VENOM: Text-driven Unrestricted Adversarial Example Generation with   Diffusion Models

Hui Kuurila-Zhang; Haoyu Chen; Guoying Zhao

arXiv:2501.07922·cs.CV·January 15, 2025

VENOM: Text-driven Unrestricted Adversarial Example Generation with Diffusion Models

Hui Kuurila-Zhang, Haoyu Chen, Guoying Zhao

PDF

Open Access 1 Repo

TL;DR

VENOM introduces a novel text-driven diffusion model framework for generating high-quality unrestricted adversarial examples, improving attack success rates and image naturalness without relying on reference images.

Contribution

It is the first to unify image content and adversarial synthesis in a single diffusion process driven by text, enabling stable, high-fidelity adversarial example generation from random noise.

Findings

01

VENOM achieves higher attack success rates than prior methods.

02

Generated adversarial examples maintain high image quality and naturalness.

03

The adaptive guidance strategy stabilizes the generation process.

Abstract

Adversarial attacks have proven effective in deceiving machine learning models by subtly altering input images, motivating extensive research in recent years. Traditional methods constrain perturbations within $l_{p}$ -norm bounds, but advancements in Unrestricted Adversarial Examples (UAEs) allow for more complex, generative-model-based manipulations. Diffusion models now lead UAE generation due to superior stability and image quality over GANs. However, existing diffusion-based UAE methods are limited to using reference images and face challenges in generating Natural Adversarial Examples (NAEs) directly from random noise, often producing uncontrolled or distorted outputs. In this work, we introduce VENOM, the first text-driven framework for high-quality unrestricted adversarial examples generation through diffusion models. VENOM unifies image content generation and adversarial synthesis…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Code & Models

Repositories

huizhg/VENOM
pytorchOfficial

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdversarial Robustness in Machine Learning · Advanced Malware Detection Techniques

MethodsDiffusion · ALIGN