Title :
Subverting prediction in adversarial settings
Author :
Dutrisac, J.G. ; Skillicorn, D.B.
Author_Institution :
Sch. of Comput., Queen´´s Univ., Kingston, ON
Abstract :
We show that two mainstream prediction techniques, support vector machines and decision trees, are easily subverted by inserting carefully-chosen training records. Furthermore, the relationship between the properties of the inserted record(s) and the regions for which the predictor will subsequently misclassify can be inferred, so desired misclassifications can be forced. In adversarial settings, it is plausible that manipulation of this kind will be attempted, so this has implications for the design of prediction systems and the use of off-the-shelf technology, especially as support vector machines are one of the most powerful prediction algorithms known.
Keywords :
decision trees; prediction theory; support vector machines; adversarial setting; decision tree; off-the-shelf technology; prediction system; support vector machine; training record; Algorithm design and analysis; Artificial intelligence; Data analysis; Information analysis; Internet; Prediction algorithms; Predictive models; Statistical analysis; Support vector machines; Uniform resource locators;
Conference_Titel :
Intelligence and Security Informatics, 2008. ISI 2008. IEEE International Conference on
Conference_Location :
Taipei
Print_ISBN :
978-1-4244-2414-6
Electronic_ISBN :
978-1-4244-2415-3
DOI :
10.1109/ISI.2008.4565023
