English
Related papers

Related papers: TRIGS: Trojan Identification from Gradient-based S…

200 papers

Neural network (NN) trojaning attack is an emerging and important attack model that can broadly damage the system deployed with NN models. Existing studies have explored the outsourced training attack scenario and transfer learning attack…

Cryptography and Security · Computer Science 2019-01-24 Yu Ji , Zixin Liu , Xing Hu , Peiqi Wang , Youhui Zhang

In Natural Language Processing (NLP), intelligent neuron models can be susceptible to textual Trojan attacks. Such attacks occur when Trojan models behave normally for standard inputs but generate malicious output for inputs that contain a…

Computation and Language · Computer Science 2023-08-23 Qian Lou , Yepeng Liu , Bo Feng

While real-world applications of reinforcement learning are becoming popular, the security and robustness of RL systems are worthy of more attention and exploration. In particular, recent works have revealed that, in a multi-agent RL…

Machine Learning · Computer Science 2023-09-15 Junfeng Guo , Ang Li , Cong Liu

We present a novel methodology for neural network backdoor attacks. Unlike existing training-time attacks where the Trojaned network would respond to the Trojan trigger after training, our approach inserts a Trojan that will remain dormant…

Cryptography and Security · Computer Science 2022-11-04 Feisi Fu , Panagiota Kiourti , Wenchao Li

Signature-based malware detectors have proven to be insufficient as even a small change in malignant executable code can bypass these signature-based detectors. Many machine learning-based models have been proposed to efficiently detect a…

Cryptography and Security · Computer Science 2024-09-02 Yash Jakhotiya , Heramb Patil , Jugal Rawlani , Sunil B. Mane

Federated Learning (FL) has been gaining popularity as a collaborative learning framework to train deep learning-based object detection models over a distributed population of clients. Despite its advantages, FL is vulnerable to model…

Cryptography and Security · Computer Science 2023-05-23 Ka-Ho Chow , Ling Liu , Wenqi Wei , Fatih Ilhan , Yanzhao Wu

A backdoor or Trojan attack is an important type of data poisoning attack against deep neural network (DNN) classifiers, wherein the training dataset is poisoned with a small number of samples that each possess the backdoor pattern (usually…

Machine Learning · Computer Science 2023-03-15 H. Wang , S. Karami , O. Dia , H. Ritter , E. Emamjomeh-Zadeh , J. Chen , Z. Xiang , D. J. Miller , G. Kesidis

Semiconductor design houses are increasingly becoming dependent on third party vendors to procure intellectual property (IP) and meet time-to-market constraints. However, these third party IPs cannot be trusted as hardware Trojans can be…

Cryptography and Security · Computer Science 2018-03-13 Adib Nahiyan , Mehdi Sadi , Rahul Vittal , Gustavo Contreras , Domenic Forte , Mark Tehranipoor

In this paper, we propose a novel host-free Trojan attack with triggers that are fixed in the semantic space but not necessarily in the pixel space. In contrast to existing Trojan attacks which use clean input images as hosts to carry…

Computer Vision and Pattern Recognition · Computer Science 2021-10-27 Haripriya Harikumar , Kien Do , Santu Rana , Sunil Gupta , Svetha Venkatesh

Deep neural networks have significantly improved the performance of face forgery detection models in discriminating Artificial Intelligent Generated Content (AIGC). However, their security is significantly threatened by the injection of…

Computer Vision and Pattern Recognition · Computer Science 2024-01-02 Xiaoxuan Han , Songlin Yang , Wei Wang , Ziwen He , Jing Dong

Malware detection models based on deep learning have been widely used, but recent research shows that deep learning models are vulnerable to adversarial attacks. Adversarial attacks are to deceive the deep learning model by generating…

Cryptography and Security · Computer Science 2023-05-23 Kun Li , Fan Zhang , Wei Guo

Deep learning models have been developed for a variety of tasks and are deployed every day to work in real conditions. Some of these tasks are critical and models need to be trusted and safe, e.g. military communications or cancer…

Machine Learning · Computer Science 2023-11-13 Hélion du Mas des Bourboux

We tackle the convolution neural networks (CNNs) backdoor detection problem by proposing a new representation called one-pixel signature. Our task is to detect/classify if a CNN model has been maliciously inserted with an unknown Trojan…

Computer Vision and Pattern Recognition · Computer Science 2020-08-19 Shanjiaoyang Huang , Weiqi Peng , Zhiwei Jia , Zhuowen Tu

Collaborative machine learning settings like federated learning can be susceptible to adversarial interference and attacks. One class of such attacks is termed model inversion attacks, characterised by the adversary reverse-engineering the…

Machine Learning · Computer Science 2022-03-02 Dmitrii Usynin , Daniel Rueckert , Georgios Kaissis

System-on-chip (SoC) developers increasingly rely on pre-verified hardware intellectual property (IP) blocks acquired from untrusted third-party vendors. These IPs might contain hidden malicious functionalities or hardware Trojans to…

Cryptography and Security · Computer Science 2021-12-01 Pravin Gaikwad , Jonathan Cruz , Prabuddha Chakraborty , Swarup Bhunia , Tamzidul Hoque

We propose CLEANN, the first end-to-end framework that enables online mitigation of Trojans for embedded Deep Neural Network (DNN) applications. A Trojan attack works by injecting a backdoor in the DNN while training; during inference, the…

Machine Learning · Computer Science 2020-09-08 Mojan Javaheripi , Mohammad Samragh , Gregory Fields , Tara Javidi , Farinaz Koushanfar

In recent years, knowledge distillation has become a cornerstone of efficiently deployed machine learning, with labs and industries using knowledge distillation to train models that are inexpensive and resource-optimized. Trojan attacks…

Machine Learning · Computer Science 2023-03-13 Leonard Tang , Tom Shlomi , Alexander Cai

HTTP-based Trojan is extremely threatening, and it is difficult to be effectively detected because of its concealment and confusion. Previous detection methods usually are with poor generalization ability due to outdated datasets and…

Networking and Internet Architecture · Computer Science 2023-09-08 Jiang Xie , Shuhao Lia , Xiaochun Yun , Yongzheng Zhang , Peng Chang

Deep neural networks are vulnerable to backdoor attacks (Trojans), where an attacker poisons the training set with backdoor triggers so that the neural network learns to classify test-time triggers to the attacker's designated target class.…

Machine Learning · Computer Science 2023-08-10 Hang Wang , Zhen Xiang , David J. Miller , George Kesidis

As large language models (LLMs) become integrated into sensitive workflows, concerns grow over their potential to leak confidential information. We propose TrojanStego, a novel threat model in which an adversary fine-tunes an LLM to embed…

Computation and Language · Computer Science 2026-01-08 Dominik Meier , Jan Philip Wahle , Paul Röttger , Terry Ruas , Bela Gipp