English

Re-thinking Data Availablity Attacks Against Deep Neural Networks

Cryptography and Security 2023-05-19 v1 Computer Vision and Pattern Recognition

Abstract

The unauthorized use of personal data for commercial purposes and the clandestine acquisition of private data for training machine learning models continue to raise concerns. In response to these issues, researchers have proposed availability attacks that aim to render data unexploitable. However, many current attack methods are rendered ineffective by adversarial training. In this paper, we re-examine the concept of unlearnable examples and discern that the existing robust error-minimizing noise presents an inaccurate optimization objective. Building on these observations, we introduce a novel optimization paradigm that yields improved protection results with reduced computational time requirements. We have conducted extensive experiments to substantiate the soundness of our approach. Moreover, our method establishes a robust foundation for future research in this area.

Keywords

Cite

@article{arxiv.2305.10691,
  title  = {Re-thinking Data Availablity Attacks Against Deep Neural Networks},
  author = {Bin Fang and Bo Li and Shuang Wu and Ran Yi and Shouhong Ding and Lizhuang Ma},
  journal= {arXiv preprint arXiv:2305.10691},
  year   = {2023}
}
R2 v1 2026-06-28T10:37:48.924Z