Adversarial Threats in Quantum Machine Learning: A Survey of Attacks and Defenses

Archisman Ghosh; Satwik Kundu; and Swaroop Ghosh

arXiv:2506.21842·quant-ph·June 30, 2025

Adversarial Threats in Quantum Machine Learning: A Survey of Attacks and Defenses

Archisman Ghosh, Satwik Kundu, and Swaroop Ghosh

PDF

Open Access

TL;DR

This survey reviews adversarial threats in quantum machine learning, highlighting attack methods exploiting quantum hardware vulnerabilities and discussing quantum-specific defense strategies to enhance system security.

Contribution

It provides a comprehensive overview of attack vectors and defense mechanisms in QML, emphasizing quantum-specific vulnerabilities and security solutions in the NISQ era.

Findings

01

Quantum hardware noise can be exploited for watermarks

02

Quantum-specific data poisoning techniques exist

03

Defense strategies include quantum-aware obfuscation

Abstract

Quantum Machine Learning (QML) integrates quantum computing with classical machine learning, primarily to solve classification, regression and generative tasks. However, its rapid development raises critical security challenges in the Noisy Intermediate-Scale Quantum (NISQ) era. This chapter examines adversarial threats unique to QML systems, focusing on vulnerabilities in cloud-based deployments, hybrid architectures, and quantum generative models. Key attack vectors include model stealing via transpilation or output extraction, data poisoning through quantum-specific perturbations, reverse engineering of proprietary variational quantum circuits, and backdoor attacks. Adversaries exploit noise-prone quantum hardware and insufficiently secured QML-as-a-Service (QMLaaS) workflows to compromise model integrity, ownership, and functionality. Defense mechanisms leverage quantum properties…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsQuantum Computing Algorithms and Architecture · Physical Unclonable Functions (PUFs) and Hardware Security · Quantum Information and Cryptography