Attack Performance

Attack performance in machine learning focuses on evaluating and improving the effectiveness of adversarial attacks against various models, aiming to understand and mitigate vulnerabilities. Current research investigates diverse attack strategies, including gradient-based methods, reinforcement learning approaches, and techniques exploiting model-specific weaknesses like power consumption or loss trajectories, often applied to large language models, graph neural networks, and recommender systems. These studies are crucial for enhancing the robustness and security of machine learning systems across numerous applications, from autonomous vehicles to online services, by identifying and addressing critical vulnerabilities. The ultimate goal is to develop more resilient models capable of withstanding a wide range of attacks.

Papers

October 11, 2024

RePD: Defending Jailbreak Attack through a Retrieval-based Prompt Decomposition Process
Peiran Wang, Xiaogeng Liu, Chaowei Xiao
Jailbreak Attack Microbial Decomposition Attack Performance One Line Prompt

August 27, 2024

Detecting AI Flaws: Target-Driven Attacks on Internal Faults in Language Models
Yuhao Du, Zhuo Li, Pengyu Cheng, Xiang Wan, Anningzhe Gao
Language Model Black Box Model Adversarial Text Attack Performance Attack Paradigm

August 21, 2024

Unlocking Adversarial Suffix Optimization Without Affirmative Phrases: Efficient Black-box Jailbreaking via LLM as Optimizer
Weipeng Jiang, Zhenting Wang, Juan Zhai, Shiqing Ma, Zhengyu Zhao, Chao Shen
Medical LLM Jailbreak Attack Superior Optimizer Attack Performance Adversarial Suffix Token Optimization Suffix Prediction

August 7, 2024

Enhancing Output Diversity Improves Conjugate Gradient-based Adversarial Attacks
Keiichiro Yamamura, Issa Oe, Hiroki Ishikura, Katsuki Fujisawa
Adversarial Attack Adversarial Example Conjugate Gradient Attack Performance

August 1, 2024

Adversarial Text Rewriting for Text-aware Recommender Systems
Sejoon Oh, Gaurav Verma, Srijan Kumar
Recommender System Adversarial Text Attack Performance Text Aware

July 1, 2024

Robust and Reliable Early-Stage Website Fingerprinting Attacks via Spatial-Temporal Distribution Analysis
Xinhao Deng, Qi Li, Ke Xu
Spatio Temporal Traffic Data Attack Performance Dark Web Website Fingerprinting

May 30, 2024

Reconstruction Attacks on Machine Unlearning: Simple Models are Vulnerable
Martin Bertran, Shuai Tang, Michael Kearns, Jamie Morgenstern, Aaron Roth, Zhiwei Steven Wu
Loss Function Machine Unlearning Reconstruction Attack Attack Performance Simple Model

April 16, 2024

Towards a Novel Perspective on Adversarial Examples Driven by Frequency
Zhun Zhang, Yi Zeng, Qihe Liu, Shijie Zhou
Adversarial Example Adversarial Perturbation High Frequency Attack Performance Novel View

February 25, 2024

Towards Robust Image Stitching: An Adaptive Resistance Learning against Compatible Attacks
Zhiying Jiang, Xingyuan Li, Jinyuan Liu, Xin Fan, Risheng Liu
Adversarial Attack Adversarial Perturbation Adaptive Learning Attack Performance Image Stitching Adaptive Adversarial Training

February 5, 2024

Time-Distributed Backdoor Attacks on Federated Spiking Learning
Gorka Abad, Stjepan Picek, Aitor Urbieta
Backdoor Attack Attack Performance Attack Algorithm

February 1, 2024

Invariance-powered Trustworthy Defense via Remove Then Restore
Xiaowei Fu, Yuhang Zhou, Lina Ma, Lei Zhang
Adversarial Attack Adversarial Sample Active Removal Attack Performance Certified Defense

December 15, 2023

FlowMur: A Stealthy and Practical Audio Backdoor Attack with Limited Knowledge
Jiahe Lan, Jie Wang, Baochen Yan, Zheng Yan, Elisa Bertino
Backdoor Attack Attack Performance Limited Information Insertion Based

October 15, 2023

Explore the Effect of Data Selection on Poison Efficiency in Backdoor Attacks
Ziqiang Li, Pengfei Xia, Hong Sun, Yueqi Zeng, Wei Zhang, Bin Li
Backdoor Attack Mixed Effect Data Selection Attack Performance Sample Selection Poisoning Efficiency

September 30, 2023

Red Teaming Game: A Game-Theoretic Framework for Red Teaming Language Models
Chengdong Ma, Ziran Yang, Minquan Gao, Hai Ci, Jun Gao, Xuehai Pan, Yaodong Yang
Game Theoretic Red Teaming Attack Performance

August 29, 2023

Everything Perturbed All at Once: Enabling Differentiable Graph Attacks
Haoran Liu, Bokun Wang, Jianling Wang, Xiangjue Dong, Tianbao Yang, James Caverlee
Adversarial Attack Graph Model Attack Performance Gradient Based Meta Learning Graph Adversarial Attack

July 3, 2023

What Distributions are Robust to Indiscriminate Poisoning Attacks for Linear Learners?
Fnu Suya, Xiao Zhang, Yuan Tian, David Evans
Poisoning Attack Data Poisoning Attack Attack Performance Poisoning Efficiency Linear Learner

May 5, 2023

White-Box Multi-Objective Adversarial Attack on Dialogue Generation
Yufei Li, Zexin Li, Yingfan Gao, Cong Liu
Adversarial Sample Pre Trained Transformer Dialogue Generation White Box Attack Performance

April 4, 2023

Re-thinking Model Inversion Attacks Against Deep Neural Networks
Ngoc-Bao Nguyen, Keshigeyan Chandrasegaran, Milad Abdollahzadeh, Ngai-Man Cheung
Deep Neural Network State of the Art Model Inversion Attack Model Inversion Attack Performance

March 6, 2023

Learning to Backdoor Federated Learning
Henger Li, Chen Wu, Sencun Zhu, Zizhan Zheng
LeArning Abstract Federated Learning Backdoor Attack Backdoor Learning Attack Performance Attack Framework Aggregation Defense

February 21, 2023

MultiRobustBench: Benchmarking Robustness Against Multiple Attacks
Sihui Dai, Saeed Mahloujifar, Chong Xiang, Vikash Sehwag, Pin-Yu Chen, Prateek Mittal
Native Robustness Adversarial Example Attack Performance Multiple Attack Simultaneous Attack Average Case Robustness