{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2012:ERE56V6GBGZSW27KHMHI2PCGHJ","short_pith_number":"pith:ERE56V6G","schema_version":"1.0","canonical_sha256":"2449df57c609b32b6bea3b0e8d3c463a7ddb735ffa2d59ffa014bb3f56f43ba9","source":{"kind":"arxiv","id":"1206.6389","version":3},"attestation_state":"computed","paper":{"title":"Poisoning Attacks against Support Vector Machines","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.CR","stat.ML"],"primary_cat":"cs.LG","authors_text":"Battista Biggio (University of Cagliari), Blaine Nelson (University of Tuebingen), Pavel Laskov (University of Tuebingen)","submitted_at":"2012-06-27T19:59:59Z","abstract_excerpt":"We investigate a family of poisoning attacks against Support Vector Machines (SVM). Such attacks inject specially crafted training data that increases the SVM's test error. Central to the motivation for these attacks is the fact that most learning algorithms assume that their training data comes from a natural or well-behaved distribution. However, this assumption does not generally hold in security-sensitive settings. As we demonstrate, an intelligent adversary can, to some extent, predict the change of the SVM's decision function due to malicious input and use this ability to construct malic"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"1206.6389","kind":"arxiv","version":3},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.LG","submitted_at":"2012-06-27T19:59:59Z","cross_cats_sorted":["cs.CR","stat.ML"],"title_canon_sha256":"437ae7341825b10adc3f2121652a130fc3831f524f757e091f49e63760bed05f","abstract_canon_sha256":"5a0eeb253bedf9eaf1b961a60b85ce2d06ecaa212256627257327fcd8b496bb9"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T03:30:02.750340Z","signature_b64":"KW0i1SincejFv0Yvhsb/t93zqMzJwHv4dQNzBOJcMPXKLWLCzCQa7Cll+OqkGPnnT/w4AwFL60N2PnpoLpvPCw==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"2449df57c609b32b6bea3b0e8d3c463a7ddb735ffa2d59ffa014bb3f56f43ba9","last_reissued_at":"2026-05-18T03:30:02.749628Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T03:30:02.749628Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"Poisoning Attacks against Support Vector Machines","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.CR","stat.ML"],"primary_cat":"cs.LG","authors_text":"Battista Biggio (University of Cagliari), Blaine Nelson (University of Tuebingen), Pavel Laskov (University of Tuebingen)","submitted_at":"2012-06-27T19:59:59Z","abstract_excerpt":"We investigate a family of poisoning attacks against Support Vector Machines (SVM). Such attacks inject specially crafted training data that increases the SVM's test error. Central to the motivation for these attacks is the fact that most learning algorithms assume that their training data comes from a natural or well-behaved distribution. However, this assumption does not generally hold in security-sensitive settings. As we demonstrate, an intelligent adversary can, to some extent, predict the change of the SVM's decision function due to malicious input and use this ability to construct malic"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1206.6389","kind":"arxiv","version":3},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"1206.6389","created_at":"2026-05-18T03:30:02.749730+00:00"},{"alias_kind":"arxiv_version","alias_value":"1206.6389v3","created_at":"2026-05-18T03:30:02.749730+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1206.6389","created_at":"2026-05-18T03:30:02.749730+00:00"},{"alias_kind":"pith_short_12","alias_value":"ERE56V6GBGZS","created_at":"2026-05-18T12:27:04.183437+00:00"},{"alias_kind":"pith_short_16","alias_value":"ERE56V6GBGZSW27K","created_at":"2026-05-18T12:27:04.183437+00:00"},{"alias_kind":"pith_short_8","alias_value":"ERE56V6G","created_at":"2026-05-18T12:27:04.183437+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":8,"internal_anchor_count":6,"sample":[{"citing_arxiv_id":"2404.02696","citing_title":"Deep Privacy Funnel Model: From a Discriminative to a Generative Approach with an Application to Face Recognition","ref_index":28,"is_internal_anchor":true},{"citing_arxiv_id":"2409.07609","citing_title":"Survival of the Cheapest: Cost-Aware Hardware Adaptation for Adversarial Robustness","ref_index":40,"is_internal_anchor":true},{"citing_arxiv_id":"2305.17493","citing_title":"The Curse of Recursion: Training on Generated Data Makes Models Forget","ref_index":1,"is_internal_anchor":true},{"citing_arxiv_id":"2605.15249","citing_title":"Enabling Adversarial Robustness in AI Models through Kubeflow MLOps","ref_index":14,"is_internal_anchor":true},{"citing_arxiv_id":"2507.16134","citing_title":"DP2Guard: A Lightweight and Byzantine-Robust Privacy-Preserving Federated Learning Scheme for Industrial IoT","ref_index":49,"is_internal_anchor":true},{"citing_arxiv_id":"2602.04753","citing_title":"Comparative Insights on Adversarial Machine Learning from Industry and Academia: A User-Study Approach","ref_index":5,"is_internal_anchor":true},{"citing_arxiv_id":"2605.04261","citing_title":"Laundering AI Authority with Adversarial Examples","ref_index":9,"is_internal_anchor":false},{"citing_arxiv_id":"2604.14444","citing_title":"Robustness Analysis of Machine Learning Models for IoT Intrusion Detection Under Data Poisoning Attacks","ref_index":1,"is_internal_anchor":false}]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ","json":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ.json","graph_json":"https://pith.science/api/pith-number/ERE56V6GBGZSW27KHMHI2PCGHJ/graph.json","events_json":"https://pith.science/api/pith-number/ERE56V6GBGZSW27KHMHI2PCGHJ/events.json","paper":"https://pith.science/paper/ERE56V6G"},"agent_actions":{"view_html":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ","download_json":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ.json","view_paper":"https://pith.science/paper/ERE56V6G","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=1206.6389&json=true","fetch_graph":"https://pith.science/api/pith-number/ERE56V6GBGZSW27KHMHI2PCGHJ/graph.json","fetch_events":"https://pith.science/api/pith-number/ERE56V6GBGZSW27KHMHI2PCGHJ/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ/action/timestamp_anchor","attest_storage":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ/action/storage_attestation","attest_author":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ/action/author_attestation","sign_citation":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ/action/citation_signature","submit_replication":"https://pith.science/pith/ERE56V6GBGZSW27KHMHI2PCGHJ/action/replication_record"}},"created_at":"2026-05-18T03:30:02.749730+00:00","updated_at":"2026-05-18T03:30:02.749730+00:00"}