Defending Substitution-Based Profile Pollution Attacks on Sequential Recommenders

1 code implementation • 19 Jul 2022 • Zhenrui Yue, Huimin Zeng, Ziyi Kou, Lanyu Shang, Dong Wang

Additionally, we design an adversarial training method tailored for sequential recommender systems.

Adversarial Attack Adversarial Defense +1

Efficient Localness Transformer for Smart Sensor-Based Energy Disaggregation

no code implementations • 29 Mar 2022 • Zhenrui Yue, Huimin Zeng, Ziyi Kou, Lanyu Shang, Dong Wang

Modern smart sensor-based energy management systems leverage non-intrusive load monitoring (NILM) to predict and optimize appliance load distribution in real-time.

Inductive Bias Management +1

Black-Box Attacks on Sequential Recommenders via Data-Free Model Extraction

1 code implementation • 1 Sep 2021 • Zhenrui Yue, Zhankui He, Huimin Zeng, Julian McAuley

Under this setting, we propose an API-based model extraction method via limited-budget synthetic data generation and knowledge distillation.

Data Poisoning Knowledge Distillation +4

Certified Defense via Latent Space Randomized Smoothing with Orthogonal Encoders

no code implementations • 1 Aug 2021 • Huimin Zeng, Jiahao Su, Furong Huang

Randomized Smoothing (RS), being one of few provable defenses, has been showing great effectiveness and scalability in terms of defending against $\ell_2$-norm adversarial perturbations.

Are Adversarial Examples Created Equal? A Learnable Weighted Minimax Risk for Robustness under Non-uniform Attacks

no code implementations • 24 Oct 2020 • Huimin Zeng, Chen Zhu, Tom Goldstein, Furong Huang

Adversarial Training is proved to be an efficient method to defend against adversarial examples, being one of the few defenses that withstand strong attacks.