Defense Framework

Defense frameworks are being developed to protect machine learning models, particularly large language models and federated learning systems, from various adversarial attacks like data poisoning, model backdooring, and adversarial examples. Current research focuses on robust methods such as data curation, model merging, and homophily augmentation to improve model resilience, often employing techniques like mixture-of-experts models and outlier detection. These advancements are crucial for ensuring the reliability and trustworthiness of AI systems across diverse applications, ranging from natural language processing to autonomous driving and resource allocation, mitigating potential harms from malicious manipulations.

Papers

October 28, 2024

Hacking Back the AI-Hacker: Prompt Injection as a Defense Against LLM-driven Cyberattacks
Dario Pasquini, Evgenios M. Kornaropoulos, Giuseppe Ateniese
Adversarial Input Prompt Injection LLM Attack Defense Framework

October 3, 2024

Buckle Up: Robustifying LLMs at Every Customization Stage via Data Curation
Xiaoqun Liu, Jiacheng Liang, Luoxi Tang, Chenyu You, Muchao Ye, Zhaohan Xi
Large Language Model LLM Inference Data Curation Prompt Customization Real Time Customization Defense Framework

July 13, 2024

Partner in Crime: Boosting Targeted Poisoning Attacks against Federated Learning
Shihua Sun, Shridatt Sugrim, Angelos Stavrou, Haining Wang
Poisoning Attack Data Poisoning Attack Crime Story Channel Partner Level Defense Framework

July 9, 2024

Threats and Defenses in Federated Learning Life Cycle: A Comprehensive Survey and Challenges
Yanli Li, Zhongliang Guo, Nan Yang, Huaming Chen, Dong Yuan, Weiping Ding
Technical Challenge Comprehensive Survey Threat Word Collaborative Machine Learning Defense Strategy Defense Framework

June 6, 2024

Exploiting Global Graph Homophily for Generalized Defense in Graph Neural Networks
Duanyu Li, Huijun Wu, Min Xie, Xugang Wu, Zhenwei Wu, Wenzhe Zhang
Graph Neural Network Adversarial Attack Large Scale Graph Homophilous Graph Adversarial Defense Local Graph Defense Framework Graph Purification

April 2, 2024

Two Heads are Better than One: Nested PoE for Robust Defense Against Multi-Backdoors
Victoria Graf, Qin Liu, Muhao Chen
Backdoor Attack Human Head Backdoor Trigger Robust Defense Nested Entity Defense Framework

February 29, 2024

Here's a Free Lunch: Sanitizing Backdoored Models with Model Merge
Ansh Arora, Xuanli He, Maximilian Mozes, Srinibas Swain, Mark Dras, Qiongkai Xu
Pre Trained Language Model Backdoor Attack Inference Attack Free Lunch Merged Model Defense Framework

October 19, 2023

Learn from the Past: A Proxy Guided Adversarial Defense Framework with Self Distillation Regularization
Yaohua Liu, Jiaxin Gao, Xianghao Jiao, Zhu Liu, Xin Fan, Risheng Liu
Adversarial Training Model Robustness Catastrophic Overfitting Proxy Model Defense Framework

November 15, 2022

Resisting Graph Adversarial Attack via Cooperative Homophilous Augmentation
Zhihao Zhu, Chenwang Wu, Min Zhou, Hao Liao, Defu Lian, Enhong Chen
Adversarial Attack Random Node State of the Art Defense Defense Framework Graph Adversarial Attack Graph Injection Attack Collaborative Augmentation

October 4, 2022

Robust Fair Clustering: A Novel Fairness Attack and Defense Framework
Anshuman Chhabra, Peizhao Li, Prasant Mohapatra, Hongfu Liu
Fair Clustering Defense Framework

April 27, 2022

Defending Person Detection Against Adversarial Patch Attack by using Universal Defensive Frame
Youngjoon Yu, Hong Joo Lee, Hakmin Lee, Yong Man Ro
Adversarial Patch Attack Person Detection Person Detector Defense Framework

February 21, 2022

Backdoor Defense in Federated Learning Using Differential Testing and Outlier Detection
Yein Kim, Huili Chen, Farinaz Koushanfar
Backdoor Attack Outlier Detection Backdoor Defense Provable Defense Defense Framework Differential Testing

Defense Framework

Papers

Hacking Back the AI-Hacker: Prompt Injection as a Defense Against LLM-driven Cyberattacks

Buckle Up: Robustifying LLMs at Every Customization Stage via Data Curation

Partner in Crime: Boosting Targeted Poisoning Attacks against Federated Learning

Threats and Defenses in Federated Learning Life Cycle: A Comprehensive Survey and Challenges

Exploiting Global Graph Homophily for Generalized Defense in Graph Neural Networks

Two Heads are Better than One: Nested PoE for Robust Defense Against Multi-Backdoors

Here's a Free Lunch: Sanitizing Backdoored Models with Model Merge

Learn from the Past: A Proxy Guided Adversarial Defense Framework with Self Distillation Regularization

Resisting Graph Adversarial Attack via Cooperative Homophilous Augmentation

Robust Fair Clustering: A Novel Fairness Attack and Defense Framework

Defending Person Detection Against Adversarial Patch Attack by using Universal Defensive Frame

Backdoor Defense in Federated Learning Using Differential Testing and Outlier Detection