Universal Litmus Patterns: Revealing Backdoor Attacks in CNNs
| dc.contributor.author | Kolouri, Soheil | |
| dc.contributor.author | Saha, Aniruddha | |
| dc.contributor.author | Pirsiavash, Hamed | |
| dc.contributor.author | Hoffmann, Heiko | |
| dc.date.accessioned | 2020-09-22T16:50:58Z | |
| dc.date.available | 2020-09-22T16:50:58Z | |
| dc.description | 2020 IEEE/CVF Conference on Computer Vision and Pattern Recognition (CVPR), 13-19 June 2020, Seattle, WA, USA. | |
| dc.description.abstract | The unprecedented success of deep neural networks in many applications has made these networks a prime target for adversarial exploitation. In this paper, we introduce a benchmark technique for detecting backdoor attacks (aka Trojan attacks) on deep convolutional neural networks (CNNs). We introduce the concept of Universal Litmus Patterns (ULPs), which enable one to reveal backdoor attacks by feeding these universal patterns to the network and analyzing the output (i.e., classifying the network as ‘clean’ or ‘corrupted’). This detection is fast because it requires only a few forward passes through a CNN. We demonstrate the effectiveness of ULPs for detecting backdoor attacks on thousands of networks with different architectures trained on four benchmark datasets, namely the German Traffic Sign Recognition Benchmark (GTSRB), MNIST, CIFAR10, and Tiny-ImageNet. | en_US |
| dc.description.sponsorship | This work was funded in part under the following financial assistance awards: 60NANB18D279 from U.S. Department of Commerce, National Institute of Standards and Technology, funding from SAP SE, and also NSF grant 1845216. | en_US |
| dc.description.uri | https://ieeexplore.ieee.org/document/9157782 | en_US |
| dc.format.extent | 10 pages | en_US |
| dc.genre | conference papers and proceedings postprints | en_US |
| dc.identifier | doi:10.1109/CVPR42600.2020.00038 | |
| dc.identifier.citation | S. Kolouri, A. Saha, H. Pirsiavash and H. Hoffmann, "Universal Litmus Patterns: Revealing Backdoor Attacks in CNNs," 2020 IEEE/CVF Conference on Computer Vision and Pattern Recognition (CVPR), Seattle, WA, USA, 2020, pp. 298-307, doi: 10.1109/CVPR42600.2020.00038. | en_US |
| dc.identifier.uri | http://hdl.handle.net/11603/19707 | |
| dc.language.iso | en_US | en_US |
| dc.publisher | IEEE | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.relation.ispartof | UMBC Student Collection | |
| dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
| dc.rights | © 2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works | |
| dc.title | Universal Litmus Patterns: Revealing Backdoor Attacks in CNNs | en_US |
| dc.type | Text | en_US |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- Kolouri_Universal_Litmus_Patterns_Revealing_Backdoor_Attacks_in_CNNs_CVPR_2020_paper.pdf
- Size:
- 1.42 MB
- Format:
- Adobe Portable Document Format
- Description:
License bundle
1 - 1 of 1
Loading...
- Name:
- license.txt
- Size:
- 2.56 KB
- Format:
- Item-specific license agreed upon to submission
- Description: