Abstract

Deep neural network (DNN) hardware accelerators are being deployed widely to accelerate the inference process. Security of such accelerators is a major challenge, especially when being deployed in safety-critical systems such as autonomous vehicles. In this letter, we present novel Hardware Trojan (HT) attacks on two DNN hardware accelerators, which modifies the activation parameters of the DNN in a field-programmable gate array-based accelerator implementation. The proposed HT is agnostic to the detailed architecture of the DNN. Experimental results demonstrate that the proposed HT is extremely stealthy, and when activated can result in significant degradation in inference accuracy.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Recent progress in analog memory-based accelerators for deep learning
Hsinyu Tsai ... Robert M Shelby
Journal of Physics D: Applied Physics | VOL. 51
Hsinyu Tsai, et. al.Hsinyu Tsai ... Robert M Shelby
21 Jun 2018
Joint Protection Scheme for Deep Neural Network Hardware Accelerators and Models
Jingbo Zhou ... Xinmiao Zhang
IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems | VOL. 42
Jingbo Zhou, et. al.Jingbo Zhou ... Xinmiao Zhang
01 Dec 2023
DNN-Life: An Energy-Efficient Aging Mitigation Framework for Improving the Lifetime of On-Chip Weight Memories in Deep Neural Network Hardware Architectures
Muhammad Abdullah Hanif ... Muhammad Shafique
-
Muhammad Abdullah Hanif, et. al.Muhammad Abdullah Hanif ... Muhammad Shafique
01 Feb 2021
A Systematic Literature Review on Hardware Reliability Assessment Methods for Deep Neural Networks
Mohammad Hasan Ahmadilivani ... Masoud Daneshtalab
ACM Computing Surveys | VOL. 56
Mohammad Hasan Ahmadilivani, et. al.Mohammad Hasan Ahmadilivani ... Masoud Daneshtalab
22 Jan 2024
View more papers

More From: IEEE Embedded Systems Letters

Paper Title
Journal
Date
Author
Table of Contents
-
IEEE Embedded Systems Letters | VOL. 16
--
01 Sep 2024
Improving Netlist Transformation-Based Approximate Logic Synthesis Through Resynthesis
Roger Morales-Monge ... Guilherme Paim
IEEE Embedded Systems Letters | VOL. 16
Roger Morales-Monge, et. al.Roger Morales-Monge ... Guilherme Paim
01 Sep 2024
Self-Tuning Model for Energy-Context Optimization in Perpetual Sensor Nodes Within IoT-Integrated Hydroponic Systems
A Hernández-Benítez ... Johan J Estrada-López
IEEE Embedded Systems Letters | VOL. 16
A Hernández-Benítez, et. al.A Hernández-Benítez ... Johan J Estrada-López
01 Sep 2024
ML-Based Trojan Classification: Repercussions of Toxic Boundary Nets
Saleh Mulhem ... Mladen Berekovic
IEEE Embedded Systems Letters | VOL. 16
Saleh Mulhem, et. al.Saleh Mulhem ... Mladen Berekovic
01 Sep 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.