- Library Home /
- Search Collections /
- Open Collections /
- Browse Collections /
- UBC Theses and Dissertations /
- Surveying the effects of data on adversarial robustness
Open Collections
UBC Theses and Dissertations
UBC Theses and Dissertations
Surveying the effects of data on adversarial robustness Xiong, Peiyu
Abstract
Machine Learning (ML) has been widely applied in different aspects of our lives due to its accuracy and scalability. However, the vulnerability to adversarial examples, which are intentionally designed by attackers to confuse the models, impedes the adoption of them in life- and safety-critical applications. To address this problem, the area of adversarial robustness investigates the mechanisms behind adversarial attacks and defenses against these attacks. Literature in this area exhibits an arm-race trend where defense techniques proposed to address existing attacks were "broken" by newly proposed attacks. A line of research has been conducted in response to such a trend, investigating the reasons for adversarial vulnerabilities, some of them focusing on the inherent limitations of data. Existing surveys on adversarial robustness focus on collecting state-of-the-art attacks and defense techniques, and few of them discuss how the model and/or data explain the adversarial vulnerability observed. In this thesis, we review literature that focuses on the effects of data used to train a model on the model’s adversarial robustness. We systematically identified 57 relevant papers from top publication venues, and categorized them based on the properties of the data discussed. This thesis summarizes the impact of data across eight categories of data properties. Seven of these are general to all applications, and one is specific to a particular application domain. Additionally, we discuss gaps in knowledge and promising future research directions to further improve our understanding of adversarial robustness.
Item Metadata
Title |
Surveying the effects of data on adversarial robustness
|
Creator | |
Supervisor | |
Publisher |
University of British Columbia
|
Date Issued |
2022
|
Description |
Machine Learning (ML) has been widely applied in different aspects of our lives due to its accuracy and scalability. However, the vulnerability to adversarial examples, which are intentionally designed by attackers to confuse the models, impedes the adoption of them in life- and safety-critical applications. To address this problem, the area of adversarial robustness investigates the mechanisms behind adversarial attacks and defenses against these attacks. Literature in this area exhibits an arm-race trend where defense techniques proposed to address existing attacks were "broken" by newly proposed attacks. A line of research has been conducted in response to such a trend, investigating the reasons for adversarial vulnerabilities, some of them focusing on the inherent limitations of data. Existing surveys on adversarial robustness focus on collecting state-of-the-art attacks and defense techniques, and few of them discuss how the model and/or data explain the adversarial vulnerability observed. In this thesis, we review literature that focuses on the effects of data used to train a model on the model’s adversarial robustness. We systematically identified 57 relevant papers from top publication venues, and categorized them based on the properties of the data discussed. This thesis summarizes the impact of data across eight categories of data properties. Seven of these are general to all applications, and one is specific to a particular application domain. Additionally, we discuss gaps in knowledge and promising future research directions to further improve our understanding of adversarial robustness.
|
Genre | |
Type | |
Language |
eng
|
Date Available |
2024-01-31
|
Provider |
Vancouver : University of British Columbia Library
|
Rights |
Attribution-NonCommercial-NoDerivatives 4.0 International
|
DOI |
10.14288/1.0422946
|
URI | |
Degree | |
Program | |
Affiliation | |
Degree Grantor |
University of British Columbia
|
Graduation Date |
2023-05
|
Campus | |
Scholarly Level |
Graduate
|
Rights URI | |
Aggregated Source Repository |
DSpace
|
Item Media
Item Citations and Data
Rights
Attribution-NonCommercial-NoDerivatives 4.0 International