Skip to main content
SpringerLink
Log in

Modeling Adversarial Learning as Nested Stackelberg Games

  • Conference paper
  • First Online:
Advances in Knowledge Discovery and Data Mining (PAKDD 2016)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 9652))

Included in the following conference series:

Abstract

Many data mining applications potentially operate in an adversarial environment where adversaries adapt their behavior to evade detection. Typically adversaries alter data under their control to cause a large divergence of distribution between training and test data. Existing state-of-the-art adversarial learning techniques try to address this problem in which there is only a single type of adversary. In practice, a learner often has to face multiple types of adversaries that may employ different attack tactics. In this paper, we tackle the challenges of multiple types of adversaries with a nested Stackelberg game framework. We demonstrate the effectiveness of our framework with extensive empirical results on both synthetic and real data sets. Our results demonstrate that the nested game framework offers more reliable defense against multiple types of attackers.

The research reported herein was supported in part by AFOSR awards FA9550-12-1-0082, NIH awards 1R0-1LM009989 &1R01HG006844, NSF awards #1054629, Career-CNS-0845803, CNS-0964350, CNS-1016343, CNS-1111529, &CNS-1228198, ARO award W911NF-12-1-0558.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Lowd, D.: Good word attacks on statistical spam filters. In: Proceedings of the Second Conference on Email and Anti-Spam (CEAS) (2005)

    Google Scholar 

  2. Globerson, A., Roweis, S.: Nightmare at test time: robust learning by feature deletion. In: ICML, pp. 353–360. ACM (2006)

    Google Scholar 

  3. El Ghaoui, L., Lanckriet, G.R.G., Natsoulis, G.: Robust classification with interval data. Technical report UCB/CSD-03-1279, EECS Department, University of California, Berkeley, October 2003

    Google Scholar 

  4. Zhou, Y., Kantarcioglu, M., Thuraisingham, B., Xi, B.: Adversarial support vector machine learning. In: SIGKDD, pp. 1059–1067. ACM (2012)

    Google Scholar 

  5. Lanckriet, G.R.G., Ghaoui, L.E., Bhattacharyya, C., Jordan, M.I.: A robust minimax approach to classification. J. Mach. Learn. Res. 3, 555–582 (2002)

    MathSciNet  MATH  Google Scholar 

  6. Teo, C.H., Globerson, A., Roweis, S.T., Smola, A.J.: Convex learning with invariances. In: Advances in Neural Information Processing Systems (2007)

    Google Scholar 

  7. Dekel, O., Shamir, O.: Learning to classify with missing and corrupted features. In: ICML, pp. 216–223. ACM (2008)

    Google Scholar 

  8. Dekel, O., Shamir, O., Xiao, L.: Learning to classify with missing and corrupted features. Mach. Learn. 81(2), 149–178 (2010)

    Article  MathSciNet  Google Scholar 

  9. Kantarcioglu, M., Xi, B., Clifton, C.: Classifier evaluation and attribute selection against active adversaries. Data Min. Knowl. Discov. 22, 291–335 (2011)

    Article  MathSciNet  MATH  Google Scholar 

  10. Liu, W., Chawla, S.: A game theoretical model for adversarial learning. In: Proceedings of the 2009 IEEE International Conference on Data Mining Workshops. ICDMW 2009, pp. 25–30, Washington, DC, USA. IEEE Computer Society (2009)

    Google Scholar 

  11. Bruckner, M., Scheffer, T.: Nash equilibria of static prediction games. In: Advances in Neural Information Processing Systems, MIT Press, Cambridge (2009)

    Google Scholar 

  12. Brückner, M., Scheffer, T.: Stackelberg games for adversarial prediction problems. In: KDD, pp. 547–555, New York (2011)

    Google Scholar 

  13. Biggio, B., Nelson, B., Laskov, P.: Poisoning attacks against support vector machines. In: ICML, pp. 1807–1814 (2012)

    Google Scholar 

  14. Zhou, Y., Kantarcioglu, M., Thuraisingham, B.M.: Sparse bayesian adversarial learning using relevance vector machine ensembles. In: ICDM, pp. 1206–1211 (2012)

    Google Scholar 

  15. Zhou, Y., Kantarcioglu, M.: Adversarial learning with bayesian hierarchical mixtures of experts. In: SDM, pp. 929–937 (2014)

    Google Scholar 

  16. Basar, T., Olsder, G.J.: Dynamic Noncooperative Game Theory. Society for Industrial and Applied Mathematics, Classics in Applied Mathematics (1999)

    Google Scholar 

  17. Paruchuri, P.: Playing games for security: an efficient exact algorithm for solving bayesian stackelberg games. In: AAMAS (2008)

    Google Scholar 

  18. UCI:UCI Machine Learning Repository (2014). http://archive.ics.uci.edu/ml/

  19. LIBSVM:LIBSVM Data: Classification, Regression, and Multi-label (2014). http://www.csie.ntu.edu.tw/~cjlin/libsvmtools/datasets/

Download references

Author information

Authors and Affiliations

  1. Computer Science Department, The University of Texas at Dallas, Richardson, USA

    Yan Zhou & Murat Kantarcioglu

Authors
  1. Yan Zhou
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Murat Kantarcioglu
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Yan Zhou .

Editor information

Editors and Affiliations

  1. The University of Melbourne, Melbourne, Victoria, Australia

    James Bailey

  2. The University of Texas at Dallas, Richardson, Texas, USA

    Latifur Khan

  3. Osaka University, Osaka, Japan

    Takashi Washio

  4. University of Auckland, Auckland, New Zealand

    Gill Dobbie

  5. Shenzhen University, Shenzhen, China

    Joshua Zhexue Huang

  6. Massey University, Auckland, New Zealand

    Ruili Wang

Rights and permissions

Reprints and permissions

Copyright information

© 2016 Springer International Publishing Switzerland

About this paper

Cite this paper

Zhou, Y., Kantarcioglu, M. (2016). Modeling Adversarial Learning as Nested Stackelberg Games. In: Bailey, J., Khan, L., Washio, T., Dobbie, G., Huang, J., Wang, R. (eds) Advances in Knowledge Discovery and Data Mining. PAKDD 2016. Lecture Notes in Computer Science(), vol 9652. Springer, Cham. https://doi.org/10.1007/978-3-319-31750-2_28

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-31750-2_28

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-31749-6

  • Online ISBN: 978-3-319-31750-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation