Detecting All-to-One Backdoor Attacks in Black-Box DNNs via Differential Robustness to Noise

Detecting All-to-One Backdoor Attacks in Black-Box DNNs via Differential Robustness to Noise

The all-to-one (A2O) backdoor attack is one of the major adversarial threats against neural networks. Most existing A2O backdoor defenses operate in a white-box context, necessitating access to the backdoored model’s architecture, hidden layer outputs, or internal parameters. The necessit...

Full description

Bibliographic Details
Main Authors: Hao Fu, Prashanth Krishnamurthy, Siddharth Garg, Farshad Khorrami
Format: Article
Language:English
Published: IEEE 2025-01-01
Series:IEEE Access
Subjects:
Neural network backdoors
novelty detection
output resiliency
Online Access:https://ieeexplore.ieee.org/document/10891759/

Internet

https://ieeexplore.ieee.org/document/10891759/

Similar Items