Backdoor Effect

Backdoor attacks exploit vulnerabilities in machine learning models, surreptitiously embedding malicious behavior triggered by specific inputs. Current research focuses on developing robust defenses against these attacks, particularly within diffusion models, contrastive learning frameworks, and vision transformers, employing techniques like unlearning, neural distribution tightening, and structural pruning to mitigate the backdoor effect. This is a critical area of study due to the increasing reliance on machine learning in security-sensitive applications, with effective defenses crucial for maintaining model integrity and trustworthiness.

Papers

October 17, 2024

Mitigating the Backdoor Effect for Multi-Task Model Merging via Safety-Aware Subspace
Jinluan Yang, Anke Tang, Didi Zhu, Zhengyu Chen, Li Shen, Fei Wu
Model Merging Multi Task Model Backdoor Detection Online Merging Backdoor Effect Channel Masking

September 29, 2024

Efficient Backdoor Defense in Multimodal Contrastive Learning: A Token-Level Unlearning Method for Mitigating Threats
Kuanrong Liu, Siyuan Liang, Jiawei Liang, Pengwen Dai, Xiaochun Cao
Contrastive Learning Backdoor Learning Backdoor Effect Input Level Backdoor Detection Backdoor Policy

July 31, 2024

Diff-Cleanse: Identifying and Mitigating Backdoor Attacks in Diffusion Models
Jiang Hao, Xiao Jin, Hu Xiaoguang, Chen Tianyou
Diffusion Model Backdoor Attack Backdoor Defense Backdoor Detection Mitigating Backdoor Backdoor Effect

July 16, 2024

UNIT: Backdoor Mitigation via Automated Neural Distribution Tightening
Siyuan Cheng, Guangyu Shen, Kaiyuan Zhang, Guanhong Tao, Shengwei An, Hanxi Guo, Shiqing Ma, Xiangyu Zhang
Deep Neural Network Backdoor Attack Distribution Alignment Defense Method Basic UniT Backdoor Effect Activation Compression

May 30, 2024

Unveiling and Mitigating Backdoor Vulnerabilities based on Unlearning Weight Changes and Backdoor Activeness
Weilin Lin, Li Liu, Shaokui Wei, Jianze Li, Hui Xiong
Backdoor Defense Weight Freezing Neural Backdoor Backdoor Effect Resilient Backdoor

May 17, 2024

Not All Prompts Are Secure: A Switchable Backdoor Attack Against Pre-trained Vision Transformers
Sheng Yang, Jiawang Bai, Kuofeng Gao, Yong Yang, Yiming Li, Shu-tao Xia
Vision Transformer Backdoor Attack Complex Prompt Vision Task Pre Trained Vision Transformer Backdoor Effect

April 26, 2024

Beyond Traditional Threats: A Persistent Backdoor Attack on Federated Learning
Tao Liu, Yuhang Zhang, Zhu Feng, Zhiqin Yang, Chen Xu, Dapeng Man, Wu Yang
Backdoor Attack Attack Success Rate Backdoor Effect

January 20, 2024

Navigating the Thin Line: Examining User Behavior in Search to Detect Engagement and Backfire Effects
F. M. Cau, N. Tintarev
Search Query Stance Detection User Behavior Human Opinion Active CR Engagement Search Behavior Confirmation Bias Backdoor Effect Collective Human Opinion

November 27, 2023

Elijah: Eliminating Backdoors Injected in Diffusion Models via Distribution Shift
Shengwei An, Sheng-Yen Chou, Kaiyuan Zhang, Qiuling Xu, Guanhong Tao, Guangyu Shen, Siyuan Cheng, Shiqing Ma, Pin-Yu Chen, Tsung-Yi Ho, Xiangyu Zhang
Diffusion Model Backdoor Attack Distribution Shift Backdoor Detection Backdoor Effect

October 9, 2023

High Dimensional Causal Inference with Variational Backdoor Adjustment
Daniel Israel, Aditya Grover, Guy Van den Broeck
High Dimensional Causal Inference Variational Inference Backdoor Effect High Dimensional Causal

April 24, 2023

Enhancing Fine-Tuning Based Backdoor Defense with Sharpness-Aware Minimization
Mingli Zhu, Shaokui Wei, Li Shen, Yanbo Fan, Baoyuan Wu
Backdoor Attack Sharpness Aware Minimization Backdoor Defense Neural Backdoor Backdoor Effect

December 9, 2022

Selective Amnesia: On Efficient, High-Fidelity and Blind Suppression of Backdoor Effects in Trojaned Machine Learning Models
Rui Zhu, Di Tang, Siyuan Tang, XiaoFeng Wang, Haixu Tang
Continual LEArning Catastrophic Forgetting Anti Forgetting High Fidelity DNN Model Trojan Detection Copy Suppression Backdoor Effect

July 25, 2022

Technical Report: Assisting Backdoor Federated Learning with Whole Population Knowledge Alignment
Tian Liu, Xueyang Hu, Tao Shu
Federated Learning Technical Report Backdoor Defense Knowledge Alignment Backdoor Effect Shot Backdoor

Backdoor Effect

Papers

Mitigating the Backdoor Effect for Multi-Task Model Merging via Safety-Aware Subspace

Efficient Backdoor Defense in Multimodal Contrastive Learning: A Token-Level Unlearning Method for Mitigating Threats

Diff-Cleanse: Identifying and Mitigating Backdoor Attacks in Diffusion Models

UNIT: Backdoor Mitigation via Automated Neural Distribution Tightening

Unveiling and Mitigating Backdoor Vulnerabilities based on Unlearning Weight Changes and Backdoor Activeness

Not All Prompts Are Secure: A Switchable Backdoor Attack Against Pre-trained Vision Transformers

Beyond Traditional Threats: A Persistent Backdoor Attack on Federated Learning

Navigating the Thin Line: Examining User Behavior in Search to Detect Engagement and Backfire Effects

Elijah: Eliminating Backdoors Injected in Diffusion Models via Distribution Shift

High Dimensional Causal Inference with Variational Backdoor Adjustment

Enhancing Fine-Tuning Based Backdoor Defense with Sharpness-Aware Minimization

Selective Amnesia: On Efficient, High-Fidelity and Blind Suppression of Backdoor Effects in Trojaned Machine Learning Models

Technical Report: Assisting Backdoor Federated Learning with Whole Population Knowledge Alignment