Federated learning for generalization, robustness, fairness: A survey and benchmark
Federated learning has emerged as a promising paradigm for privacy-preserving
collaboration among different parties. Recently, with the popularity of federated learning, an …
collaboration among different parties. Recently, with the popularity of federated learning, an …
Defending against weight-poisoning backdoor attacks for parameter-efficient fine-tuning
Recently, various parameter-efficient fine-tuning (PEFT) strategies for application to
language models have been proposed and successfully implemented. However, this raises …
language models have been proposed and successfully implemented. However, this raises …
Defenses in adversarial machine learning: A survey
Adversarial phenomenon has been widely observed in machine learning (ML) systems,
especially in those using deep neural networks, describing that ML systems may produce …
especially in those using deep neural networks, describing that ML systems may produce …
Ufid: A unified framework for input-level backdoor detection on diffusion models
Diffusion Models are vulnerable to backdoor attacks, where malicious attackers inject
backdoors by poisoning some parts of the training samples during the training stage. This …
backdoors by poisoning some parts of the training samples during the training stage. This …
Universal detection of backdoor attacks via density-based clustering and centroids analysis
We propose a Universal Defence against backdoor attacks based on Clustering and
Centroids Analysis (CCA-UD). The goal of the defence is to reveal whether a Deep Neural …
Centroids Analysis (CCA-UD). The goal of the defence is to reveal whether a Deep Neural …
Backdoor attack on hash-based image retrieval via clean-label data poisoning
A backdoored deep hashing model is expected to behave normally on original query
images and return the images with the target label when a specific trigger pattern presents …
images and return the images with the target label when a specific trigger pattern presents …
Mendata: A Framework to Purify Manipulated Training Data
Untrusted data used to train a model might have been manipulated to endow the learned
model with hidden properties that the data contributor might later exploit. Data purification …
model with hidden properties that the data contributor might later exploit. Data purification …
Flatness-aware Sequential Learning Generates Resilient Backdoors
Recently, backdoor attacks have become an emerging threat to the security of machine
learning models. From the adversary's perspective, the implanted backdoors should be …
learning models. From the adversary's perspective, the implanted backdoors should be …
Mitigating Backdoor Attack by Injecting Proactive Defensive Backdoor
Data-poisoning backdoor attacks are serious security threats to machine learning models,
where an adversary can manipulate the training dataset to inject backdoors into models. In …
where an adversary can manipulate the training dataset to inject backdoors into models. In …
Augmented Neural Fine-Tuning for Efficient Backdoor Purification
Recent studies have revealed the vulnerability of deep neural networks (DNNs) to various
backdoor attacks, where the behavior of DNNs can be compromised by utilizing certain …
backdoor attacks, where the behavior of DNNs can be compromised by utilizing certain …