基于同义词的黑盒设置攻击混淆机器学习分类器

2019 4th International Conference on Emerging Trends in Engineering, Sciences and Technology (ICEEST) Pub Date : 2019-12-01 DOI:10.1109/ICEEST48626.2019.8981685

Aasher Khan, Suriya Rehman, Muhammad U. S. Khan, Mazhar Ali

{"title":"基于同义词的黑盒设置攻击混淆机器学习分类器","authors":"Aasher Khan, Suriya Rehman, Muhammad U. S. Khan, Mazhar Ali","doi":"10.1109/ICEEST48626.2019.8981685","DOIUrl":null,"url":null,"abstract":"Twitter being the most popular content sharing platform is giving rise to automated accounts called “bots”. Majority of the users on Twitter are bots. Various machine learning (ML) algorithms are designed to detect bots avoiding the vulnerability constraints of ML-based models. This paper contributes to exploit vulnerabilities of machine learning (ML) algorithms through black-box attack. An adversarial text sequence misclassifies the results of deep learning (DL) classifiers for bot detection. Literature shows that ML models are vulnerable to attacks. The aim of this paper is to compromise the accuracy of ML-based bot detection algorithms by replacing original words in tweets with their synonyms. Our results show 7.2% decrease in the accuracy for bot tweets, therefore classifying bot tweets as legitimate tweets.","PeriodicalId":201513,"journal":{"name":"2019 4th International Conference on Emerging Trends in Engineering, Sciences and Technology (ICEEST)","volume":"24 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Synonym-based Attack to Confuse Machine Learning Classifiers Using Black-box Setting\",\"authors\":\"Aasher Khan, Suriya Rehman, Muhammad U. S. Khan, Mazhar Ali\",\"doi\":\"10.1109/ICEEST48626.2019.8981685\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Twitter being the most popular content sharing platform is giving rise to automated accounts called “bots”. Majority of the users on Twitter are bots. Various machine learning (ML) algorithms are designed to detect bots avoiding the vulnerability constraints of ML-based models. This paper contributes to exploit vulnerabilities of machine learning (ML) algorithms through black-box attack. An adversarial text sequence misclassifies the results of deep learning (DL) classifiers for bot detection. Literature shows that ML models are vulnerable to attacks. The aim of this paper is to compromise the accuracy of ML-based bot detection algorithms by replacing original words in tweets with their synonyms. Our results show 7.2% decrease in the accuracy for bot tweets, therefore classifying bot tweets as legitimate tweets.\",\"PeriodicalId\":201513,\"journal\":{\"name\":\"2019 4th International Conference on Emerging Trends in Engineering, Sciences and Technology (ICEEST)\",\"volume\":\"24 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 4th International Conference on Emerging Trends in Engineering, Sciences and Technology (ICEEST)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICEEST48626.2019.8981685\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 4th International Conference on Emerging Trends in Engineering, Sciences and Technology (ICEEST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICEEST48626.2019.8981685","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

作为最受欢迎的内容分享平台，推特催生了被称为“机器人”的自动账户。Twitter上的大多数用户都是机器人。各种机器学习(ML)算法被设计用来检测机器人，以避免基于ML的模型的漏洞约束。本文致力于通过黑盒攻击来利用机器学习算法的漏洞。一个对抗性文本序列错误地分类了深度学习(DL)分类器用于机器人检测的结果。文献表明，ML模型容易受到攻击。本文的目的是通过用同义词替换推文中的原始单词来降低基于ml的机器人检测算法的准确性。我们的结果显示，机器人推文的准确性降低了7.2%，因此将机器人推文分类为合法推文。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Synonym-based Attack to Confuse Machine Learning Classifiers Using Black-box Setting

Twitter being the most popular content sharing platform is giving rise to automated accounts called “bots”. Majority of the users on Twitter are bots. Various machine learning (ML) algorithms are designed to detect bots avoiding the vulnerability constraints of ML-based models. This paper contributes to exploit vulnerabilities of machine learning (ML) algorithms through black-box attack. An adversarial text sequence misclassifies the results of deep learning (DL) classifiers for bot detection. Literature shows that ML models are vulnerable to attacks. The aim of this paper is to compromise the accuracy of ML-based bot detection algorithms by replacing original words in tweets with their synonyms. Our results show 7.2% decrease in the accuracy for bot tweets, therefore classifying bot tweets as legitimate tweets.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2019 4th International Conference on Emerging Trends in Engineering, Sciences and Technology (ICEEST)

自引率

0.00%

发文量