Intriguing Properties of Adversarial ML Problem-Space Attacks

News

  • May 2020: We'll be presenting the work at IEEE S&P on May 20th ~9am PDT, "see" you there!
  • Mar 2020: Paper accepted at IEEE Symp. Security & Privacy (Oakland) 2020

Access

We are hosting the attack code on a private Bitbucket repository. To get access to the repository, please complete the following form: For ethical reasons, we will only be sharing the code with verified academic researchers.

We have already granted access to researchers from the following institutions (alphabetical order):
  1. Ariel University
  2. Columbia University, USA
  3. Georgia Tech, USA
  4. Guangzhou University, China
  5. Indian Institute Of Information Technology and Management, Kerala, India
  6. King's College London, UK
  7. PSG College of Technology, India
  8. Korea University, South Korea
  9. University of Adelaide, Australia
  10. University of the Fraser Valley, Canada
  11. University of Illinois at Urbana–Champaign, USA
  12. University of Oregon, USA
  13. University of Virginia, USA
  14. University of Wisconsin-Madison, USA
  15. Xidian University, China

Papers

Intriguing Properties of Adversarial ML Attacks in the Problem Space
Fabio Pierazzi*, Feargus Pendlebury*, Jacopo Cortellazzi, Lorenzo Cavallaro
IEEE S&P · 41st IEEE Symposium on Security and Privacy, 2020
@inproceedings{pierazzi2020problemspace,
author = {F. Pierazzi and F. Pendlebury and J. Cortellazzi and L. Cavallaro},
booktitle = {2020 IEEE Symposium on Security and Privacy (SP)},
title = {Intriguing Properties of Adversarial ML Attacks in the Problem Space},
year = {2020},
volume = {},
issn = {2375-1207},
pages = {1308-1325},
doi = {10.1109/SP40000.2020.00073},
url = {https://doi.ieeecomputersociety.org/10.1109/SP40000.2020.00073},
publisher = {IEEE Computer Society},
}

Videos

Feargus Pendlebury presents the work at IEEE Security & Privacy (Oakland) 2020.
Teaser trailer for our presentation at IEEE Security & Privacy (Oakland) 2020.

People

  • Fabio Pierazzi, Lecturer (Assistant Professor), King's College London.
  • Feargus Pendlebury, Ph.D. Student, King's College London & Royal Holloway, University of London & The Alan Turing Institute
  • Jacopo Cortellazzi, Ph.D. Student, King's College London
  • Lorenzo Cavallaro, Full Professor of Computer Science, Chair in Cybersecurity (Systems Security), King's College London