机器学习模型安全与隐私研究综述

Translated title of the contribution: Security and Privacy of Machine Learning Models: A Survey

Shou Ling Ji, Tian Yu Du, Jin Feng Li, Chao Shen, Bo Li

Research output: Contribution to journalReview articlepeer-review

Abstract

In the era of big data, breakthroughs in theories and technologies of deep learning, reinforcement learning, and distributed learning have provided strong support for machine learning at the data and the algorithm level, as well as have promoted the development of scale and industrialization of machine learning. However, though machine learning models have excellent performance in many real-world applications, they still suffer many security and privacy threats at the data, model, and application levels, which could be characterized by diversity, concealment, and dynamic evolution. The security and privacy issues of machine learning have attracted extensive attention from academia and industry. A large number of researchers have conducted in-depth research on the security and privacy issues of models from the perspective of attack and defense, and proposed a series of attack and defense methods. In this survey, the security and privacy issues of machine learning are reviewed, existing research work is systematically and scientifically summarized, and the advantages and disadvantages of current research are clarified. Finally, the current challenges and future research directions of machine learning model security and privacy research are explored, aiming to provide guidance for follow-up researchers to further promote the development and application of machine learning model security and privacy research.

Translated title of the contributionSecurity and Privacy of Machine Learning Models: A Survey
Original languageChinese (Traditional)
Pages (from-to)41-67
Number of pages27
JournalRuan Jian Xue Bao/Journal of Software
Volume32
Issue number1
DOIs
StatePublished - Jan 2021

Keywords

  • Adversarial example
  • Artificial intelligence security
  • Machine learning
  • Model privacy
  • Poisoning attack

ASJC Scopus subject areas

  • Software

Fingerprint

Dive into the research topics of 'Security and Privacy of Machine Learning Models: A Survey'. Together they form a unique fingerprint.

Cite this