当前位置：和泉文库 > 教育心理 > 新加坡国立大学：Adversarial Personalized Ranking for Recommendation

新加坡国立大学：Adversarial Personalized Ranking for Recommendation

文件格式：PPTX，文件大小：2.86MB，售价：6.18元

文档详细内容（约21页）

NUS崖, S|G|R2018 National University Lab for Media Search Adversarial Personalized Ranking for Recommendation Xiangnan He, Zhankui He, Xiaoyu du, Tat-Seng Chua School of Computing National University of Singapore

Adversarial Personalized Ranking for Recommendation Xiangnan He, Zhankui He, Xiaoyu Du, Tat-Seng Chua School of Computing National University of Singapore 1 SIGIR 2018

DeNUS Motivation ational University The core of ir tasks is ranking Search Given a query, ranking documents Recommendation Given a user, ranking items a personalized ranking task Ranking is usually supported by the underlying scoring model Linear. Probabilistic, Neural network models etc Model parameters are learned by optimizing learning- to-rank loss Question: is the learned model robust in ranking? Will small change on inputs/parameters lead to big change on the ranking result? This concerns model generalization ability

Motivation • The core of IR tasks is ranking. • Search: Given a query, ranking documents • Recommendation: Given a user, ranking items – A personalized ranking task • Ranking is usually supported by the underlying scoring model. – Linear, Probabilistic, Neural network models etc. – Model parameters are learned by optimizing learning-to-rank loss • Question: is the learned model robust in ranking? – Will small change on inputs/parameters lead to big change on the ranking result? – This concerns model generalization ability. 2

Adversarial Examples on DeNUS ational University Classification ( Goodfellow et al, ICLR' 15 Recent efforts on adversarial machine learning show many well-trained classitiers sutter from adversarial examples: +.007× panda nematode” gibbon 57.7 confidence 8. 2% confidence 99.3 confidence This implies weak generalization ability of the classifier Question: do such adversarial examples also exist for IR ranking methods?

Adversarial Examples on Classification (Goodfellow et al, ICLR’15) • Recent efforts on adversarial machine learning show many well-trained classifiers suffer from adversarial examples: – This implies weak generalization ability of the classifier • Question: do such adversarial examples also exist for IR ranking methods? 3

Adversarial Examples on DeNUS ational University Personalized Ranking We train visually-aware BPR(He et al, AAAl16 on a user image interaction dataset for visualization VBPR is a pairwise learning-to-rank method Effect of adversarial examples on personalized ranking Top-4 image ranking 360 5.5 +0.007 of a sampled user. o0a0o05 3.50 +0.007x before vs. after adversarial noise: 49 +0.007 翻 34 测+000 4.13 ariginal Images Perturbed Ir Small adversarial noises on images ( noise level e= 0.007)leads to big change on ranking

Adversarial Examples on Personalized Ranking • We train Visually-aware BPR (He et al, AAAI’16) on a userimage interaction dataset for visualization. – VBPR is a pairwise learning-to-rank method • Effect of adversarial examples on personalized ranking: 4 Small adversarial noises on images (noise level ϵ = 0.007)leads to big change on ranking. Ranking scores (before) Ranking scores (after) Top-4 image ranking of a sampled user. before vs. after adversarial noise:

Quantitative Analysis on DeNUS ational University Adversarial Attacks We train matrix factorization(Mf)with BPR loss MF is a widely used model in recommendation BPR is a standard pairwise loss for personalized ranking We add noises on model parameters of mf Random noise vs. Adversarial noise Performance change w.r.t. different noise levels E(i. e, L, norm Conclusion: 0.16 MF-BPR is robust to 0.06 0.1 random noise but not 0.08 for adversarial noise! ● Adversarial Noise 004 Adversarial Noise Random Noise 0 040.60.8 (a) Testing NDCG vs.∈ (c) Testing NDCG vs.∈

Quantitative Analysis on Adversarial Attacks • We train matrix factorization (MF) with BPR loss – MF is a widely used model in recommendation – BPR is a standard pairwise loss for personalized ranking • We add noises on model parameters of MF – Random noise vs. Adversarial noise – Performance change w.r.t. different noise levels ε (i.e., L2 norm): 5 Conclusion: MF-BPR is robust to random noise, but not for adversarial noise!

点击进入文档下载页（PPTX格式）

共21页，可试读7页，点击继续阅读 ↓↓

您可能感兴趣的文档

非洲博茨瓦纳大学：孔子学院介绍
首都经济贸易大学：职业生涯管理中的心理契约因素
当代世界的思想政治教育：新生教育的科学性与实效性
基金申请技巧讲座：如何申请国家自然科学基金
高校教学研究：高等院校课程与精品课程建设（PPT讲稿）
华南师范大学教育信息技术学院：《信息技术教育的理论与方法》课程教学资源（PPT课件）第三章信息能力与技能
山东师范大学教师教育学院：学科课程与教学理论（PPT讲稿）
上海市公安局文化保卫分局：2018年上海理工大学留学生安全防范法制宣讲
香港中文大学：A Review on Teaching and Learning Activities and Quality Assurance
论文选题PPT：论文写作任务、进度与要求
简单人生（PPT讲稿）把你的财务人生
黄冈职业技术学院：基于工作过程的课程设计与开发解读
Foundations of Programming Languages – Course Overview
中国（宁波）大学生创业大赛 China Ningbo college students entrepreneurship competition
合肥工业大学：毕业设计中的文献查询与运用
西南交通大学：专题PPT——大学国际化评价与发现（闫月勤）
山东师范大学：《课程与教学理论前沿问题研究》课程教学资源（PPT专题课件）教学理论流派简介（车丽娜）
香港大學：母語教學施行情況調查初步分析報告
大连工业大学：新气象新担当、积极推进学校国际化发展
香港中文大学：Education, Rustication and Communist Party Membership：What Pays? What Does Not Pay?
清华大学：高等院校信息素养能力指标体系的研究（面向信息素养 Towards Information Literacy）
华东师范大学：社会心理与自我管理（PPT讲稿）
合肥学院协同培养卓越人才的探索与实践
西安交通大学：一流大学建设高校建设方案

点击购买下载（PPTX）

下载及服务说明

购买前请先查看本文档预览页，确认内容后再进行支付；
如遇文件无法下载、无法访问或其它任何问题，可发送电子邮件反馈，核实后将进行文件补发或退款等其它相关操作；
邮箱：

文档浏览记录