Hidden Backdoor Attack Against Deep Learning-Based Wireless Signal Modulation Classifiers

被引:2
作者
Huang, Yunsong [1 ,2 ]
Liu, Weicheng [1 ,2 ]
Wang, Hui-Ming [1 ,2 ]
机构
[1] Xi An Jiao Tong Univ, Sch Informat & Commun Engn, Xian 710049, Peoples R China
[2] Xi An Jiao Tong Univ, Key Lab Intelligent Networks & Network, Minist Educ, Xian 710049, Peoples R China
来源
IEEE TRANSACTIONS ON VEHICULAR TECHNOLOGY | 2023年 / 72卷 / 09期
基金
中国国家自然科学基金;
关键词
Deep learning; modulation classification; communications security; backdoor attack; CLASSIFICATION;
D O I
10.1109/TVT.2023.3267455
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
Recently, DL has been exploited in wireless communications such as modulation classification. However, due to the openness of wireless channel and unexplainability of DL, it is also vulnerable to adversarial attacks. In this correspondence, we investigate a so called hidden backdoor attack to modulation classification, where the adversary puts elaborately designed poisoned samples on the basis of IQ sequences into training dataset. These poisoned samples are hidden because it could not be found by traditional classification methods. And poisoned samples are same to samples with triggers which are patched samples in feature space. We show that the hidden backdoor attack can reduce the accuracy of modulation classification significantly with patched samples. At last, we propose activation cluster to detect abnormal samples in training dataset.
引用
收藏
页码:12396 / 12400
页数:5
相关论文
共 15 条
  • [1] Chen B., 2019, P AAAI WORKSH
  • [2] Trojan Attacks on Wireless Signal Classification with Adversarial Machine Learning
    Davaslioglu, Kemal
    Sagduyu, Yalin E.
    [J]. 2019 IEEE INTERNATIONAL SYMPOSIUM ON DYNAMIC SPECTRUM ACCESS NETWORKS (DYSPAN), 2019, : 515 - 520
  • [3] Deep Learning-Based Signal Modulation Identification in OFDM Systems
    Hong, Sheng
    Zhang, Yibin
    Wang, Yu
    Gu, Hao
    Gui, Guan
    Sari, Hikmet
    [J]. IEEE ACCESS, 2019, 7 : 114631 - 114638
  • [4] Deep Neural Network for Robust Modulation Classification Under Uncertain Noise Conditions
    Hu, Shisheng
    Pei, Yiyang
    Liang, Paul Pu
    Liang, Ying-Chang
    [J]. IEEE TRANSACTIONS ON VEHICULAR TECHNOLOGY, 2020, 69 (01) : 564 - 577
  • [5] Kim K., 1988, MILCOM 88. 21st Century Military Communications - What's Possible? Conference Record. 1988 IEEE Military Communications Conference (IEEE Cat. No.88CH2537-9), P431, DOI 10.1109/MILCOM.1988.13427
  • [6] Targeted Adversarial Examples Against RF Deep Classifiers
    Kokalj-Filipovic, Silvija
    Miller, Rob
    Morman, Joshua
    [J]. PROCEEDINGS OF THE 2019 ACM WORKSHOP ON WIRELESS SECURITY AND MACHINE LEARNING (WISEML '19), 2019, : 6 - 11
  • [7] Oshea T.J., 2016, P GNU RAD C
  • [8] A Survey of Modulation Classification Using Deep Learning: Signal Representation and Data Preprocessing
    Peng, Shengliang
    Sun, Shujun
    Yao, Yu-Dong
    [J]. IEEE TRANSACTIONS ON NEURAL NETWORKS AND LEARNING SYSTEMS, 2022, 33 (12) : 7020 - 7038
  • [9] Efficient distance metric learning by adaptive sampling and mini-batch stochastic gradient descent (SGD)
    Qian, Qi
    Jin, Rong
    Yi, Jinfeng
    Zhang, Lijun
    Zhu, Shenghuo
    [J]. MACHINE LEARNING, 2015, 99 (03) : 353 - 372
  • [10] Adversarial Attacks on Deep-Learning Based Radio Signal Classification
    Sadeghi, Meysam
    Larsson, Erik G.
    [J]. IEEE WIRELESS COMMUNICATIONS LETTERS, 2019, 8 (01) : 213 - 216
12