Proceedings of the ACM Asia Conference on Computer and Communications Security 2023
DOI: 10.1145/3579856.3582822
|View full text |Cite
|
Sign up to set email alerts
|

DHBE: Data-free Holistic Backdoor Erasing in Deep Neural Networks via Restricted Adversarial Distillation

Abstract: Backdoor attacks have emerged as an urgent threat to Deep Neural Networks (DNNs), where victim DNNs are furtively implanted with malicious neurons that could be triggered by the adversary. To defend against backdoor attacks, many works establish a staged pipeline to remove backdoors from victim DNNs: inspecting, locating, and erasing. However, in a scenario where a few clean data can be accessible, such pipeline is fragile and cannot erase backdoors completely without sacrificing model accuracy. To address thi… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1

Citation Types

0
3
0

Year Published

2023
2023
2024
2024

Publication Types

Select...
2
2
1

Relationship

0
5

Authors

Journals

citations
Cited by 6 publications
(3 citation statements)
references
References 42 publications
0
3
0
Order By: Relevance
“…Access to synthesized data. Finally, 2 defense papers (see Table 4 and Table 5) applied to FRS models consider a defender who cannot assume any access to a clean dataset with respect to the task performed by a suspicious DNN [129], [130].…”
Section: Test-time Filteringmentioning
confidence: 99%
See 2 more Smart Citations
“…Access to synthesized data. Finally, 2 defense papers (see Table 4 and Table 5) applied to FRS models consider a defender who cannot assume any access to a clean dataset with respect to the task performed by a suspicious DNN [129], [130].…”
Section: Test-time Filteringmentioning
confidence: 99%
“…data poisoning). Instead, these defenses eschew data gathering and instead synthesize datapoints directly from the scrutinized DNN via model inversion [129] or distillation [130].…”
Section: Test-time Filteringmentioning
confidence: 99%
See 1 more Smart Citation