%0 Conference Proceedings %B 1st Usenix Workshop on Large-Scale Exploits and Emergent Threats %D 2008 %T Exploiting machine learning to subvert your spam filter %A Blaine Nelson %A Marco Barreno %A Fuching Jack Chi %A Anthony D. Joseph %A Benjamin I. P. Rubinstein %A Udam Saini %A Charles Sutton %A J. D. Tygar %A Kai Xia %C San Francisco, CA %I USENIX Association %U http://www.usenix.org/events/leet08/tech/full_papers/nelson/nelson.pdf %X Using statistical machine learning for making security decisions introduces new vulnerabilities in large scale systems. This paper shows how an adversary can exploit statistical machine learning, as used in the SpamBayes spam filter, to render it useless--even if the adversary's access is limited to only 1% of the training messages. We further demonstrate a new class of focused attacks that successfully prevent victims from receiving specific email messages. Finally, we introduce two new types of defenses against these attacks. %8 04/2008