English
Related papers

Related papers: Low-Frequency Black-Box Backdoor Attack via Evolut…

200 papers

Graph Neural Networks (GNNs) are a class of deep learning-based methods for processing graph domain information. GNNs have recently become a widely used graph analysis method due to their superior ability to learn representations for…

Cryptography and Security · Computer Science 2024-12-10 Jing Xu , Rui Wang , Stefanos Koffas , Kaitai Liang , Stjepan Picek

Federated learning (FL) naturally faces the problem of data heterogeneity in real-world scenarios, but this is often overlooked by studies on FL security and privacy. On the one hand, the effectiveness of backdoor attacks on FL may drop…

Machine Learning · Computer Science 2023-06-16 Haochen Mei , Gaolei Li , Jun Wu , Longfei Zheng

Federated learning (FL) enables distributed model training across edge devices while preserving data locality. This decentralized approach has emerged as a promising solution for collaborative learning on sensitive user data, effectively…

Cryptography and Security · Computer Science 2026-02-18 Mohammad Hadi Foroughi , Seyed Hamed Rastegar , Mohammad Sabokrou , Ahmad Khonsari

Federated Learning (FL) has emerged as a leading paradigm for privacy-preserving distributed machine learning, yet the distributed nature of FL introduces unique security challenges, notably the threat of backdoor attacks. Existing backdoor…

Cryptography and Security · Computer Science 2025-06-27 Chengcheng Zhu , Ye Li , Bosen Rao , Jiale Zhang , Yunlong Mao , Sheng Zhong

Instruction tuning enhances large vision-language models (LVLMs) but increases their vulnerability to backdoor attacks due to their open design. Unlike prior studies in static settings, this paper explores backdoor attacks in LVLM…

Computer Vision and Pattern Recognition · Computer Science 2024-12-17 Siyuan Liang , Jiawei Liang , Tianyu Pang , Chao Du , Aishan Liu , Mingli Zhu , Xiaochun Cao , Dacheng Tao

Deep neural networks (DNNs) are proved to be vulnerable against backdoor attacks. A backdoor is often embedded in the target DNNs through injecting a backdoor trigger into training examples, which can cause the target DNNs misclassify an…

Machine Learning · Computer Science 2022-02-28 Junfeng Guo , Ang Li , Cong Liu

Adversarial attacks are a central tool for probing the robustness of modern vision models, yet most methods optimize perturbations directly in pixel space under $\ell_\infty$ or $\ell_2$ constraints. While effective in white-box settings,…

Computer Vision and Pattern Recognition · Computer Science 2026-03-09 Eitan Shaar , Ariel Shaulov , Yalcin Tur , Gal Chechik , Ravid Shwartz-Ziv

Current black-box adversarial attacks either require multiple queries or diffusion models to produce adversarial samples that can impair the target model performance. However, these methods require training a surrogate loss or diffusion…

Computer Vision and Pattern Recognition · Computer Science 2025-12-08 Joana C. Costa , Tiago Roxo , Hugo Proença , Pedro R. M. Inácio

Despite the high quality performance of the deep neural network in real-world applications, they are susceptible to minor perturbations of adversarial attacks. This is mostly undetectable to human vision. The impact of such attacks has…

Computer Vision and Pattern Recognition · Computer Science 2021-01-18 K Naveen Kumar , C Vishnu , Reshmi Mitra , C Krishna Mohan

Graph Neural Networks(GNNs) are vulnerable to backdoor attacks, where adversaries implant malicious triggers to manipulate model predictions. Existing trigger generators are often simplistic in structure and overly reliant on specific…

Cryptography and Security · Computer Science 2026-05-06 Dongyi Liu , Jiangtong Li

The financial industry relies on deep learning models for making important decisions. This adoption brings new danger, as deep black-box models are known to be vulnerable to adversarial attacks. In computer vision, one can shape the output…

Machine Learning · Computer Science 2024-08-27 Alina Ermilova , Elizaveta Kovtun , Dmitry Berestnev , Alexey Zaytsev

Black-box attacks can generate adversarial examples without accessing the parameters of target model, largely exacerbating the threats of deployed deep neural networks (DNNs). However, previous works state that black-box attacks fail to…

Machine Learning · Computer Science 2022-10-12 Chenghao Sun , Yonggang Zhang , Wan Chaoqun , Qizhou Wang , Ya Li , Tongliang Liu , Bo Han , Xinmei Tian

Recent studies have shown that Deep Neural Networks (DNNs) are susceptible to adversarial attacks, with frequency-domain analysis underscoring the significance of high-frequency components in influencing model predictions. Conversely,…

Computer Vision and Pattern Recognition · Computer Science 2024-05-07 Juanjuan Weng , Zhiming Luo , Shaozi Li

Recently, the field of adversarial machine learning has been garnering attention by showing that state-of-the-art deep neural networks are vulnerable to adversarial examples, stemming from small perturbations being added to the input image.…

Machine Learning · Computer Science 2020-05-19 Ravi Raju , Mikko Lipasti

Deep learning models have consistently outperformed traditional machine learning models in various classification tasks, including image classification. As such, they have become increasingly prevalent in many real world applications…

Cryptography and Security · Computer Science 2018-08-31 Cong Liao , Haoti Zhong , Anna Squicciarini , Sencun Zhu , David Miller

Backdoor attacks have emerged as a critical security threat against deep neural networks in recent years. The majority of existing backdoor attacks focus on targeted backdoor attacks, where trigger is strongly associated to specific…

Cryptography and Security · Computer Science 2025-06-24 Yinghao Wu , Liyan Zhang

In recent years, the security issues of artificial intelligence have become increasingly prominent due to the rapid development of deep learning research and applications. Backdoor attack is an attack targeting the vulnerability of deep…

Cryptography and Security · Computer Science 2023-12-14 Peixin Zhang , Jun Sun , Mingtian Tan , Xinyu Wang

Backdoor attacks become a significant security concern for deep neural networks in recent years. An image classification model can be compromised if malicious backdoors are injected into it. This corruption will cause the model to function…

Cryptography and Security · Computer Science 2024-03-13 Hongwei Zhang , Xiaoyin Xu , Dongsheng An , Xianfeng Gu , Min Zhang

The widespread adoption of Large Language Model (LLM) in commercial and research settings has intensified the need for robust intellectual property protection. Backdoor-based LLM fingerprinting has emerged as a promising solution for this…

Cryptography and Security · Computer Science 2026-01-09 Hang Fu , Wanli Peng , Yinghan Zhou , Jiaxuan Wu , Juan Wen , Yiming Xue

Visual reinforcement learning has achieved remarkable progress in visual control and robotics, but its vulnerability to adversarial perturbations remains underexplored. Most existing black-box attacks focus on vector-based or…

Machine Learning · Computer Science 2025-11-14 Tairan Huang , Yulin Jin , Junxu Liu , Qingqing Ye , Haibo Hu