SemOpenAlex |

SemOpenAlex

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4302305396> ?p ?o ?g. }

Showing items 1 to 57 of 57 with 100 items per page.

W4302305396 abstract "Early backdoor attacks against machine learning set off an arms race in attack and defence development. Defences have since appeared demonstrating some ability to detect backdoors in models or even remove them. These defences work by inspecting the training data, the model, or the integrity of the training procedure. In this work, we show that backdoors can be added during compilation, circumventing any safeguards in the data preparation and model training stages. As an illustration, the attacker can insert weight-based backdoors during the hardware compilation step that will not be detected by any training or data-preparation process. Next, we demonstrate that some backdoors, such as ImpNet, can only be reliably detected at the stage where they are inserted and removing them anywhere else presents a significant challenge. We conclude that machine-learning model security requires assurance of provenance along the entire technical pipeline, including the data, model architecture, compiler, and hardware specification." @default.
W4302305396 created "2022-10-06" @default.
W4302305396 creator A5046983053 @default.
W4302305396 creator A5048483915 @default.
W4302305396 creator A5069844959 @default.
W4302305396 creator A5075165491 @default.
W4302305396 creator A5083236827 @default.
W4302305396 date "2022-09-30" @default.
W4302305396 modified "2023-09-29" @default.
W4302305396 title "ImpNet: Imperceptible and blackbox-undetectable backdoors in compiled neural networks" @default.
W4302305396 doi "https://doi.org/10.48550/arxiv.2210.00108" @default.
W4302305396 hasPublicationYear "2022" @default.
W4302305396 type Work @default.
W4302305396 citedByCount "0" @default.
W4302305396 crossrefType "posted-content" @default.
W4302305396 hasAuthorship W4302305396A5046983053 @default.
W4302305396 hasAuthorship W4302305396A5048483915 @default.
W4302305396 hasAuthorship W4302305396A5069844959 @default.
W4302305396 hasAuthorship W4302305396A5075165491 @default.
W4302305396 hasAuthorship W4302305396A5083236827 @default.
W4302305396 hasBestOaLocation W43023053961 @default.
W4302305396 hasConcept C154945302 @default.
W4302305396 hasConcept C169590947 @default.
W4302305396 hasConcept C177264268 @default.
W4302305396 hasConcept C199360897 @default.
W4302305396 hasConcept C2777998813 @default.
W4302305396 hasConcept C2781045450 @default.
W4302305396 hasConcept C38652104 @default.
W4302305396 hasConcept C41008148 @default.
W4302305396 hasConcept C43521106 @default.
W4302305396 hasConcept C98045186 @default.
W4302305396 hasConceptScore W4302305396C154945302 @default.
W4302305396 hasConceptScore W4302305396C169590947 @default.
W4302305396 hasConceptScore W4302305396C177264268 @default.
W4302305396 hasConceptScore W4302305396C199360897 @default.
W4302305396 hasConceptScore W4302305396C2777998813 @default.
W4302305396 hasConceptScore W4302305396C2781045450 @default.
W4302305396 hasConceptScore W4302305396C38652104 @default.
W4302305396 hasConceptScore W4302305396C41008148 @default.
W4302305396 hasConceptScore W4302305396C43521106 @default.
W4302305396 hasConceptScore W4302305396C98045186 @default.
W4302305396 hasLocation W43023053961 @default.
W4302305396 hasOpenAccess W4302305396 @default.
W4302305396 hasPrimaryLocation W43023053961 @default.
W4302305396 hasRelatedWork W1497385637 @default.
W4302305396 hasRelatedWork W1556087793 @default.
W4302305396 hasRelatedWork W1608659702 @default.
W4302305396 hasRelatedWork W1977285665 @default.
W4302305396 hasRelatedWork W2007728761 @default.
W4302305396 hasRelatedWork W2044422526 @default.
W4302305396 hasRelatedWork W2192862863 @default.
W4302305396 hasRelatedWork W2369288331 @default.
W4302305396 hasRelatedWork W2519339279 @default.
W4302305396 hasRelatedWork W2740990710 @default.
W4302305396 isParatext "false" @default.
W4302305396 isRetracted "false" @default.
W4302305396 workType "article" @default.