BackdoorBench: A Comprehensive Benchmark of Backdoor Learning
Baoyuan Wu, Hongrui Chen, Mingda Zhang, Zihao Zhu, Shaokui Wei, Danni, Yuan, Chao Shen
TL;DR
BackdoorBench is a comprehensive, standardized benchmark platform that evaluates various backdoor attack and defense methods in deep neural networks, facilitating thorough comparisons and progress tracking.
Contribution
It introduces an extensible codebase and a standardized evaluation protocol for backdoor learning, enabling systematic and large-scale comparisons of state-of-the-art methods.
Findings
8,000 evaluation pairs across attacks, defenses, datasets, and models
Detailed analysis of factors influencing backdoor learning effectiveness
Public availability of code and evaluation results for reproducibility
Abstract
Backdoor learning is an emerging and vital topic for studying deep neural networks' vulnerability (DNNs). Many pioneering backdoor attack and defense methods are being proposed, successively or concurrently, in the status of a rapid arms race. However, we find that the evaluations of new methods are often unthorough to verify their claims and accurate performance, mainly due to the rapid development, diverse settings, and the difficulties of implementation and reproducibility. Without thorough evaluations and comparisons, it is not easy to track the current progress and design the future development roadmap of the literature. To alleviate this dilemma, we build a comprehensive benchmark of backdoor learning called BackdoorBench. It consists of an extensible modular-based codebase (currently including implementations of 8 state-of-the-art (SOTA) attacks and 9 SOTA defense algorithms) and…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
Taxonomy
TopicsAdversarial Robustness in Machine Learning