BriefGPT.xyz
Apr, 2020
深度神经网络的活体木马攻击
Live Trojan Attacks on Deep Neural Networks
HTML
PDF
Robby Costales, Chengzhi Mao, Raphael Norwitz, Bryan Kim, Junfeng Yang
TL;DR
通过在内存中修补模型参数,攻击者可以实现对深度学习系统的实时攻击,并演示了如何在Windows和Linux中修补TensorFlow模型参数以及有效地操作被扰动的输入数据的熵以绕过STRIP的新技术
Abstract
Like all software systems, the execution of
deep learning models
is dictated in part by logic represented as data in memory. For decades, attackers have exploited traditional software programs by manipulating this data. We propose a
→