DC optimization in adversarial sparse support vector machine

Astorino, Annabella; Di Francesco, Massimo; Gaudioso, Manlio; Gorgone, Enrico; Manca, Benedetto

doi:10.1007/978-3-031-81241-5_20

In supervised classification models, such as Support Vector Machine, the main purpose is to predict the class membership of the incoming samples. In some real applications malicious inputs are inserted to mislead a vulnerable classifier, leading to a wrong prediction. In our work we focus first on the problem of introducing the smallest perturbation of a sample to induce incorrect classification and then on how to produce a significant downgrading of the classifier acting on a subset of the input samples. The novelty of the proposed approach is in the attempt of calculating sparse perturbations by minimizing the relative ℓ0-pseudo-norm, which gives rise to a Difference of Convex (DC) optimization model. We present the results of some preliminary experiments.

DC optimization in adversarial sparse support vector machine

Astorino, Annabella;Di Francesco, Massimo;Gaudioso, Manlio;Gorgone, Enrico;Manca, Benedetto

2025-01-01

Abstract

In supervised classification models, such as Support Vector Machine, the main purpose is to predict the class membership of the incoming samples. In some real applications malicious inputs are inserted to mislead a vulnerable classifier, leading to a wrong prediction. In our work we focus first on the problem of introducing the smallest perturbation of a sample to induce incorrect classification and then on how to produce a significant downgrading of the classifier acting on a subset of the input samples. The novelty of the proposed approach is in the attempt of calculating sparse perturbations by minimizing the relative ℓ0-pseudo-norm, which gives rise to a Difference of Convex (DC) optimization model. We present the results of some preliminary experiments.

Scheda breve

Scheda completa

Scheda completa (DC)

	Anno
	
				2025
			
	Codice ISBN
	
				9783031812408
9783031812415
			
	Parole chiave
	
				Adversarial Machine Learning; SVM; Sparse optimization; ℓ0​-pseudo-norm; DC Optimization
			
	Tipologia:
	
				4.1 Contributo in Atti di convegno

File in questo prodotto:

File	Dimensione	Formato
978-3-031-81241-5_20.pdf Solo gestori archivio Tipologia: versione editoriale (VoR) Dimensione 372 kB Formato Adobe PDF Visualizza/Apri Richiedi una copia	372 kB	Adobe PDF	Visualizza/Apri Richiedi una copia
Accepted_Manuscript.pdf accesso aperto Tipologia: versione pre-print Dimensione 1.26 MB Formato Adobe PDF Visualizza/Apri	1.26 MB	Adobe PDF	Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11584/434365

Citazioni

ND

0

ND

UNICA IRIS Institutional Research Information System

DC optimization in adversarial sparse support vector machine

Astorino, Annabella;Di Francesco, Massimo;Gaudioso, Manlio;Gorgone, Enrico;Manca, Benedetto

2025-01-01

Abstract

Scheda breve

Scheda completa

Scheda completa (DC)

Citazioni

social impact

UNICA IRIS Institutional Research Information System

DC optimization in adversarial sparse support vector machine

Astorino, Annabella;Di Francesco, Massimo;Gaudioso, Manlio;Gorgone, Enrico;Manca, Benedetto

2025-01-01

Abstract

Scheda breve Scheda completa Scheda completa (DC)

Informazioni

Citazioni

social impact

Conferma cancellazione

Scheda breve

Scheda completa

Scheda completa (DC)