Abstract
The outstanding performance of modern deep learning systems resulted in their widespread adoption in various application domains, which include security-critical applications. However, recent works have shown that these systems are vulnerable to backdoor attacks. This paper proposed a novel approach to perform latent backdoor attacks. Instead of designing the exogenetic trigger backdoor on the pixel space, which has been done by existing works, this paper explored the connection between latent space manipulation and endogenic backdoor trigger generation by utilising deep generative models to generate the backdoor trigger in the latent space. The effectiveness of the proposed attack is demonstrated on several neural network architectures trained on three well-known datasets, which are MNIST, CIFAR-10 and GTSRB. This study is undertaken to provide a new viewpoint for better understanding the endogenic vulnerability of the deep neural networks due to the lack of training data and test data, instead of creating new exogenetic misclassification behaviours for existing backdoor attacks.
Original language | English |
---|---|
Title of host publication | 2022 International Joint Conference on Neural Networks, IJCNN 2022 - Proceedings |
Editors | Marco Gori, Alessandro Sperduti |
Place of Publication | Piscataway NJ USA |
Publisher | IEEE, Institute of Electrical and Electronics Engineers |
Number of pages | 10 |
ISBN (Electronic) | 9781728186719 |
ISBN (Print) | 9781665495264 |
DOIs | |
Publication status | Published - 2022 |
Event | IEEE International Joint Conference on Neural Networks 2022 - Padua, Italy Duration: 18 Jul 2022 → 23 Jul 2022 https://ieeexplore.ieee.org/xpl/conhome/9891857/proceeding (Proceedings) |
Publication series
Name | Proceedings of the International Joint Conference on Neural Networks |
---|---|
Publisher | IEEE, Institute of Electrical and Electronics Engineers |
Volume | 2022-July |
ISSN (Print) | 2161-4393 |
ISSN (Electronic) | 2161-4407 |
Conference
Conference | IEEE International Joint Conference on Neural Networks 2022 |
---|---|
Abbreviated title | IJCNN 2022 |
Country/Territory | Italy |
City | Padua |
Period | 18/07/22 → 23/07/22 |
Internet address |
Keywords
- Backdoor attack
- deep neural networks
- disentangled learning
- generation
- latent representation