Detecting Backdoor Attacks Against Point Cloud Classifiers

Add code
Oct 20, 2021
Zhen Xiang, David J. Miller, Siheng Chen, Xi Li, George Kesidis
Figure 1 for Detecting Backdoor Attacks Against Point Cloud Classifiers
Figure 2 for Detecting Backdoor Attacks Against Point Cloud Classifiers
Figure 3 for Detecting Backdoor Attacks Against Point Cloud Classifiers

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon

Backdoor attacks (BA) are an emerging threat to deep neural network classifiers. A classifier being attacked will predict to the attacker's target class when a test sample from a source class is embedded with the backdoor pattern (BP). Recently, the first BA against point cloud (PC) classifiers was proposed, creating new threats to many important applications including autonomous driving. Such PC BAs are not detectable by existing BA defenses due to their special BP embedding mechanism. In this paper, we propose a reverse-engineering defense that infers whether a PC classifier is backdoor attacked, without access to its training set or to any clean classifiers for reference. The effectiveness of our defense is demonstrated on the benchmark ModeNet40 dataset for PCs.

View paper onarxiv icon

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon