English
Related papers

Related papers: Low-Frequency Black-Box Backdoor Attack via Evolut…

200 papers

Model merging is an emerging technique that integrates multiple models fine-tuned on different tasks to create a versatile model that excels in multiple domains. This scheme, in the meantime, may open up backdoor attack opportunities where…

Cryptography and Security · Computer Science 2025-06-02 Ming Yin , Jingyang Zhang , Jingwei Sun , Minghong Fang , Hai Li , Yiran Chen

Recently backdoor attack has become an emerging threat to the security of deep neural network (DNN) models. To date, most of the existing studies focus on backdoor attack against the uncompressed model; while the vulnerability of compressed…

Cryptography and Security · Computer Science 2022-08-24 Huy Phan , Cong Shi , Yi Xie , Tianfang Zhang , Zhuohang Li , Tianming Zhao , Jian Liu , Yan Wang , Yingying Chen , Bo Yuan

Carefully crafted, often imperceptible, adversarial perturbations have been shown to cause state-of-the-art models to yield extremely inaccurate outputs, rendering them unsuitable for safety-critical application domains. In addition, recent…

Computer Vision and Pattern Recognition · Computer Science 2019-06-04 Yash Sharma , Gavin Weiguang Ding , Marcus Brubaker

Backdoor attacks (BAs) are an emerging threat to deep neural network classifiers. A victim classifier will predict to an attacker-desired target class whenever a test sample is embedded with the same backdoor pattern (BP) that was used to…

Cryptography and Security · Computer Science 2022-03-15 Zhen Xiang , David J. Miller , George Kesidis

Deep neural networks are vulnerable to adversarial attacks. White-box adversarial attacks can fool neural networks with small adversarial perturbations, especially for large size images. However, keeping successful adversarial perturbations…

Computer Vision and Pattern Recognition · Computer Science 2020-11-11 Yongwei Wang , Mingquan Feng , Rabab Ward , Z. Jane Wang , Lanjun Wang

Backdoor attacks on deep learning represent a recent threat that has gained significant attention in the research community. Backdoor defenses are mainly based on backdoor inversion, which has been shown to be generic, model-agnostic, and…

Machine Learning · Computer Science 2024-11-11 Xiaoyun Xu , Zhuoran Liu , Stefanos Koffas , Shujian Yu , Stjepan Picek

Most deep learning models are easily vulnerable to adversarial attacks. Various adversarial attacks are designed to evaluate the robustness of models and develop defense model. Currently, adversarial attacks are brought up to attack their…

Cryptography and Security · Computer Science 2019-06-10 Jinyin Chen , Mengmeng Su , Shijing Shen , Hui Xiong , Haibin Zheng

Since DNN is vulnerable to carefully crafted adversarial examples, adversarial attack on LiDAR sensors have been extensively studied. We introduce a robust black-box attack dubbed LiDAttack. It utilizes a genetic algorithm with a simulated…

Computer Vision and Pattern Recognition · Computer Science 2024-11-05 Jinyin Chen , Danxin Liao , Sheng Xiang , Haibin Zheng

Visual object tracking (VOT) has been widely adopted in mission-critical applications, such as autonomous driving and intelligent surveillance systems. In current practice, third-party resources such as datasets, backbone networks, and…

Computer Vision and Pattern Recognition · Computer Science 2022-05-05 Yiming Li , Haoxiang Zhong , Xingjun Ma , Yong Jiang , Shu-Tao Xia

This paper addresses the challenging black-box adversarial attack problem, where only classification confidence of a victim model is available. Inspired by consistency of visual saliency between different vision models, a surrogate model is…

Cryptography and Security · Computer Science 2020-10-23 Jiancheng Yang , Yangzhou Jiang , Xiaoyang Huang , Bingbing Ni , Chenglong Zhao

Deep learning models are widely deployed in many applications, such as object detection in various security fields. However, these models are vulnerable to backdoor attacks. Most backdoor attacks were intensively studied on classified…

Computer Vision and Pattern Recognition · Computer Science 2023-09-19 Yaguan Qian , Boyuan Ji , Shuke He , Shenhui Huang , Xiang Ling , Bin Wang , Wei Wang

Recently, 3D backdoor attacks have posed a substantial threat to 3D Deep Neural Networks (3D DNNs) designed for 3D point clouds, which are extensively deployed in various security-critical applications. Although the existing 3D backdoor…

Computer Vision and Pattern Recognition · Computer Science 2024-12-17 Xiaoyang Ning , Qing Xie , Jinyu Xu , Wenbo Jiang , Jiachen Li , Yanchun Ma

Deep neural networks (DNNs) are vulnerable to backdoor attacks. The backdoor adversaries intend to maliciously control the predictions of attacked DNNs by injecting hidden backdoors that can be activated by adversary-specified trigger…

Cryptography and Security · Computer Science 2023-03-07 Tong Xu , Yiming Li , Yong Jiang , Shu-Tao Xia

Adversarial examples are a key method to exploit deep neural networks. Using gradient information, such examples can be generated in an efficient way without altering the victim model. Recent frequency domain transformation has further…

Machine Learning · Computer Science 2024-08-26 Zhibo Jin , Jiayu Zhang , Zhiyu Zhu , Xinyi Wang , Yiyun Huang , Huaming Chen

Federated learning (FL) enables multiple clients to collaboratively train deep learning models while considering sensitive local datasets' privacy. However, adversaries can manipulate datasets and upload models by injecting triggers for…

Machine Learning · Computer Science 2023-07-04 Zekai Chen , Fuyi Wang , Zhiwei Zheng , Ximeng Liu , Yujie Lin

Adversarial examples have posed a severe threat to deep neural networks due to their transferable nature. Currently, various works have paid great efforts to enhance the cross-model transferability, which mostly assume the substitute model…

Computer Vision and Pattern Recognition · Computer Science 2022-03-15 Qilong Zhang , Xiaodan Li , Yuefeng Chen , Jingkuan Song , Lianli Gao , Yuan He , Hui Xue

Low-Rank Adaptation (LoRA), which leverages the insight that model updates typically reside in a low-dimensional space, has significantly improved the training efficiency of Large Language Models (LLMs) by updating neural network layers…

Machine Learning · Computer Science 2026-05-01 Han Liu , Shanghao Shi , Yevgeniy Vorobeychik , Chongjie Zhang , Ning Zhang

Convolutional neural networks (CNNs) have proven effective for image processing tasks, such as object recognition and classification. Recently, CNNs have been enhanced with concepts of attention, similar to those found in biology. Much of…

Computer Vision and Pattern Recognition · Computer Science 2015-12-10 Grace W. Lindsay

For black-box attacks, the gap between the substitute model and the victim model is usually large, which manifests as a weak attack performance. Motivated by the observation that the transferability of adversarial examples can be improved…

Computer Vision and Pattern Recognition · Computer Science 2022-07-13 Yuyang Long , Qilong Zhang , Boheng Zeng , Lianli Gao , Xianglong Liu , Jian Zhang , Jingkuan Song

Recent works have shown that deep neural networks are vulnerable to adversarial examples that find samples close to the original image but can make the model misclassify. Even with access only to the model's output, an attacker can employ…

Machine Learning · Computer Science 2023-10-03 Quang H. Nguyen , Yingjie Lao , Tung Pham , Kok-Seng Wong , Khoa D. Doan
‹ Prev 1 3 4 5 6 7 10 Next ›