ASet of Generalized Components to Achieve Effective Poison-only Clean-label Backdoor Attacks with Collaborative Sample Selection and Triggers

Jun-23-2026, 03:53:09 GMT–Neural Information Processing Systems

Poison-only Clean-label Backdoor Attacks (PCBAs) aim to covertly inject attackerdesired behavior into DNNs by merely poisoning the dataset without changing the labels. To effectively implant a backdoor, multiple triggers are proposed for various attack requirements of Attack Success Rate (ASR) and stealthiness. Additionally, sample selection enhances clean-label backdoor attacks' ASR by meticulously selecting "hard" samples instead of random samples to poison. Current methods, however, 1) usually handle the sample selection and triggers in isolation, leading to limited performance on both ASR and stealthiness when converted to PCBAs. Therefore, we seek to explore the bi-directional collaborative relations between the sample selection and triggers to address the above dilemma.

artificial intelligence, machine learning, natural language, (20 more...)

Neural Information Processing Systems

Jun-23-2026, 03:53:09 GMT

Conferences PDF

Add feedback

Country:
- North America > United States (0.28)
- Asia > China
  - Guangdong Province (0.14)

Genre:
- Research Report > Experimental Study (1.00)

Industry:
- Information Technology > Security & Privacy (1.00)

Technology:
- Information Technology
  - Security & Privacy (1.00)
  - Sensing and Signal Processing > Image Processing (0.67)
  - Artificial Intelligence
    - Vision (1.00)
    - Natural Language (0.93)
    - Representation & Reasoning (0.93)
    - Machine Learning > Neural Networks
      - Deep Learning (0.46)

Duplicate Docs Excel Report

Title
None found

Similar Docs Excel Report more

Title	Similarity	Source
None found