Researchers have developed a new attack method called Sharpness-Aware Poisoning (SharpAP) to improve the transferability of malicious data injections in recommender systems. This technique aims to overcome the limitations of current methods that struggle when the surrogate model used for attack preparation differs structurally from the actual target model. SharpAP seeks an approximate worst-case victim model to optimize poisoned data, making it more robust and less sensitive to variations in model architecture. Experiments on real-world datasets indicate that SharpAP significantly enhances the effectiveness of these attacks. AI
影响 Enhances the robustness of data poisoning attacks against recommender systems, potentially impacting platform security and user trust.
排序理由 This is a research paper detailing a novel attack method for recommender systems.
AI 生成摘要 · Google Gemini · 来自 2 个来源。 我们如何撰写摘要 →
