Published Version
Open DOI LinkAbstract
Recent researches have shown that large natural language processing (NLP) models are vulnerable to a kind of security threat called the Backdoor Attack. Backdoor attacked models can achieve good performance on clean test sets but perform badly on those input sentences injected with designed trigger words. In this work, we point out a potential problem of current backdoor attacking research: its evaluation ignores the stealthiness of backdoor attacks, and most of existing backdoor attacking methods are not stealthy either to system deployers or to system users. To address this issue, we first propose two additional stealthiness-based metrics to make the backdoor attacking evaluation more credible. We further propose a novel word-based backdoor attacking method based on negative data augmentation and modifying word embeddings, making an important step towards achieving stealthy backdoor attacking. Experiments on sentiment analysis and toxic detection tasks show that our method is much stealthier while maintaining pretty good attacking performance. Our code is available at https://github.com/lancopku/SOS.
Full Text
Open DOI Link
Sign-in/Register to access full text options Topics from this Paper
Backdoor Attack- Natural Language Processing Models
- Natural Language Processing
- Sentiment Analysis
- Sentiment Analysis Tasks + Show 5 more
Create a personalized feed of these topics
Get StartedTalk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callSimilar Papers
RAP: Robustness-Aware Perturbations for Defending against Backdoor Attacks on NLP Models 
Relevant
Not Relevant
Jan 1, 2021
RelevantNot Relevant RAP: Robustness-Aware Perturbations for Defending against Backdoor Attacks on NLP Models RelevantNot Relevant
- Oct 15, 2021
RelevantNot Relevant Be Careful about Poisoned Word Embeddings: Exploring the Vulnerability of the Embedding Layers in NLP Models RelevantNot Relevant
- May 25, 2021
RelevantNot Relevant Identification of muscle-invasion status in bladder cancer patients using natural language processing and machine learning. RelevantNot Relevant
Journal of Clinical Oncology- Feb 20, 2022
RelevantNot Relevant NLP-Fast: A Fast, Scalable, and Flexible System to Accelerate Large-Scale Heterogeneous NLP Models RelevantNot Relevant
- Sep 1, 2021
RelevantNot Relevant Evaluating the predictive ability of natural language processing in identifying tertiary/quaternary cases in prioritization workflows for interhospital transfer. RelevantNot Relevant
- JAMIA open
- Jul 4, 2023
RelevantNot Relevant POS0262 IDENTIFYING EROSIVE DISEASE FROM RADIOLOGY REPORTS OF VETERANS WITH INFLAMMATORY ARTHRITIS USING NATURAL LANGUAGE PROCESSING RelevantNot Relevant
- Jun 1, 2021
RelevantNot Relevant Measuring Adoption of Patient Priorities–Aligned Care Using Natural Language Processing of Electronic Health Records: Development and Validation of the Model RelevantNot Relevant
- JMIR Medical Informatics
- Feb 19, 2021
RelevantNot Relevant Identification of Patients With Metastatic Prostate Cancer With Natural Language Processing and Machine Learning RelevantNot Relevant
- JCO Clinical Cancer Informatics
- Dec 1, 2022
RelevantNot Relevant NLP-Based Approach for Predicting HMI State Sequences Towards Monitoring Operator Situational Awareness RelevantNot Relevant
- Sensors
- Jun 5, 2020
RelevantNot Relevant Natural language processing to predict isocitrate dehydrogenase genotype in diffuse glioma using MR radiology reports. RelevantNot Relevant
- European radiology
- Aug 11, 2023
RelevantNot Relevant Metamorphic Testing and Certified Mitigation of Fairness Violations in NLP Models RelevantNot Relevant
- Jul 1, 2020
RelevantNot Relevant Abstract 11934: Natural Language Processing Models Can Be Trained to Accurately Recognize the Presence of Disease Within Clinical Notes RelevantNot Relevant
- Circulation
- Nov 8, 2022
RelevantNot Relevant Can natural language processing models extract and classify instances of interpersonal violence in mental healthcare electronic records: an applied evaluative study RelevantNot Relevant
- BMJ Open
- Feb 1, 2022
RelevantNot Relevant Enhancing an enterprise data warehouse for research with data extracted using natural language processing. RelevantNot Relevant
- Journal of clinical and translational science
- Jun 13, 2023
RelevantNot Relevant