-26
Date Published2008
PublisherACM
Conference LocationAlexandria, VA
ISBN978-1-60558-291-7
Abstract

Machine learning has become a valuable tool for detecting and preventing malicious activity. However, as more applications employ machine learning techniques in adversarial decision-making situations, increasingly powerful attacks become possible against machine learning systems. In this paper, we present three broad research directions towards the end of developing truly secure learning. First, we suggest that finding bounds on adversarial influence is important to understand the limits of what an attacker can and cannot do to a learning system. Second, we investigate the value of adversarial capabilities-the success of an attack depends largely on what types of information and influence the attacker has. Finally, we propose directions in technologies for secure learning and suggest lines of investigation into secure techniques for learning in adversarial environments. We intend this paper to foster discussion about the security of machine learning, and we believe that the research directions we propose represent the most important directions to pursue in the quest for secure learning.

URLhttp://portal.acm.org/ft_gateway.cfm?id=1456382&type=pdf&coll=GUIDE&dl=GUIDE&CFID=22808247&CFTOKEN=93145126