English
Related papers

Related papers: TRIGS: Trojan Identification from Gradient-based S…

200 papers

Recent work has identified that classification models implemented as neural networks are vulnerable to data-poisoning and Trojan attacks at training time. In this work, we show that these training-time vulnerabilities extend to deep…

Cryptography and Security · Computer Science 2019-03-18 Panagiota Kiourti , Kacper Wardega , Susmit Jha , Wenchao Li

While neural networks demonstrate stronger capabilities in pattern recognition nowadays, they are also becoming larger and deeper. As a result, the effort needed to train a network also increases dramatically. In many cases, it is more…

Cryptography and Security · Computer Science 2025-08-19 Yuntao Liu , Yang Xie , Ankur Srivastava

An emerging amount of intelligent applications have been developed with the surge of Machine Learning (ML). Deep Neural Networks (DNNs) have demonstrated unprecedented performance across various fields such as medical diagnosis and…

Cryptography and Security · Computer Science 2021-04-22 Xinqiao Zhang , Huili Chen , Farinaz Koushanfar

In this work, we study literature in Explainable AI and Safe AI to understand poisoning of neural models of code. In order to do so, we first establish a novel taxonomy for Trojan AI for code, and present a new aspect-based classification…

Software Engineering · Computer Science 2024-04-22 Aftab Hussain , Md Rafiqul Islam Rabin , Toufique Ahmed , Navid Ayoobi , Bowen Xu , Prem Devanbu , Mohammad Amin Alipour

Time Series Classification (TSC) is highly vulnerable to backdoor attacks, posing significant security threats. Existing methods primarily focus on data poisoning during the training phase, designing sophisticated triggers to improve…

Cryptography and Security · Computer Science 2025-02-04 Chang Dong , Zechao Sun , Guangdong Bai , Shuying Piao , Weitong Chen , Wei Emma Zhang

A trojan backdoor is a hidden pattern typically implanted in a deep neural network. It could be activated and thus forces that infected model behaving abnormally only when an input data sample with a particular trigger present is fed to…

Cryptography and Security · Computer Science 2019-08-12 Wenbo Guo , Lun Wang , Xinyu Xing , Min Du , Dawn Song

Pre-trained vision models (PVMs) have become a dominant component due to their exceptional performance when fine-tuned for downstream tasks. However, the presence of backdoors within PVMs poses significant threats. Unfortunately, existing…

Computer Vision and Pattern Recognition · Computer Science 2023-12-27 Aishan Liu , Xinwei Zhang , Yisong Xiao , Yuguang Zhou , Siyuan Liang , Jiakai Wang , Xianglong Liu , Xiaochun Cao , Dacheng Tao

As the semiconductor industry has shifted to a fabless paradigm, the risk of hardware Trojans being inserted at various stages of production has also increased. Recently, there has been a growing trend toward the use of machine learning…

Cryptography and Security · Computer Science 2023-12-04 Rahul Vishwakarma , Amin Rezaei

Deep Neural Network (DNN) classifiers are known to be vulnerable to Trojan or backdoor attacks, where the classifier is manipulated such that it misclassifies any input containing an attacker-determined Trojan trigger. Backdoors compromise…

Cryptography and Security · Computer Science 2021-03-12 Ahmadreza Azizi , Ibrahim Asadullah Tahmid , Asim Waheed , Neal Mangaokar , Jiameng Pu , Mobin Javed , Chandan K. Reddy , Bimal Viswanath

With the rising popularity of machine learning and the ever increasing demand for computational power, there is a growing need for hardware optimized implementations of neural networks and other machine learning models. As the technology…

Machine Learning · Computer Science 2018-06-18 Joseph Clements , Yingjie Lao

Trojan (backdoor) attack is a form of adversarial attack on deep neural networks where the attacker provides victims with a model trained/retrained on malicious data. The backdoor can be activated when a normal input is stamped with a…

Machine Learning · Computer Science 2021-01-05 Siyuan Cheng , Yingqi Liu , Shiqing Ma , Xiangyu Zhang

Machine learning tools are becoming increasingly powerful and widely used. Unfortunately membership attacks, which seek to uncover information from data sets used in machine learning, have the potential to limit data sharing. In this paper…

Computer Vision and Pattern Recognition · Computer Science 2021-08-03 Dennis Conway , Loic Simon , Alexis Lechervy , Frederic Jurie

The emergence of distributed manufacturing ecosystems for electronic hardware involving untrusted parties has given rise to diverse trust issues. In particular, IP piracy, overproduction, and hardware Trojan attacks pose significant threats…

Cryptography and Security · Computer Science 2020-10-13 Abhishek Nair , Patanjali SLPSK , Chester Rebeiro , Swarup Bhunia

Model adaptation tackles the distribution shift problem with a pre-trained model instead of raw data, which has become a popular paradigm due to its great privacy protection. Existing methods always assume adapting to a clean target domain,…

Cryptography and Security · Computer Science 2025-02-18 Lijun Sheng , Jian Liang , Ran He , Zilei Wang , Tieniu Tan

Deep neural networks (DNNs) are vulnerable to "backdoor" poisoning attacks, in which an adversary implants a secret trigger into an otherwise normally functioning model. Detection of backdoors in trained models without access to the…

Machine Learning · Computer Science 2021-03-19 Todd Huster , Emmanuel Ekwedike

Deep Neural Networks (DNNs) have been applied successfully in computer vision. However, their wide adoption in image-related applications is threatened by their vulnerability to trojan attacks. These attacks insert some misbehavior at…

Computer Vision and Pattern Recognition · Computer Science 2020-07-03 Miguel Villarreal-Vasquez , Bharat Bhargava

Gradient-based training in federated learning is known to be vulnerable to faulty/malicious clients, which are often modeled as Byzantine clients. To this end, previous work either makes use of auxiliary data at parameter server to verify…

Machine Learning · Computer Science 2023-05-02 Jian Xu , Shao-Lun Huang , Linqi Song , Tian Lan

Deep learning models have been shown to be vulnerable to adversarial attacks. In particular, gradient-based attacks have demonstrated high success rates recently. The gradient measures how each image pixel affects the model output, which…

Computer Vision and Pattern Recognition · Computer Science 2022-02-03 Hanbin Hong , Yuan Hong , Yu Kong

This paper addresses the problem of detecting trojans in neural networks (NNs) by analyzing systematically pruned NN models. Our pruning-based approach consists of three main steps. First, detect any deviations from the reference look-up…

Cryptography and Security · Computer Science 2021-02-10 Peter Bajcsy , Michael Majurski

Trojan attacks are sophisticated training-time attacks on neural networks that embed backdoor triggers which force the network to produce a specific output on any input which includes the trigger. With the increasing relevance of deep…

Machine Learning · Computer Science 2025-12-16 Xihe Gu , Greg Fields , Yaman Jandali , Tara Javidi , Farinaz Koushanfar