Attention Hijacking in Trojan Transformers. (arXiv:2208.04946v1 [cs.LG])

Arxiv Preprints
webmaster
August 11, 2022
0
174

Trojan attacks pose a severe threat to AI systems. Recent works on
Transformer models received explosive popularity and the self-attentions are
now indisputable. This raises a central question: Can we reveal the Trojans
through attention mechanisms in BERTs and ViTs? In this paper, we investigate
the attention hijacking pattern in Trojan AIs, ie, the trigger token
“kidnaps” the attention weights when a specific trigger is present. We
observe the consistent attention hijacking pattern in Trojan Transformers from
both Natural Language Processing (NLP) and Computer Vision (CV) domains. This
intriguing property helps us to understand the Trojan mechanism in BERTs and
ViTs. We also propose an Attention-Hijacking Trojan Detector (AHTD) to
discriminate the Trojan AIs from the clean ones.

Source: https://arxiv.org/abs/2208.04946

webmaster

Amazon SageMaker simplifies the Amazon SageMaker Studio setup for individual users

Advanced (300) - AMAZON

Nested Cross-Validation Python Code

Web Scraping For Machine Learning – With SQL Database

Stack Machine Learning Models – Get Better Results

Inverting A Matrix: Gaussian Elimination Row Echelon Form

AWS Reaffirms its Commitment to Responsible Generative AI

Modular functions design for Advanced Driver Assistance Systems (ADAS) on AWS

AWS Unveils New AI Service Features and Enhancements at re:Invent 2022

Human-in-the-loop review of model explanations with Amazon SageMaker Clarify and Amazon A2I

Cognitive document processing for automated mortgage processing

Focusing on disaster response with Amazon Augmented AI and Mechanical Turk

Raquel Urtasun’s Waabi Autonomous Vehicle Software Company is Launched

Best AI Papers of 2020 Broach GPT-3 Large Language Model Concerns

Ford’s Use of AI an Example of Shaping of Innovation in MIT Future of Work Session

ITServe Alliance Wins Court Ruling on H-1B Visa Prevailing Wages

The origin of light, scattering, and polarization | Barber pole, part 2

This demo tests your understanding of light | Barber pole, part 1

The absurd circle division pattern (updated) | Moser’s circle problem

Why is the “central limit” a normal distribution?

Attention Hijacking in Trojan Transformers. (arXiv:2208.04946v1 [cs.LG])

webmaster

Follow Us

Code Representation Pre-training with Complements from Program Executions....

Introspective Deep Metric Learning. (arXiv:2309.09982v1 [cs.CV])

Maneuver Decision-Making Through Proximal Policy Optimization And Monte...

Monitoring Urban Changes in Mariupol/Ukraine in 2022/23. (arXiv:2309.08607v1...

Code Representation Pre-training with Complements from Program Executions....

Introspective Deep Metric Learning. (arXiv:2309.09982v1 [cs.CV])

Maneuver Decision-Making Through Proximal Policy Optimization And Monte...

Monitoring Urban Changes in Mariupol/Ukraine in 2022/23. (arXiv:2309.08607v1...

Code Representation Pre-training with Complements from Program Executions....

Making smart thermostats more efficient

Building machines that better understand human goals

Neuroscientists find a way to make object-recognition models...

Nested Cross-Validation Python Code

ALReLU: A different approach on

Best AI Papers of 2020

Stack Machine Learning Models –

webmaster

Related post

Follow Us