Dual adversarial attacks: Fooling humans and classifiers.
Johannes SchneiderGiovanni ApruzzesePublished in: J. Inf. Secur. Appl. (2023)
Keyphrases
- training data
- decision trees
- support vector
- naive bayes
- training examples
- human behavior
- countermeasures
- feature selection
- linear classifiers
- human subjects
- classification systems
- svm classifier
- machine learning algorithms
- training samples
- classification algorithm
- security risks
- individual classifiers
- traffic analysis
- terrorist attacks
- data sets
- chosen plaintext
- supervised classification
- test set
- multi agent
- watermarking scheme
- machine learning methods
- primal dual
- binary classifiers
- ensemble classifier
- text categorization
- multiple classifiers
- knn
- classification accuracy
- training set
- malicious users