Deep Learning Model Security: Threats and Defenses

Tianyang Wang; Ziqian Bi; Yichao Zhang; Ming Liu; Weiche Hsieh; Pohsun; Feng; Lawrence K.Q. Yan; Yizhu Wen; Benji Peng; Junyu Liu; Keyu Chen; Sen; Zhang; Ming Li; Chuanqi Jiang; Xinyuan Song; Junjie Yang; Bowen Jing; Jintao; Ren; Junhao Song; Hong-Ming Tseng; Silin Chen; Yunze Wang; Chia Xin Liang,; Jiawei Xu; Xuanhe Pan; Jinlang Wang; Qian Niu

arXiv:2412.08969·cs.CR·December 17, 2024·2 cites

Deep Learning Model Security: Threats and Defenses

Tianyang Wang, Ziqian Bi, Yichao Zhang, Ming Liu, Weiche Hsieh, Pohsun, Feng, Lawrence K.Q. Yan, Yizhu Wen, Benji Peng, Junyu Liu, Keyu Chen, Sen, Zhang, Ming Li, Chuanqi Jiang, Xinyuan Song, Junjie Yang, Bowen Jing, Jintao, Ren, Junhao Song, Hong-Ming Tseng, Silin Chen

PDF

Open Access

TL;DR

This survey reviews security threats to deep learning models, including attacks and defenses, and discusses future directions for improving robustness and privacy in AI systems.

Contribution

It provides a comprehensive overview of vulnerabilities, attack methods, defense strategies, and emerging techniques in deep learning security, highlighting current limitations and future research directions.

Findings

01

Adversarial attacks compromise model integrity.

02

Defense methods like adversarial training improve robustness.

03

Emerging techniques aim to enhance security of large AI models.

Abstract

Deep learning has transformed AI applications but faces critical security challenges, including adversarial attacks, data poisoning, model theft, and privacy leakage. This survey examines these vulnerabilities, detailing their mechanisms and impact on model integrity and confidentiality. Practical implementations, including adversarial examples, label flipping, and backdoor attacks, are explored alongside defenses such as adversarial training, differential privacy, and federated learning, highlighting their strengths and limitations. Advanced methods like contrastive and self-supervised learning are presented for enhancing robustness. The survey concludes with future directions, emphasizing automated defenses, zero-trust architectures, and the security challenges of large AI models. A balanced approach to performance and security is essential for developing reliable deep learning…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdversarial Robustness in Machine Learning · Network Security and Intrusion Detection · Advanced Malware Detection Techniques