Abstract

Deep learning (DL) offers potential improvements throughout the CAD tool-flow, one promising application being lithographic hotspot detection. However, DL techniques have been shown to be especially vulnerable to inference and training time adversarial attacks. Recent work has demonstrated that a small fraction of malicious physical designers can stealthily “backdoor” a DL-based hotspot detector during its training phase such that it accurately classifies regular layout clips but predicts hotspots containing a specially crafted trigger shape as nonhotspots. We propose a novel training data augmentation strategy as a powerful defense against such backdooring attacks. The defense works by eliminating the intentional biases introduced in the training data but does not require knowledge of which training samples are poisoned or the nature of the backdoor trigger. Our results show that the defense can drastically reduce the attack success rate from 84% to ~0%.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Early Diagnosis of Brain Tumour MRI Images Using Hybrid Techniques between Deep and Machine Learning.
Ebrahim Mohammed Senan ... Luminita Moraru
Journal of Theoretical Medicine | VOL. 2022
Ebrahim Mohammed Senan, et. al.Ebrahim Mohammed Senan ... Luminita Moraru
18 May 2022
Comprehensive Study for Breast Cancer Using Deep Learning and Traditional Machine Learning
-
Zanco journal of pure and applied sciences | VOL. 34
--
12 Apr 2022
Detection of Adversarial Attacks against the Hybrid Convolutional Long Short-Term Memory Deep Learning Technique for Healthcare Monitoring Applications
Albatul Albattah ... Murad A Rassam
Applied sciences | VOL. 13
Albatul Albattah, et. al.Albatul Albattah ... Murad A Rassam
03 Jun 2023
Deep learning: systematic review, models, challenges, and research directions
Tala Talaei Khoei ... Naima Kaabouch
Neural Computing & Applications | VOL. 35
Tala Talaei Khoei, et. al.Tala Talaei Khoei ... Naima Kaabouch
07 Sep 2023
View more papers

More From: IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems

Paper Title
Journal
Date
Author
On-Device Continual Learning With STT-Assisted-SOT MRAM-Based In-Memory Computing
Fan Zhang ... Wilman Tsai
IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems | VOL. 43
Fan Zhang, et. al.Fan Zhang ... Wilman Tsai
01 Aug 2024
ReApprox-PIM: Reconfigurable Approximate Lookup-Table (LUT)-Based Processing-in-Memory (PIM) Machine Learning Accelerator
Sathwika Bavikadi ... Amlan Ganguly
IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems | VOL. 43
Sathwika Bavikadi, et. al.Sathwika Bavikadi ... Amlan Ganguly
01 Aug 2024
Compute-in-Memory-Based Neural Network Accelerators for Safety-Critical Systems: Worst-Case Scenarios and Protections
Zheyu Yan ... Xiaobo Sharon Hu
IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems | VOL. 43
Zheyu Yan, et. al.Zheyu Yan ... Xiaobo Sharon Hu
01 Aug 2024
Tamper Resistant Reconfigurable Preamplifier Physical Unclonable Function With Self-Destruct
Eric Hunt-Schroeder ... Tian Xia
IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems | VOL. 43
Eric Hunt-Schroeder, et. al.Eric Hunt-Schroeder ... Tian Xia
01 Aug 2024
View more papers