Poison Frogs! Targeted Clean-Label Poisoning Attacks on Neural Networks

Photo by Stephanie LeBlanc on Unsplash

Deep Neural Networks can be attacked with correctly classified training examples so that image classifiers assign labels chosen by an adversary to target images. An approach to create these poisoned training examples was published in a paper with the title “Poison Frogs! Targeted Clean-Label Poisoning Attacks on Neural Networks”. Here is a summary.