Backdoor Purification

Backdoor purification aims to remove malicious backdoors implanted in deep neural networks (DNNs) during training, restoring the model's integrity without significantly impacting its performance on legitimate data. Current research focuses on techniques like fine-tuning model weights or activations, often guided by metrics such as Fisher Information to optimize the purification process and minimize clean data accuracy loss. These methods are being evaluated across various DNN architectures and attack types, with a growing emphasis on efficient and robust solutions that require minimal labeled data or even operate effectively with unlabeled data, thereby enhancing the security and trustworthiness of deployed DNN models.

Papers

October 13, 2024

Uncovering, Explaining, and Mitigating the Superficial Safety of Backdoor Defense
Rui Min, Zeyu Qin, Nevin L. Zhang, Li Shen, Minhao Cheng
Line by Line Explanation Backdoor Defense Diffusion Purification Backdoor Purification

September 1, 2024

Fisher Information guided Purification against Backdoor Attacks
Nazmul Karim, Abdullah Al Arafat, Adnan Siraj Rakin, Zhishan Guo, Nazanin Rahnavard
Backdoor Attack Backdoor Defense Fisher Information Backdoor Removal Backdoor Policy Backdoor Purification

July 14, 2024

Augmented Neural Fine-Tuning for Efficient Backdoor Purification
Nazmul Karim, Abdullah Al Arafat, Umar Khalid, Zhishan Guo, Nazanin Rahnavard
Fine Tuning Backdoor Attack Adversarial Search Backdoor Purification

May 18, 2024

BadActs: A Universal Backdoor Defense in the Activation Space
Biao Yi, Sishuo Chen, Yiming Li, Tong Li, Baolei Zhang, Zheli Liu
Backdoor Attack Activation Space Activation Maximization Backdoor Sample Universal Backdoor Backdoor Purification

October 3, 2023

Towards Stable Backdoor Purification through Feature Shift Tuning
Rui Min, Zeyu Qin, Li Shen, Minhao Cheng
Backdoor Defense Backdoor Purification

June 30, 2023

Efficient Backdoor Removal Through Natural Gradient Fine-tuning
Nazmul Karim, Abdullah Al Arafat, Umar Khalid, Zhishan Guo, Naznin Rahnavard
Backdoor Defense Deep Neural Network Parameter Backdoor Removal Loss Surface Backdoor Policy Backdoor Purification

November 22, 2022

Backdoor Cleansing with Unlabeled Data
Lu Pang, Tao Sun, Haibin Ling, Chao Chen
Unlabeled Data Defense Method Backdoor Behavior Backdoor Purification