{"id":"https://openalex.org/W4412847117","doi":"https://doi.org/10.1007/s41635-025-00164-y","title":"Towards Hardware Trojan Resilient Convolutional Neural Network Accelerators","display_name":"Towards Hardware Trojan Resilient Convolutional Neural Network Accelerators","publication_year":2025,"publication_date":"2025-08-01","ids":{"openalex":"https://openalex.org/W4412847117","doi":"https://doi.org/10.1007/s41635-025-00164-y"},"language":"en","primary_location":{"id":"doi:10.1007/s41635-025-00164-y","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s41635-025-00164-y","pdf_url":"https://link.springer.com/content/pdf/10.1007/s41635-025-00164-y.pdf","source":{"id":"https://openalex.org/S4210175245","display_name":"Journal of Hardware and Systems Security","issn_l":"2509-3428","issn":["2509-3428","2509-3436"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Hardware and Systems Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://link.springer.com/content/pdf/10.1007/s41635-025-00164-y.pdf","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5019418668","display_name":"Peiyao Sun","orcid":"https://orcid.org/0009-0009-3641-7039"},"institutions":[{"id":"https://openalex.org/I43439940","display_name":"University of Southampton","ror":"https://ror.org/01ryk1543","country_code":"GB","type":"education","lineage":["https://openalex.org/I43439940"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Peiyao Sun","raw_affiliation_strings":["Electronics and Computer Science School, University of Southampton, Southampton, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electronics and Computer Science School, University of Southampton, Southampton, UK","institution_ids":["https://openalex.org/I43439940"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5002449223","display_name":"Basel Halak","orcid":"https://orcid.org/0000-0003-3470-7226"},"institutions":[{"id":"https://openalex.org/I43439940","display_name":"University of Southampton","ror":"https://ror.org/01ryk1543","country_code":"GB","type":"education","lineage":["https://openalex.org/I43439940"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Basel Halak","raw_affiliation_strings":["Electronics and Computer Science School, University of Southampton, Southampton, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electronics and Computer Science School, University of Southampton, Southampton, UK","institution_ids":["https://openalex.org/I43439940"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5040523899","display_name":"Tom J. K\u00e1zmierski","orcid":null},"institutions":[{"id":"https://openalex.org/I43439940","display_name":"University of Southampton","ror":"https://ror.org/01ryk1543","country_code":"GB","type":"education","lineage":["https://openalex.org/I43439940"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Tom J. Kazmierski","raw_affiliation_strings":["Electronics and Computer Science School, University of Southampton, Southampton, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electronics and Computer Science School, University of Southampton, Southampton, UK","institution_ids":["https://openalex.org/I43439940"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5019418668"],"corresponding_institution_ids":["https://openalex.org/I43439940"],"apc_list":{"value":2290,"currency":"EUR","value_usd":2890},"apc_paid":{"value":2290,"currency":"EUR","value_usd":2890},"fwci":1.4369,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.80491821,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"9","issue":"3-4","first_page":"89","last_page":"106"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9990000128746033,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14117","display_name":"Integrated Circuits and Semiconductor Failure Analysis","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/trojan","display_name":"Trojan","score":0.8369280695915222},{"id":"https://openalex.org/keywords/convolutional-neural-network","display_name":"Convolutional neural network","score":0.7567239999771118},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6330538988113403},{"id":"https://openalex.org/keywords/computer-hardware","display_name":"Computer hardware","score":0.4343108832836151},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.33481860160827637},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.3269149363040924},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2862553596496582}],"concepts":[{"id":"https://openalex.org/C174333608","wikidata":"https://www.wikidata.org/wiki/Q19635","display_name":"Trojan","level":2,"score":0.8369280695915222},{"id":"https://openalex.org/C81363708","wikidata":"https://www.wikidata.org/wiki/Q17084460","display_name":"Convolutional neural network","level":2,"score":0.7567239999771118},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6330538988113403},{"id":"https://openalex.org/C9390403","wikidata":"https://www.wikidata.org/wiki/Q3966","display_name":"Computer hardware","level":1,"score":0.4343108832836151},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.33481860160827637},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.3269149363040924},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2862553596496582}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1007/s41635-025-00164-y","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s41635-025-00164-y","pdf_url":"https://link.springer.com/content/pdf/10.1007/s41635-025-00164-y.pdf","source":{"id":"https://openalex.org/S4210175245","display_name":"Journal of Hardware and Systems Security","issn_l":"2509-3428","issn":["2509-3428","2509-3436"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Hardware and Systems Security","raw_type":"journal-article"},{"id":"pmh:oai:eprints.soton.ac.uk:504434","is_oa":false,"landing_page_url":"http://doi.org/10.1007/s41635-025-00164-y>).","pdf_url":null,"source":{"id":"https://openalex.org/S4306401019","display_name":"ePrints Soton (University of Southampton)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I43439940","host_organization_name":"University of Southampton","host_organization_lineage":["https://openalex.org/I43439940"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":null,"raw_type":"Article"}],"best_oa_location":{"id":"doi:10.1007/s41635-025-00164-y","is_oa":true,"landing_page_url":"https://doi.org/10.1007/s41635-025-00164-y","pdf_url":"https://link.springer.com/content/pdf/10.1007/s41635-025-00164-y.pdf","source":{"id":"https://openalex.org/S4210175245","display_name":"Journal of Hardware and Systems Security","issn_l":"2509-3428","issn":["2509-3428","2509-3436"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Journal of Hardware and Systems Security","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4412847117.pdf","grobid_xml":"https://content.openalex.org/works/W4412847117.grobid-xml"},"referenced_works_count":50,"referenced_works":["https://openalex.org/W1567056061","https://openalex.org/W1900069412","https://openalex.org/W1976955200","https://openalex.org/W1988426258","https://openalex.org/W1995558750","https://openalex.org/W2122509673","https://openalex.org/W2131183203","https://openalex.org/W2149209089","https://openalex.org/W2399100316","https://openalex.org/W2416737608","https://openalex.org/W2625222559","https://openalex.org/W2765554356","https://openalex.org/W2799026378","https://openalex.org/W2802806963","https://openalex.org/W2883780447","https://openalex.org/W2886557986","https://openalex.org/W2895914074","https://openalex.org/W2899915146","https://openalex.org/W2900220203","https://openalex.org/W2901232240","https://openalex.org/W2903582334","https://openalex.org/W2914247084","https://openalex.org/W2943220429","https://openalex.org/W2946355854","https://openalex.org/W2963125010","https://openalex.org/W2963129355","https://openalex.org/W2963163009","https://openalex.org/W2975103258","https://openalex.org/W2997828269","https://openalex.org/W3013970586","https://openalex.org/W3033544024","https://openalex.org/W3035414587","https://openalex.org/W3035946844","https://openalex.org/W3036926273","https://openalex.org/W3083045783","https://openalex.org/W3083760304","https://openalex.org/W3100550724","https://openalex.org/W3111943226","https://openalex.org/W3117702972","https://openalex.org/W3127135261","https://openalex.org/W3127436526","https://openalex.org/W3132745255","https://openalex.org/W3161742989","https://openalex.org/W4253271121","https://openalex.org/W4288029595","https://openalex.org/W4304141692","https://openalex.org/W4367054505","https://openalex.org/W4392114305","https://openalex.org/W4392708645","https://openalex.org/W6604344240"],"related_works":["https://openalex.org/W4253721122","https://openalex.org/W1671033612","https://openalex.org/W4389527383","https://openalex.org/W4206524843","https://openalex.org/W2139923244","https://openalex.org/W2237899707","https://openalex.org/W576137284","https://openalex.org/W2116135171","https://openalex.org/W2057970756","https://openalex.org/W3124616678"],"abstract_inverted_index":{"Abstract":[0],"Convolutional":[1],"neural":[2,54],"network":[3,55],"accelerators":[4],"are":[5,16,102,131,161],"increasingly":[6],"used":[7,133],"in":[8,66,83,120],"safety\u2013critical":[9],"applications,":[10],"including":[11],"autonomous":[12],"vehicles.":[13],"Therefore,":[14],"they":[15],"particularly":[17],"vulnerable":[18],"to":[19,105,117,134,189],"hardware":[20,49,106,143,153],"Trojan":[21,50,107],"insertion,":[22],"a":[23,42,110,150],"security":[24],"attack":[25,175],"that":[26,60,96,167],"takes":[27],"place":[28],"during":[29],"the":[30,39,46,121,138,147,168,191],"development":[31],"of":[32,45,48,73,85,99,113,152],"integrated":[33],"circuits.":[34],"This":[35],"work":[36],"presents":[37],"for":[38],"first":[40,139],"time":[41,155,188],"large-scale":[43],"study":[44],"impact":[47],"insertion":[51],"on":[52,58,141],"convolutional":[53],"accelerators,":[56],"focusing":[57],"those":[59],"use":[61],"approximate":[62],"commuting":[63],"techniques,":[64],"prevalent":[65],"embedded":[67],"applications.":[68],"We":[69],"investigate":[70],"three":[71],"types":[72],"such":[74],"networks,":[75],"MobileNet":[76],"V2,":[77,79],"ShuffleNet":[78],"and":[80,91,124,146,154,180,193],"GhostNet,":[81],"trained":[82],"datasets":[84],"grayscale":[86],"speed":[87],"limit":[88],"sign":[89],"images":[90],"GTSRB.":[92],"Our":[93,164],"results":[94,165],"show":[95,166],"certain":[97],"parts":[98],"these":[100],"architectures":[101],"more":[103,187],"susceptible":[104],"attacks,":[108],"specifically":[109],"specific":[111],"set":[112],"processing":[114],"elements,":[115],"referred":[116],"as":[118],"\u201cimportant\u201d":[119],"classification,":[122],"ReLU6,":[123],"Max":[125],"pooling":[126],"layers,":[127],"respectively.":[128],"These":[129],"findings":[130],"subsequently":[132],"develop":[135],"two":[136],"countermeasures;":[137],"relies":[140],"selective":[142],"redundancy":[144,156],"(SHR),":[145],"second":[148],"uses":[149],"combination":[151],"(SHTR).":[157],"The":[158],"proposed":[159],"defenses":[160],"experimentally":[162],"validated.":[163],"SHR":[169],"provides":[170],"speedy":[171],"recovery":[172],"from":[173],"an":[174],"while":[176],"incurring":[177],"between":[178],"6":[179],"10%":[181],"area":[182,195],"overheads,":[183],"whereas":[184],"SHTR":[185],"requires":[186],"detect":[190],"Trojan,":[192],"its":[194],"overhead":[196],"is":[197],"much":[198],"smaller":[199],"(~":[200],"0.3%).":[201]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-07-02T09:51:11.867554","created_date":"2025-10-10T00:00:00"}
