Federated learning for generalization, robustness, fairness: A survey and benchmark
Federated learning has emerged as a promising paradigm for privacy-preserving
collaboration among different parties. Recently, with the popularity of federated learning, an …
collaboration among different parties. Recently, with the popularity of federated learning, an …
Defending against weight-poisoning backdoor attacks for parameter-efficient fine-tuning
Recently, various parameter-efficient fine-tuning (PEFT) strategies for application to
language models have been proposed and successfully implemented. However, this raises …
language models have been proposed and successfully implemented. However, this raises …
Defenses in adversarial machine learning: A survey
Adversarial phenomenon has been widely observed in machine learning (ML) systems,
especially in those using deep neural networks, describing that ML systems may produce …
especially in those using deep neural networks, describing that ML systems may produce …
Anti-Backdoor Model: A Novel Algorithm To Remove Backdoors in a Non-invasive Way
Recent research findings suggest that machine learning models are highly susceptible to
backdoor poisoning attacks. Backdoor poisoning attacks can be easily executed and …
backdoor poisoning attacks. Backdoor poisoning attacks can be easily executed and …
Ufid: A unified framework for input-level backdoor detection on diffusion models
Diffusion Models are vulnerable to backdoor attacks, where malicious attackers inject
backdoors by poisoning some parts of the training samples during the training stage. This …
backdoors by poisoning some parts of the training samples during the training stage. This …
Augmented Neural Fine-Tuning for Efficient Backdoor Purification
Recent studies have revealed the vulnerability of deep neural networks (DNNs) to various
backdoor attacks, where the behavior of DNNs can be compromised by utilizing certain …
backdoor attacks, where the behavior of DNNs can be compromised by utilizing certain …
Fisher information guided purification against backdoor attacks
Studies on backdoor attacks in recent years suggest that an adversary can compromise the
integrity of a deep neural network (DNN) by manipulating a small set of training samples …
integrity of a deep neural network (DNN) by manipulating a small set of training samples …
Universal detection of backdoor attacks via density-based clustering and centroids analysis
We propose a Universal Defence against backdoor attacks based on Clustering and
Centroids Analysis (CCA-UD). The goal of the defence is to reveal whether a Deep Neural …
Centroids Analysis (CCA-UD). The goal of the defence is to reveal whether a Deep Neural …
Backdoor attack on hash-based image retrieval via clean-label data poisoning
A backdoored deep hashing model is expected to behave normally on original query
images and return the images with the target label when a specific trigger pattern presents …
images and return the images with the target label when a specific trigger pattern presents …
Mendata: A Framework to Purify Manipulated Training Data
Untrusted data used to train a model might have been manipulated to endow the learned
model with hidden properties that the data contributor might later exploit. Data purification …
model with hidden properties that the data contributor might later exploit. Data purification …