Gradient Shaping: Enhancing Backdoor Attack Against Reverse Engineering
Rui Zhu
Network and Distributed System Security (NDSS) Symposium 2024 · Day 3 · Reverse Engineering
In an era where Machine Learning (ML) models are increasingly integrated into critical systems, their trustworthiness has become a paramount concern. This detailed article explores a groundbreaking presentation by Rui Zhu at the NDSS Symposium, titled "Gradient Shaping: Enhancing Backdoor Attack Against Reverse Engineering." The talk delves into the inherent vulnerabilities of current ML backdoor defenses, particularly those relying on gradient-based trigger inversion, and introduces a novel attack enhancement technique called **Gradient Shaping (GRASP)**.