TRIGS: Trojan Identification from Gradient-based Signatures

AmazUtah_NLP at SemEval-2024 Task 9: A MultiChoice Question Answering System for Commonsense Defying Reasoning


View a PDF of the paper titled TRIGS: Trojan Identification from Gradient-based Signatures, by Mohamed E. Hussein and 2 other authors

View PDF
HTML (experimental)

Abstract:Training machine learning models can be very expensive or even unaffordable. This may be, for example, due to data limitations, such as unavailability or being too large, or computational power limitations. Therefore, it is a common practice to rely on open-source pre-trained models whenever this http URL, this practice is alarming from a security perspective. Pre-trained models can be infected with Trojan attacks, in which the attacker embeds a trigger in the model such that the model’s behavior can be controlled by the attacker when the trigger is present in the input. In this paper, we present a novel method for detecting Trojan models. Our method creates a signature for a model based on activation optimization. A classifier is then trained to detect a Trojan model given its signature. We call our method TRIGS for TRojan Identification from Gradient-based Signatures. TRIGS achieves state-of-the-art performance on two public datasets of convolutional models. Additionally, we introduce a new challenging dataset of ImageNet models based on the vision transformer architecture. TRIGS delivers the best performance on the new dataset, surpassing the baseline methods by a large margin. Our experiments also show that TRIGS requires only a small amount of clean samples to achieve good performance, and works reasonably well even if the defender does not have prior knowledge about the attacker’s model architecture. Our code and data are publicly available.

Submission history

From: Mohamed Hussein [view email]
[v1]
Thu, 8 Jun 2023 02:17:29 UTC (1,849 KB)
[v2]
Tue, 6 Feb 2024 02:46:28 UTC (4,031 KB)
[v3]
Wed, 11 Dec 2024 14:30:20 UTC (4,035 KB)



Source link
lol

By stp2y

Leave a Reply

Your email address will not be published. Required fields are marked *

No widgets found. Go to Widget page and add the widget in Offcanvas Sidebar Widget Area.