Robust Defense

Robust defense in machine learning focuses on developing methods to protect models against various adversarial attacks, including backdoors, jailbreaks, data poisoning, and evasion attacks targeting different model architectures like LLMs and CNNs. Current research emphasizes developing defenses that are both effective against diverse attack strategies and efficient, addressing challenges like resource constraints and privacy concerns through techniques such as randomized smoothing, gradient masking, and reinforcement learning-based approaches. These advancements are crucial for ensuring the reliability and trustworthiness of AI systems across diverse applications, from autonomous driving to medical diagnosis.

Papers

December 13, 2024

December 10, 2024

Tazza: Shuffling Neural Network Parameters for Secure and Private Federated Learning
Kichang Lee, Jaeho Jin, JaeYeon Park, JeongGil Ko
Model Training Inter Part Equivariance Secure Approach Robust Defense Model Poisoning Attack Neural Network Parameter

December 9, 2024

Enhancing Adversarial Resistance in LLMs with Recursion
Bryan Li, Sounak Bagchi, Zizhan Wang
Large Language Model Text Simplification Adversarial Prompt Recursive Algorithm Robust Defense Malicious Traffic

November 21, 2024

A Survey on Adversarial Robustness of LiDAR-based Machine Learning Perception in Autonomous Vehicles
Junae Kim, Amardeep Kaur
Machine Learning Timely Survey Adversarial Attack Autonomous Driving Autonomous Vehicle Adversarial Robustness Perception Aware Adversarial Text Robust Defense

November 18, 2024

Exploring the Adversarial Vulnerabilities of Vision-Language-Action Models in Robotics
Taowen Wang, Dongfang Liu, James Chenhao Liang, Wenhao Yang, Qifan Wang, Cheng Han, Jiebo Luo, Ruixiang Tang
Adversarial Attack Full Model Robotics Domain Adversarial Vulnerability Robot Action Robust Defense Vision Language Action Based Attack

November 12, 2024

Rapid Response: Mitigating LLM Jailbreaks with a Few Examples
Alwin Peng, Julian Michael, Henry Sleight, Ethan Perez, Mrinank Sharma
Adversarial Robustness Jailbreak Attack Robust Defense

October 23, 2024

Breaking the Illusion: Real-world Challenges for Adversarial Patches in Object Detection
Jakob Shack, Katarina Petrovic, Olga Saukh
Adversarial Attack Real World Adversarial Patch YOLO Object Optical Illusion Robust Defense Patch Correctness

October 15, 2024

AdvBDGen: Adversarially Fortified Prompt-Specific Fuzzy Backdoor Generator Against LLM Alignment
Pankayaraj Pathmanathan, Udari Madhushani Sehwag, Michael-Andrei Panaitescu-Liess, Furong Huang
Backdoor Attack Backdoor Trigger Synchronous Generator LLM Alignment Prompt Attack Robust Defense Adversarial Backdoor

October 11, 2024

PoisonBench: Assessing Large Language Model Vulnerability to Data Poisoning
Tingchen Fu, Mrinank Sharma, Philip Torr, Shay B. Cohen, David Krueger, Fazl Barez
Language Model Raw Data Poisoning Attack Data Poisoning Attack Data Poisoning Robust Defense Malicious Model

October 8, 2024

DiffusionGuard: A Robust Defense Against Malicious Diffusion-based Image Editing
June Suk Choi, Kyungmin Lee, Jongheon Jeong, Saining Xie, Jinwoo Shin, Kimin Lee
Image Editing Adversarial Noise Robust Defense Diffusion Based Image Editing Imperceptible Adversarial

October 5, 2024

Harnessing Task Overload for Scalable Jailbreak Attacks on Large Language Models
Yiting Dong, Guobin Shen, Dongcheng Zhao, Xiang He, Yi Zeng
Jailbreak Attack Robust Defense

September 23, 2024

SDBA: A Stealthy and Long-Lasting Durable Backdoor Attack in Federated Learning
Minyeong Choe, Cheolhee Park, Changho Seo, Hyunil Kim
Backdoor Attack Robust Defense Digital STEALTH Metric

September 21, 2024

PathSeeker: Exploring LLM Security Vulnerabilities with a Reinforcement Learning-Based Jailbreak Approach
Zhihao Lin, Wei Ma, Mingyi Zhou, Yanjie Zhao, Haoyu Wang, Yang Liu, Jun Wang, Li Li
Jailbreak Attack Positive Reinforcement LLM Safety Robust Defense Maze Environment Jailbreak Evaluation

September 12, 2024

High-Frequency Anti-DreamBooth: Robust Defense against Personalized Image Synthesis
Takuto Onikubo, Yusuke Matsui
Image Synthesis Adversarial Noise Adversarial Image Robust Defense Adversarial Purification

August 28, 2024

FRACTURED-SORRY-Bench: Framework for Revealing Attacks in Conversational Turns Undermining Refusal Efficacy and Defenses over SORRY-Bench (Automated Multi-shot Jailbreaks)
Aman Priyanshu, Supriti Vijay
New Framework New Attack Adversarial Prompt Robust Defense Step Attack Refusal Training CodeRAG Bench

August 20, 2024

Privacy-preserving Universal Adversarial Defense for Black-box Models
Qiao Li, Cong Wu, Jing Chen, Zijun Zhang, Kun He, Ruiying Du, Xinxin Wang, Qingchuang Zhao, Yang Liu
Adversarial Attack Black Box Model Robust Defense Universal Adversarial Black Box Defense

August 15, 2024

Random Gradient Masking as a Defensive Measure to Deep Leakage in Federated Learning
Joon Kim, Sejin Park
Natural Gradient Federated Prompt Cooperation Defense Method Robust Defense Deep Leakage Gradient Masking

July 27, 2024

EaTVul: ChatGPT-based Evasion Attack Against Software Vulnerability Detection
Shigang Liu, Di Cao, Junae Kim, Tamas Abraham, Paul Montague, Seyit Camtepe, Jun Zhang, Yang Xiang
Adversarial Attack Adversarial Example Robust Defense Evasion Attack Semantics Freshness

June 28, 2024

Optimizing Cyber Defense in Dynamic Active Directories through Reinforcement Learning
Diksha Goel, Kristen Moore, Mingyu Guo, Derui Wang, Minjune Kim, Seyit Camtepe
Reinforcement Learning Robust Defense Autonomous Cyber Cyber Resilience

Robust Defense

Papers

No Free Lunch for Defending Against Prefilling Attack by In-Context Learning

BiCert: A Bilinear Mixed Integer Programming Formulation for Precise Certified Bounds Against Data Poisoning Attacks

Tazza: Shuffling Neural Network Parameters for Secure and Private Federated Learning

Enhancing Adversarial Resistance in LLMs with Recursion

A Survey on Adversarial Robustness of LiDAR-based Machine Learning Perception in Autonomous Vehicles

Exploring the Adversarial Vulnerabilities of Vision-Language-Action Models in Robotics

Rapid Response: Mitigating LLM Jailbreaks with a Few Examples

Breaking the Illusion: Real-world Challenges for Adversarial Patches in Object Detection

AdvBDGen: Adversarially Fortified Prompt-Specific Fuzzy Backdoor Generator Against LLM Alignment

PoisonBench: Assessing Large Language Model Vulnerability to Data Poisoning

DiffusionGuard: A Robust Defense Against Malicious Diffusion-based Image Editing

Harnessing Task Overload for Scalable Jailbreak Attacks on Large Language Models

SDBA: A Stealthy and Long-Lasting Durable Backdoor Attack in Federated Learning

PathSeeker: Exploring LLM Security Vulnerabilities with a Reinforcement Learning-Based Jailbreak Approach

High-Frequency Anti-DreamBooth: Robust Defense against Personalized Image Synthesis

FRACTURED-SORRY-Bench: Framework for Revealing Attacks in Conversational Turns Undermining Refusal Efficacy and Defenses over SORRY-Bench (Automated Multi-shot Jailbreaks)

Privacy-preserving Universal Adversarial Defense for Black-box Models

Random Gradient Masking as a Defensive Measure to Deep Leakage in Federated Learning

EaTVul: ChatGPT-based Evasion Attack Against Software Vulnerability Detection

Optimizing Cyber Defense in Dynamic Active Directories through Reinforcement Learning