智能科学与技术学报2024,Vol.6Issue(3):381-393,13.DOI:10.11959/j.issn.2096-6652.202430
人工智能后门防御评估方法及其架构研究
Research on method and architecture for defense assessment of artificial intelligence backdoors
摘要
Abstract
In response to the potential risk of backdoor attacks faced by artificial intelligence systems,a range of backdoor defense strategies are developed.The diversity of the evaluation criteria for existing defense method,makes cross-method comparisons a significant challenge.Hence,a unified evaluation framework base on artificial intelligence backdoors was proposed.This framework aimed to provide a common standard for evaluating different levels of defense strategies,including dataset-level and model-level defenses.Regarding the dataset-level defense strategies,the effectiveness of backdoor detection was primarily assessed through accuracy.Regarding the model-level defense strategies,focus was mainly placed on metrics such as attack success rate.By implementing unified evaluation framework,the performance of various backdoor defense methods under the same standards were compared and analyzed.This not only aids in identifying the strengths and weaknesses of each method,but also proposes targeted suggestions for improvements.The results indicate that unified evaluation framework can effectively measure the performance of different defense strategies,providing an important reference for further enhancing the security of artificial intelligence systems.关键词
人工智能安全/后门攻击/后门防御/统一评估Key words
artificial intelligence security/backdoor attack/backdoor defense/unified evaluation分类
信息技术与安全科学引用本文复制引用
谢天,李强,鞠卓亚,韩嘉祺,易平..人工智能后门防御评估方法及其架构研究[J].智能科学与技术学报,2024,6(3):381-393,13.基金项目
国家自然科学基金项目(No.62202290) The National Natural Science Foundation of China(No.62202290) (No.62202290)
