无声杀手: 优化后门触发器从而实现隐蔽而强大的数据投毒攻击

Jan, 2023

Silent Killer: Optimizing Backdoor Trigger Yields a Stealthy and Powerful Data Poisoning Attack

Tzvi Lederer, Gallil Maimon, Lior Rokach

TL;DR利用数据污染，添加即便微小干扰也能改变模型原本判断的样本分类，且添加的干扰本身难以被发现，同时在效率上有所提升的神经网络后门攻击方法。

Abstract

We propose a stealthy and powerful backdoor attack on neural networks based on data poisoning (DP). In contrast to previous attacks, both