English

BACKTIME: Backdoor Attacks on Multivariate Time Series Forecasting

Machine Learning 2024-10-04 v1 Artificial Intelligence Cryptography and Security

Abstract

Multivariate Time Series (MTS) forecasting is a fundamental task with numerous real-world applications, such as transportation, climate, and epidemiology. While a myriad of powerful deep learning models have been developed for this task, few works have explored the robustness of MTS forecasting models to malicious attacks, which is crucial for their trustworthy employment in high-stake scenarios. To address this gap, we dive deep into the backdoor attacks on MTS forecasting models and propose an effective attack method named BackTime.By subtly injecting a few stealthy triggers into the MTS data, BackTime can alter the predictions of the forecasting model according to the attacker's intent. Specifically, BackTime first identifies vulnerable timestamps in the data for poisoning, and then adaptively synthesizes stealthy and effective triggers by solving a bi-level optimization problem with a GNN-based trigger generator. Extensive experiments across multiple datasets and state-of-the-art MTS forecasting models demonstrate the effectiveness, versatility, and stealthiness of \method{} attacks. The code is available at \url{https://github.com/xiaolin-cs/BackTime}.

Keywords

Cite

@article{arxiv.2410.02195,
  title  = {BACKTIME: Backdoor Attacks on Multivariate Time Series Forecasting},
  author = {Xiao Lin and Zhining Liu and Dongqi Fu and Ruizhong Qiu and Hanghang Tong},
  journal= {arXiv preprint arXiv:2410.02195},
  year   = {2024}
}

Comments

23 pages. Neurips 2024

R2 v1 2026-06-28T19:06:29.041Z