English
Related papers

Related papers: Low-Frequency Black-Box Backdoor Attack via Evolut…

200 papers

Vision State Space Models (SSMs), particularly architectures like Vision Mamba (ViM), have emerged as promising alternatives to Vision Transformers (ViTs). However, the security implications of this novel architecture, especially their…

Cryptography and Security · Computer Science 2025-07-02 Yinghao Wu , Liyan Zhang

Herein, security of deep neural network against adversarial attack is considered. Existing compressive sensing based defence schemes assume that adversarial perturbations are usually on high frequency components, whereas recently it has…

Image and Video Processing · Electrical Eng. & Systems 2021-10-12 Akash Kumar Gupta , Arpan Chattopadhyay , Darpan Kumar Yadav

Vision-Language-Action (VLA) models have advanced robotic control by enabling end-to-end decision-making directly from multimodal inputs. However, their tightly coupled architectures expose novel security vulnerabilities. Unlike traditional…

Cryptography and Security · Computer Science 2025-05-23 Xueyang Zhou , Guiyao Tie , Guowen Zhang , Hechang Wang , Pan Zhou , Lichao Sun

Much effort has been made to explain and improve the success of transfer-based attacks (TBA) on black-box computer vision models. This work provides the first attempt at a priori prediction of attack success by identifying the presence of…

Computer Vision and Pattern Recognition · Computer Science 2024-12-10 Ashley S. Dale , Mei Qiu , Foo Bin Che , Thomas Bsaibes , Lauren Christopher , Paul Salama

Backdoor attacks represent a subtle yet effective class of cyberattacks targeting AI models, primarily due to their stealthy nature. The model behaves normally on clean data but exhibits malicious behavior only when the attacker embeds a…

Machine Learning · Computer Science 2025-09-29 Sujeevan Aseervatham , Achraf Kerzazi , Younès Bennani

The increasing importance of both deep neural networks (DNNs) and cloud services for training them means that bad actors have more incentive and opportunity to insert backdoors to alter the behavior of trained models. In this paper, we…

Computer Vision and Pattern Recognition · Computer Science 2022-12-19 Khondoker Murad Hossain , Tim Oates

Biometric data, such as face images, are often associated with sensitive information (e.g medical, financial, personal government records). Hence, a data breach in a system storing such information can have devastating consequences. Deep…

Computer Vision and Pattern Recognition · Computer Science 2022-02-22 Reena Zelenkova , Jack Swallow , M. A. P. Chamikara , Dongxi Liu , Mohan Baruwal Chhetri , Seyit Camtepe , Marthie Grobler , Mahathir Almashor

Trojan (backdoor) attack is a form of adversarial attack on deep neural networks where the attacker provides victims with a model trained/retrained on malicious data. The backdoor can be activated when a normal input is stamped with a…

Machine Learning · Computer Science 2021-01-05 Siyuan Cheng , Yingqi Liu , Shiqing Ma , Xiangyu Zhang

Federated learning (FL) remains highly vulnerable to adaptive backdoor attacks that preserve stealth by closely imitating benign update statistics. Existing defenses predominantly rely on anomaly detection in parameter or gradient space,…

Machine Learning · Computer Science 2026-02-13 Chibueze Peace Obioma , Youcheng Sun , Mustafa A. Mustafa

Ensuring the robustness of deep neural networks against adversarial attacks remains a fundamental challenge in computer vision. While adversarial training (AT) has emerged as a promising defense strategy, our analysis reveals a critical…

Computer Vision and Pattern Recognition · Computer Science 2025-01-14 Kejia Zhang , Juanjuan Weng , Yuanzheng Cai , Zhiming Luo , Shaozi Li

Adversarial perturbations are a useful way to expose vulnerabilities in object detectors. Existing perturbation methods are frequently white-box, architecture specific and use a loss function. More importantly, while they are often…

Computer Vision and Pattern Recognition · Computer Science 2026-04-13 Melane Navaratnarajah , David A. Kelly , Hana Chockler

Low rank adaptation (LoRA) has emerged as a prominent technique for fine-tuning large language models (LLMs) thanks to its superb efficiency gains over previous methods. While extensive studies have examined the performance and structural…

Machine Learning · Computer Science 2025-05-20 Zi Liang , Haibo Hu , Qingqing Ye , Yaxin Xiao , Ronghua Li

Neural networks play an increasingly important role in the field of machine learning and are included in many applications in society. Unfortunately, neural networks suffer from adversarial samples generated to attack them. However, most of…

Machine Learning · Computer Science 2024-03-13 Xiaolei Liu , Yuheng Luo , Xiaosong Zhang , Qingxin Zhu

Existing black-box attacks have demonstrated promising potential in creating adversarial examples (AE) to deceive deep learning models. Most of these attacks need to handle a vast optimization space and require a large number of queries,…

Computer Vision and Pattern Recognition · Computer Science 2023-10-12 Renyang Liu , Wei Zhou , Tianwei Zhang , Kangjie Chen , Jun Zhao , Kwok-Yan Lam

Deep neural networks (DNNs) are vulnerable to backdoor attack, which does not affect the network's performance on clean data but would manipulate the network behavior once a trigger pattern is added. Existing defense methods have greatly…

Machine Learning · Computer Science 2025-04-08 Min Liu , Alberto Sangiovanni-Vincentelli , Xiangyu Yue

Even a slight perturbation in the graph structure can cause a significant drop in the accuracy of graph neural networks (GNNs). Most existing attacks leverage gradient information to perturb edges. This relaxes the attack's optimization…

Machine Learning · Computer Science 2025-07-14 Mohammad Sadegh Akhondzadeh , Soroush H. Zargarbashi , Jimin Cao , Aleksandar Bojchevski

When a small number of poisoned samples are injected into the training dataset of a deep neural network, the network can be induced to exhibit malicious behavior during inferences, which poses potential threats to real-world applications.…

Computer Vision and Pattern Recognition · Computer Science 2024-04-18 Haoheng Lan , Jindong Gu , Philip Torr , Hengshuang Zhao

Many studies have been conducted to improve the efficiency of Transformer from quadric to linear. Among them, the low-rank-based methods aim to learn the projection matrices to compress the sequence length. However, the projection matrices…

Machine Learning · Computer Science 2022-11-30 Bosheng Qin , Juncheng Li , Siliang Tang , Yueting Zhuang

Powerful adversarial attack methods are vital for understanding how to construct robust deep neural networks (DNNs) and for thoroughly testing defense techniques. In this paper, we propose a black-box adversarial attack algorithm that can…

Machine Learning · Computer Science 2019-12-11 Yandong Li , Lijun Li , Liqiang Wang , Tong Zhang , Boqing Gong

Deep neural networks (DNNs) are known for their vulnerability to adversarial examples. These are examples that have undergone small, carefully crafted perturbations, and which can easily fool a DNN into making misclassifications at test…

Machine Learning · Computer Science 2019-07-01 Linxi Jiang , Xingjun Ma , Shaoxiang Chen , James Bailey , Yu-Gang Jiang