Search engine for discovering works of Art, research articles, and books related to Art and Culture
Javascript must be enabled to continue!
Manipulating Recommender Systems: A Survey of Poisoning Attacks and Countermeasures
View through CrossRef
Recommender systems have become an integral part of online services due to their ability to help users locate specific information in a sea of data. However, existing studies show that some recommender systems are vulnerable to poisoning attacks, particularly those that involve learning schemes. A poisoning attack is where an adversary injects carefully crafted data into the process of training a model with the goal of manipulating the system’s final recommendations. Based on recent advancements in artificial intelligence (AI), such attacks have gained importance recently. At present, we do not have a full and clear picture of why adversaries mount such attacks, nor do we have comprehensive knowledge of the full capacity to which such attacks can undermine a model or the impacts that might have. While numerous countermeasures to poisoning attacks have been developed, they have not yet been systematically linked to the properties of the attacks. Consequently, assessing the respective risks and potential success of mitigation strategies is difficult, if not impossible. This survey aims to fill this gap by primarily focusing on poisoning attacks and their countermeasures. This is in contrast to prior surveys that mainly focus on attacks and their detection methods. Through an exhaustive literature review, we provide a novel taxonomy for poisoning attacks, formalise its dimensions, and accordingly organise 31 attacks described in the literature. Further, we review 43 countermeasures to detect and/or prevent poisoning attacks, evaluating their effectiveness against specific types of attacks. This comprehensive survey should serve as a point of reference for protecting recommender systems against poisoning attacks. The article concludes with a discussion on open issues in the field and impactful directions for future research. A rich repository of resources associated with poisoning attacks is available at
https://github.com/tamlhp/awesome-recsys-poisoning
.
Association for Computing Machinery (ACM)
Title: Manipulating Recommender Systems: A Survey of Poisoning Attacks and Countermeasures
Description:
Recommender systems have become an integral part of online services due to their ability to help users locate specific information in a sea of data.
However, existing studies show that some recommender systems are vulnerable to poisoning attacks, particularly those that involve learning schemes.
A poisoning attack is where an adversary injects carefully crafted data into the process of training a model with the goal of manipulating the system’s final recommendations.
Based on recent advancements in artificial intelligence (AI), such attacks have gained importance recently.
At present, we do not have a full and clear picture of why adversaries mount such attacks, nor do we have comprehensive knowledge of the full capacity to which such attacks can undermine a model or the impacts that might have.
While numerous countermeasures to poisoning attacks have been developed, they have not yet been systematically linked to the properties of the attacks.
Consequently, assessing the respective risks and potential success of mitigation strategies is difficult, if not impossible.
This survey aims to fill this gap by primarily focusing on poisoning attacks and their countermeasures.
This is in contrast to prior surveys that mainly focus on attacks and their detection methods.
Through an exhaustive literature review, we provide a novel taxonomy for poisoning attacks, formalise its dimensions, and accordingly organise 31 attacks described in the literature.
Further, we review 43 countermeasures to detect and/or prevent poisoning attacks, evaluating their effectiveness against specific types of attacks.
This comprehensive survey should serve as a point of reference for protecting recommender systems against poisoning attacks.
The article concludes with a discussion on open issues in the field and impactful directions for future research.
A rich repository of resources associated with poisoning attacks is available at
https://github.
com/tamlhp/awesome-recsys-poisoning
.
Related Results
Manipulating Visually Aware Federated Recommender Systems and Its Countermeasures
Manipulating Visually Aware Federated Recommender Systems and Its Countermeasures
Federated recommender systems (FedRecs) have been widely explored recently due to their capability to safeguard user data privacy. These systems enable a central server to collabor...
Weaponising Generative AI Through Data Poisoning: Analysing Various Data Poisoning Attacks on Large Language Models (LLMs) and Their Countermeasures
Weaponising Generative AI Through Data Poisoning: Analysing Various Data Poisoning Attacks on Large Language Models (LLMs) and Their Countermeasures
Large Language Models (LLMs) and most modern AI models profoundly rely on the quantity, quality and integrity of training data, which ultimately determines the overall success of t...
Poisoning Patterns, Causes, and Implications for Hospital-Centric Interventions- A Retrospective Single-Centre Observational Study from India
Poisoning Patterns, Causes, and Implications for Hospital-Centric Interventions- A Retrospective Single-Centre Observational Study from India
Poisoning poses a significant public health concern in India, with rising trends observed over recent years. The study aims to observe patterns of demographic characteristics, pres...
Abnormal Brain Functional Network Dynamics in Acute CO Poisoning
Abnormal Brain Functional Network Dynamics in Acute CO Poisoning
Aims: Carbon monoxide poisoning is a common condition that can cause severe neurological sequelae. Previous studies have revealed that functional connectivity in carbon monoxide po...
Overview of acute Chinese medicine poisoning in Hong Kong
Overview of acute Chinese medicine poisoning in Hong Kong
Abstract
Background
Chinese medicine (CM) poisoning is relatively rare in Hong Kong. According to the Department of Healt...
Privacy Risk in Recommender Systems
Privacy Risk in Recommender Systems
Nowadays, recommender systems are mostly used in many online applications to filter information and help users in selecting their relevant requirements. It avoids users to become o...
Poisoning Cases Reported to Poison Information Centre, Ahmedabad, India: A Three Year Observational Study
Poisoning Cases Reported to Poison Information Centre, Ahmedabad, India: A Three Year Observational Study
Introduction: Morbidity and mortality associated with pesticide poisoning is a major public health issue, especially in lower and middle income countries, including India. Timely u...
Treatment outcome and associated factors among patients admitted with acute poisoning in a tertiary hospital in Eastern Ethiopia: A cross-sectional study
Treatment outcome and associated factors among patients admitted with acute poisoning in a tertiary hospital in Eastern Ethiopia: A cross-sectional study
Introduction:
Acute poisoning causes morbidity and mortality worldwide. There is scarce of information on acute poisoning in the study area.
...