English
Related papers

Related papers: TRIGS: Trojan Identification from Gradient-based S…

200 papers

Trojan attack on deep neural networks, also known as backdoor attack, is a typical threat to artificial intelligence. A trojaned neural network behaves normally with clean inputs. However, if the input contains a particular trigger, the…

Cryptography and Security · Computer Science 2023-03-01 Chong Fu , Xuhong Zhang , Shouling Ji , Ting Wang , Peng Lin , Yanghe Feng , Jianwei Yin

Engineering a top-notch deep learning model is an expensive procedure that involves collecting data, hiring human resources with expertise in machine learning, and providing high computational resources. For that reason, deep learning…

Machine Learning · Computer Science 2021-03-08 Omid Aramoon , Pin-Yu Chen , Gang Qu

Deep learning has come a long way and has enjoyed an unprecedented success. Despite high accuracy, however, deep models are brittle and are easily fooled by imperceptible adversarial perturbations. In contrast to common inference-time…

Computer Vision and Pattern Recognition · Computer Science 2020-05-14 Ali Borji

Modern DNNs are repeatedly fine-tuned to incorporate new data and functionality. This evolutionary workflow introduces a security risk when updated data cannot be fully trusted, as adversaries may implant Trojans during fine-tuning. We…

Cryptography and Security · Computer Science 2026-05-21 Samuele Pasini , Jinhan Kim , Paolo Tonella

Machine learning models in the wild have been shown to be vulnerable to Trojan attacks during training. Although many detection mechanisms have been proposed, strong adaptive attackers have been shown to be effective against them. In this…

Machine Learning · Computer Science 2022-07-14 Dinuka Sahabandu , Arezoo Rajabi , Luyao Niu , Bo Li , Bhaskar Ramasubramanian , Radha Poovendran

Stealthy hardware Trojans (HTs) inserted during the fabrication of integrated circuits can bypass the security of critical infrastructures. Although researchers have proposed many techniques to detect HTs, several limitations exist,…

Cryptography and Security · Computer Science 2022-08-30 Vasudev Gohil , Hao Guo , Satwik Patnaik , Jeyavijayan , Rajendran

When the training data are maliciously tampered, the predictions of the acquired deep neural network (DNN) can be manipulated by an adversary known as the Trojan attack (or poisoning backdoor attack). The lack of robustness of DNNs against…

Machine Learning · Computer Science 2020-08-03 Ren Wang , Gaoyuan Zhang , Sijia Liu , Pin-Yu Chen , Jinjun Xiong , Meng Wang

Diffusion models have achieved great success in a range of tasks, such as image synthesis and molecule design. As such successes hinge on large-scale training data collected from diverse sources, the trustworthiness of these collected data…

Machine Learning · Computer Science 2023-03-13 Weixin Chen , Dawn Song , Bo Li

An image encoder pre-trained by self-supervised learning can be used as a general-purpose feature extractor to build downstream classifiers for various downstream tasks. However, many studies showed that an attacker can embed a trojan into…

Cryptography and Security · Computer Science 2025-02-05 Yupei Liu , Yanting Wang , Jinyuan Jia

In machine learning Trojan attacks, an adversary trains a corrupted model that obtains good performance on normal data but behaves maliciously on data samples with certain trigger patterns. Several approaches have been proposed to detect…

Artificial Intelligence · Computer Science 2020-10-02 Xiaojun Xu , Qi Wang , Huichen Li , Nikita Borisov , Carl A. Gunter , Bo Li

Machine learning models that use deep neural networks (DNNs) are vulnerable to backdoor attacks. An adversary carrying out a backdoor attack embeds a predefined perturbation called a trigger into a small subset of input samples and trains…

Cryptography and Security · Computer Science 2023-09-06 Arezoo Rajabi , Surudhi Asokraj , Fengqing Jiang , Luyao Niu , Bhaskar Ramasubramanian , Jim Ritcey , Radha Poovendran

Although federated learning has increasingly gained attention in terms of effectively utilizing local devices for data privacy enhancement, recent studies show that publicly shared gradients in the training process can reveal the private…

Cryptography and Security · Computer Science 2021-09-22 Jieren Deng , Yijue Wang , Ji Li , Chao Shang , Hang Liu , Sanguthevar Rajasekaran , Caiwen Ding

With the surge of Machine Learning (ML), An emerging amount of intelligent applications have been developed. Deep Neural Networks (DNNs) have demonstrated unprecedented performance across various fields such as medical diagnosis and…

Cryptography and Security · Computer Science 2022-04-12 Xinqiao Zhang , Huili Chen , Ke Huang , Farinaz Koushanfar

Large language models (LLMs) have provided a lot of exciting new capabilities in software development. However, the opaque nature of these models makes them difficult to reason about and inspect. Their opacity gives rise to potential…

Software Engineering · Computer Science 2024-05-07 Aftab Hussain , Md Rafiqul Islam Rabin , Toufique Ahmed , Bowen Xu , Premkumar Devanbu , Mohammad Amin Alipour

Autoregressive image generation has witnessed rapid advancements, with prominent models such as scale-wise visual auto-regression pushing the boundaries of visual synthesis. However, these developments also raise significant concerns…

Computer Vision and Pattern Recognition · Computer Science 2025-12-02 Hongyao Yu , Yixiang Qiu , Yiheng Yang , Hao Fang , Tianqu Zhuang , Jiaxin Hong , Bin Chen , Hao Wu , Shu-Tao Xia

Trojan attacks on deep neural networks are both dangerous and surreptitious. Over the past few years, Trojan attacks have advanced from using only a single input-agnostic trigger and targeting only one class to using multiple,…

Cryptography and Security · Computer Science 2023-02-15 Kien Do , Haripriya Harikumar , Hung Le , Dung Nguyen , Truyen Tran , Santu Rana , Dang Nguyen , Willy Susilo , Svetha Venkatesh

Hardware Trojans (HTs) have become a serious problem, and extermination of them is strongly required for enhancing the security and safety of integrated circuits. An effective solution is to identify HTs at the gate level via machine…

Cryptography and Security · Computer Science 2022-05-30 Kento Hasegawa , Seira Hidano , Kohei Nozawa , Shinsaku Kiyomoto , Nozomu Togawa

Backdoor (trojan) attacks embed hidden, controllable behaviors into machine-learning models so that models behave normally on benign inputs but produce attacker-chosen outputs when a trigger is present. This survey reviews the rapidly…

Cryptography and Security · Computer Science 2025-09-10 Bilal Hussain Abbasi , Yanjun Zhang , Leo Zhang , Shang Gao

Chip manufacturing is a complex process, and to achieve a faster time to market, an increasing number of untrusted third-party tools and designs from around the world are being utilized. The use of these untrusted third party intellectual…

Machine Learning · Computer Science 2025-06-24 Kiran Thorat , Amit Hasan , Caiwen Ding , Zhijie Shi

Recent studies have shown that recommender systems (RSs) are highly vulnerable to data poisoning attacks. Understanding attack tactics helps improve the robustness of RSs. We intend to develop efficient attack methods that use limited…

Cryptography and Security · Computer Science 2024-02-15 Shiyi Yang , Lina Yao , Chen Wang , Xiwei Xu , Liming Zhu