A data poisoning attack method for recommendation system based on dynamic adaptation of data and model

Xiaosai Wang; Jintao Tang; Qinhang Xu; Ting Wang

doi:10.1117/12.2674783

2 May 2023 A data poisoning attack method for recommendation system based on dynamic adaptation of data and model

Xiaosai Wang, Jintao Tang, Qinhang Xu, Ting Wang

Proceedings Volume 12642, Second International Conference on Electronic Information Engineering, Big Data, and Computer Technology (EIBDCT 2023); 126421E (2023) https://doi.org/10.1117/12.2674783
Event: Second International Conference on Electronic Information Engineering, Big Data and Computer Technology (EIBDCT 2023), 2023, Xishuangbanna, China

Abstract

Data poisoning attack has been one of the most prominent threats for data-driven machine learning model. Specifically, in the field of recommendation system, an attacker could manipulate recommendation results by injecting some crafted fake data into recommendation model. In this paper, a data poisoning attack method based on dynamic adaptation of data and model is proposed for the recommendation system, referred to as dynamic attack, which solves the problem that the fake data fails to keep aggressive due to difference between models. Experimental results on the two real datasets, MovieLens-100K and MovieLens-1M, show that dynamic attack outperforms existing heuristic-based attacks and the average attack success rate is increased by more than 10 times.

Citation Download Citation

Xiaosai Wang, Jintao Tang, Qinhang Xu, and Ting Wang "A data poisoning attack method for recommendation system based on dynamic adaptation of data and model", Proc. SPIE 12642, Second International Conference on Electronic Information Engineering, Big Data, and Computer Technology (EIBDCT 2023), 126421E (2 May 2023); https://doi.org/10.1117/12.2674783

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
9 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Data modeling

Neural networks

Mathematical optimization

Deep learning

Dynamical systems

RELATED CONTENT

Active learning of deep learning models for metasurface design and...
Proceedings of SPIE (January 01 1900)

Adaptive differential private in deep learning
Proceedings of SPIE (May 25 2023)

Effects of hyper parameters setting in Bi LSTM CRF on...
Proceedings of SPIE (June 27 2023)

Continuous time PDE prediction with different parameters and effective grid...
Proceedings of SPIE (July 28 2023)

Combine deep learning and LKH algorithm to solve multiconstraint tourism...
Proceedings of SPIE (July 11 2024)

Research on deep learning based photovoltaic output estimation and multi...
Proceedings of SPIE (February 28 2024)

Image recognition in depth comparative study of CNN and...
Proceedings of SPIE (March 15 2024)

Subscribe to Digital Library

Receive Erratum Email Alert

Keywords/Phrases

Search In:

Publication Years