PulseAugur
EN
LIVE 02:24:46

New defense filters poisoned data in speech command systems

Researchers have developed a novel defense mechanism against data poisoning attacks targeting speech command classification systems. The proposed method utilizes unsupervised learning with DINO to generate representations of training data, followed by K-means and LDA clustering. By retaining only the most frequently labeled utterances within each cluster, the system effectively filters out poisoned data, significantly reducing attack success rates from nearly 100% to a mere 0.25% in tests with 10% poisoned data. AI

IMPACT This research offers a promising technique to enhance the robustness of AI models against adversarial data manipulation, crucial for secure speech command systems.

RANK_REASON Academic paper detailing a new method for defending against data poisoning attacks in AI systems. [lever_c_demoted from research: ic=1 ai=1.0]

Read on arXiv cs.AI →

AI-generated summary · Google Gemini · from 1 sources. How we write summaries →

New defense filters poisoned data in speech command systems

COVERAGE [1]

  1. arXiv cs.AI TIER_1 English(EN) · Thomas Thebaud, Sonal Joshi, Henry Li, Martin Sustek, Jesus Villalba, Sanjeev Khudanpur, Najim Dehak ·

    Clustering Unsupervised Representations as Defense against Poisoning Attacks on Speech Commands Classification System

    arXiv:2606.28953v1 Announce Type: cross Abstract: Poisoning attacks entail attackers intentionally tampering with training data. In this paper, we consider a dirty-label poisoning attack scenario on a speech commands classification system. The threat model assumes that certain ut…