Backdoor Defense

Backdoor attacks subtly inject malicious functionality into machine learning models during training, causing them to misbehave when presented with specific "triggers." Current research focuses on developing robust defenses against these attacks across various model architectures, including graph neural networks, large language models, diffusion models, and multimodal contrastive learning models like CLIP, employing techniques such as trigger inversion, model unlearning, and data augmentation. Effective backdoor defense is crucial for ensuring the reliability and security of machine learning systems in diverse applications, ranging from autonomous driving to cybersecurity, and is a significant area of ongoing investigation within the broader field of adversarial machine learning.

Papers

July 4, 2024

Defense Against Syntactic Textual Backdoor Attacks with Token Substitution
Xinglin Li, Xianwen He, Yao Li, Minhao Cheng
Backdoor Defense Textual Backdoor Attack

June 23, 2024

Blind Baselines Beat Membership Inference Attacks for Foundation Models
Debeshee Das, Jie Zhang, Florian Tramèr
Foundation Model Membership Inference Attack Backdoor Defense Membership Inference

June 18, 2024

Attack and Defense of Deep Learning Models in the Field of Web Attack Detection
Lijia Shi, Shihao Dong
Deep Learning Model Backdoor Attack Backdoor Defense Limited Field Attack Success Rate Unknown Attack Web Attack

June 6, 2024

PromptFix: Few-shot Backdoor Removal via Adversarial Prompt Tuning
Tianrong Zhang, Zhaohan Xi, Ting Wang, Prasenjit Mitra, Jinghui Chen
Language Model Natural Language Processing Natural Language Processing Model Backdoor Defense Shot Backdoor

June 5, 2024

Mutual Information Guided Backdoor Mitigation for Pre-trained Encoders
Tingxu Han, Weisong Sun, Ziqi Ding, Chunrong Fang, Hanwei Qian, Jiaxun Li, Zhenyu Chen, Xiangyu Zhang
Pre Trained Backdoor Attack Backdoor Defense

May 30, 2024

May 28, 2024

Magnitude-based Neuron Pruning for Backdoor Defens
Nan Li, Haoyu Jiang, Ping Yi
Backdoor Defense Neuron Pruning Neural Backdoor

May 25, 2024

May 23, 2024

Towards Imperceptible Backdoor Attack in Self-supervised Learning
Hanrong Zhang, Zhenting Wang, Tingxu Han, Mingyu Jin, Chenlu Zhan, Mengnan Du, Hongwei Wang, Shiqing Ma
Self Supervised Learning Backdoor Attack Backdoor Defense Effective Backdoor Attack Imperceptible Trigger

May 21, 2024

EmInspector: Combating Backdoor Attacks in Federated Self-Supervised Learning Through Embedding Inspection
Yuwen Qian, Shuchi Wu, Kang Wei, Ming Ding, Di Xiao, Tao Xiang, Chuan Ma, Song Guo
Self Supervised Learning Backdoor Attack Backdoor Defense Backdoor Trigger Visual Inspection Federated Self Supervised Learning DEfense Mechanism

May 19, 2024

An Invisible Backdoor Attack Based On Semantic Feature
Yangming Chen
Deep Neural Network Backdoor Attack Backdoor Defense Semantic Feature Attack Success Rate Invisible Backdoor Attack

May 9, 2024

Poisoning-based Backdoor Attacks for Arbitrary Target Label with Positive Triggers
Binxiao Huang, Jason Chun Lok, Chang Liu, Ngai Wong
Backdoor Attack Backdoor Defense Adversarial Method Backdoor Poisoning Attack Trigger Design Target Class Trigger Warning

April 19, 2024

LSP Framework: A Compensatory Model for Defeating Trigger Reverse Engineering via Label Smoothing Poisoning
Beichen Li, Yuanfang Guo, Heqi Peng, Yangxi Li, Yunhong Wang
Backdoor Attack Backdoor Defense Backdoor Trigger Label Poisoning Attack Trigger Inversion Compensatory Strategy

April 17, 2024

Detector Collapse: Physical-World Backdooring Object Detection to Catastrophic Overload or Blindness in Autonomous Driving
Hangtao Zhang, Shengshan Hu, Yichen Wang, Leo Yu Zhang, Ziqi Zhou, Xianlong Wang, Yanjun Zhang, Chao Chen
Backdoor Attack Backdoor Defense Shi Detector Blind User Effective Backdoor

March 24, 2024

Unlearning Backdoor Threats: Enhancing Backdoor Defense in Multimodal Contrastive Learning via Local Token Unlearning
Siyuan Liang, Kuanrong Liu, Jiajun Gong, Jiawei Liang, Yuan Xun, Ee-Chien Chang, Xiaochun Cao
Contrastive Learning Backdoor Attack Token Level Backdoor Defense Backdoor Learning Training Pair

March 12, 2024

Backdoor Attack with Mode Mixture Latent Modification
Hongwei Zhang, Xiaoyin Xu, Dongsheng An, Xianfeng Gu, Min Zhang
Deep Neural Network Backdoor Attack Backdoor Defense

March 5, 2024

A general approach to enhance the survivability of backdoor attacks by decision path coupling
Yufei Zhao, Dingji Wang, Bihuan Chen, Ziqian Chen, Xin Peng
Backdoor Attack General Framework Backdoor Defense Decision Path Enhancement Attack

December 31, 2023

Is It Possible to Backdoor Face Forgery Detection with Natural Triggers?
Xiaoxuan Han, Songlin Yang, Wei Wang, Ziwen He, Jing Dong
Backdoor Attack Backdoor Defense Backdoor Trigger Face Forgery Detection Natural Trigger