{"id":"https://openalex.org/W2990077704","doi":"https://doi.org/10.1109/hpec.2019.8916519","title":"Survey of Attacks and Defenses on Edge-Deployed Neural Networks","display_name":"Survey of Attacks and Defenses on Edge-Deployed Neural Networks","publication_year":2019,"publication_date":"2019-09-01","ids":{"openalex":"https://openalex.org/W2990077704","doi":"https://doi.org/10.1109/hpec.2019.8916519","mag":"2990077704"},"language":"en","primary_location":{"id":"doi:10.1109/hpec.2019.8916519","is_oa":false,"landing_page_url":"https://doi.org/10.1109/hpec.2019.8916519","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE High Performance Extreme Computing Conference (HPEC)","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/1911.11932","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5088525918","display_name":"Mihailo Isakov","orcid":null},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Mihailo Isakov","raw_affiliation_strings":["Adaptive and Secure Computing Systems (ASCS) Laboratory, Boston, MA","Adaptive and Secure Computing Systems (ASCS) Laboratory,Boston,MA"],"affiliations":[{"raw_affiliation_string":"Adaptive and Secure Computing Systems (ASCS) Laboratory, Boston, MA","institution_ids":[]},{"raw_affiliation_string":"Adaptive and Secure Computing Systems (ASCS) Laboratory,Boston,MA","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5043450560","display_name":"Vijay Gadepally","orcid":"https://orcid.org/0000-0002-4598-2808"},"institutions":[{"id":"https://openalex.org/I4210122954","display_name":"MIT Lincoln Laboratory","ror":"https://ror.org/022z6jk58","country_code":"US","type":"facility","lineage":["https://openalex.org/I4210122954","https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Vijay Gadepally","raw_affiliation_strings":["MIT Lincoln Laboratory, Boston, MA","MIT Lincoln Laboratory,Boston,MA"],"affiliations":[{"raw_affiliation_string":"MIT Lincoln Laboratory, Boston, MA","institution_ids":["https://openalex.org/I4210122954"]},{"raw_affiliation_string":"MIT Lincoln Laboratory,Boston,MA","institution_ids":["https://openalex.org/I4210122954"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5023809975","display_name":"Karen Gettings","orcid":null},"institutions":[{"id":"https://openalex.org/I4210122954","display_name":"MIT Lincoln Laboratory","ror":"https://ror.org/022z6jk58","country_code":"US","type":"facility","lineage":["https://openalex.org/I4210122954","https://openalex.org/I63966007"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Karen M. Gettings","raw_affiliation_strings":["MIT Lincoln Laboratory, Boston, MA","MIT Lincoln Laboratory,Boston,MA"],"affiliations":[{"raw_affiliation_string":"MIT Lincoln Laboratory, Boston, MA","institution_ids":["https://openalex.org/I4210122954"]},{"raw_affiliation_string":"MIT Lincoln Laboratory,Boston,MA","institution_ids":["https://openalex.org/I4210122954"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5069200437","display_name":"Michel A. Kinsy","orcid":"https://orcid.org/0000-0002-1432-6939"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Michel A. Kinsy","raw_affiliation_strings":["Adaptive and Secure Computing Systems (ASCS) Laboratory, Boston, MA","Adaptive and Secure Computing Systems (ASCS) Laboratory,Boston,MA"],"affiliations":[{"raw_affiliation_string":"Adaptive and Secure Computing Systems (ASCS) Laboratory, Boston, MA","institution_ids":[]},{"raw_affiliation_string":"Adaptive and Secure Computing Systems (ASCS) Laboratory,Boston,MA","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5088525918"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.4336,"has_fulltext":true,"cited_by_count":4,"citation_normalized_percentile":{"value":0.72896163,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9959999918937683,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9952999949455261,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.767181932926178},{"id":"https://openalex.org/keywords/enhanced-data-rates-for-gsm-evolution","display_name":"Enhanced Data Rates for GSM Evolution","score":0.7268946170806885},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.6426924467086792},{"id":"https://openalex.org/keywords/edge-device","display_name":"Edge device","score":0.6090937256813049},{"id":"https://openalex.org/keywords/edge-computing","display_name":"Edge computing","score":0.5805659294128418},{"id":"https://openalex.org/keywords/deep-neural-networks","display_name":"Deep neural networks","score":0.5513977408409119},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5295318961143494},{"id":"https://openalex.org/keywords/latency","display_name":"Latency (audio)","score":0.44485750794410706},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.4319281280040741},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.32388007640838623},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.30156105756759644},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.16729027032852173},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.13536518812179565}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.767181932926178},{"id":"https://openalex.org/C162307627","wikidata":"https://www.wikidata.org/wiki/Q204833","display_name":"Enhanced Data Rates for GSM Evolution","level":2,"score":0.7268946170806885},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.6426924467086792},{"id":"https://openalex.org/C138236772","wikidata":"https://www.wikidata.org/wiki/Q25098575","display_name":"Edge device","level":3,"score":0.6090937256813049},{"id":"https://openalex.org/C2778456923","wikidata":"https://www.wikidata.org/wiki/Q5337692","display_name":"Edge computing","level":3,"score":0.5805659294128418},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.5513977408409119},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5295318961143494},{"id":"https://openalex.org/C82876162","wikidata":"https://www.wikidata.org/wiki/Q17096504","display_name":"Latency (audio)","level":2,"score":0.44485750794410706},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4319281280040741},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.32388007640838623},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.30156105756759644},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.16729027032852173},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.13536518812179565},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1109/hpec.2019.8916519","is_oa":false,"landing_page_url":"https://doi.org/10.1109/hpec.2019.8916519","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE High Performance Extreme Computing Conference (HPEC)","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:1911.11932","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1911.11932","pdf_url":"https://arxiv.org/pdf/1911.11932","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":null},{"id":"mag:2990077704","is_oa":true,"landing_page_url":"https://arxiv.org/pdf/1911.11932v1","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"arXiv (Cornell University)","raw_type":null},{"id":"doi:10.48550/arxiv.1911.11932","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.1911.11932","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article-journal"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:1911.11932","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1911.11932","pdf_url":"https://arxiv.org/pdf/1911.11932","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":null},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2990077704.pdf","grobid_xml":"https://content.openalex.org/works/W2990077704.grobid-xml"},"referenced_works_count":121,"referenced_works":["https://openalex.org/W150223756","https://openalex.org/W1427174644","https://openalex.org/W1605172130","https://openalex.org/W1821462560","https://openalex.org/W1826277484","https://openalex.org/W1934458198","https://openalex.org/W1945616565","https://openalex.org/W1987667503","https://openalex.org/W1992291252","https://openalex.org/W2036601091","https://openalex.org/W2052054442","https://openalex.org/W2064675550","https://openalex.org/W2095705004","https://openalex.org/W2104246439","https://openalex.org/W2112507308","https://openalex.org/W2116374153","https://openalex.org/W2117241830","https://openalex.org/W2155893237","https://openalex.org/W2170993700","https://openalex.org/W2175377689","https://openalex.org/W2255548496","https://openalex.org/W2283463896","https://openalex.org/W2300242332","https://openalex.org/W2384495648","https://openalex.org/W2397423248","https://openalex.org/W2408141691","https://openalex.org/W2435473771","https://openalex.org/W2473418344","https://openalex.org/W2516141709","https://openalex.org/W2525778437","https://openalex.org/W2535690855","https://openalex.org/W2560217098","https://openalex.org/W2579318729","https://openalex.org/W2593994116","https://openalex.org/W2610140147","https://openalex.org/W2620512600","https://openalex.org/W2753783305","https://openalex.org/W2770241596","https://openalex.org/W2777449390","https://openalex.org/W2783769334","https://openalex.org/W2786379237","https://openalex.org/W2787698406","https://openalex.org/W2787708942","https://openalex.org/W2788502731","https://openalex.org/W2789304371","https://openalex.org/W2789993878","https://openalex.org/W2796299376","https://openalex.org/W2798084934","https://openalex.org/W2805074088","https://openalex.org/W2809523935","https://openalex.org/W2810065831","https://openalex.org/W2811276992","https://openalex.org/W2884148825","https://openalex.org/W2886576854","https://openalex.org/W2887712657","https://openalex.org/W2891810898","https://openalex.org/W2893143132","https://openalex.org/W2895073576","https://openalex.org/W2899771611","https://openalex.org/W2905117322","https://openalex.org/W2905209730","https://openalex.org/W2906869444","https://openalex.org/W2909159593","https://openalex.org/W2917560727","https://openalex.org/W2934837523","https://openalex.org/W2942224063","https://openalex.org/W2949168242","https://openalex.org/W2949888546","https://openalex.org/W2962726564","https://openalex.org/W2962883027","https://openalex.org/W2963114950","https://openalex.org/W2963178695","https://openalex.org/W2963247769","https://openalex.org/W2963355447","https://openalex.org/W2963378725","https://openalex.org/W2963560987","https://openalex.org/W2964299589","https://openalex.org/W2964318098","https://openalex.org/W2969695741","https://openalex.org/W3034490926","https://openalex.org/W3101493857","https://openalex.org/W4242053016","https://openalex.org/W4289146347","https://openalex.org/W6606067566","https://openalex.org/W6628261430","https://openalex.org/W6638523607","https://openalex.org/W6639703010","https://openalex.org/W6640425456","https://openalex.org/W6674330103","https://openalex.org/W6676935882","https://openalex.org/W6677580257","https://openalex.org/W6679436768","https://openalex.org/W6695838908","https://openalex.org/W6698200048","https://openalex.org/W6712237015","https://openalex.org/W6714069269","https://openalex.org/W6717974185","https://openalex.org/W6718639682","https://openalex.org/W6730470330","https://openalex.org/W6734345789","https://openalex.org/W6736558013","https://openalex.org/W6746693533","https://openalex.org/W6747838042","https://openalex.org/W6748082217","https://openalex.org/W6748475379","https://openalex.org/W6748544737","https://openalex.org/W6749023905","https://openalex.org/W6750186640","https://openalex.org/W6752600739","https://openalex.org/W6753009900","https://openalex.org/W6753172360","https://openalex.org/W6754842125","https://openalex.org/W6755424845","https://openalex.org/W6757088580","https://openalex.org/W6757483233","https://openalex.org/W6758096801","https://openalex.org/W6760122430","https://openalex.org/W6761032921","https://openalex.org/W6762270585","https://openalex.org/W6763342643","https://openalex.org/W6765676005"],"related_works":["https://openalex.org/W2990887689","https://openalex.org/W3042794281","https://openalex.org/W2807765471","https://openalex.org/W3126165290","https://openalex.org/W2961904611","https://openalex.org/W3034754805","https://openalex.org/W3007253935","https://openalex.org/W2990218685","https://openalex.org/W3094350273","https://openalex.org/W3095428824","https://openalex.org/W3090384356","https://openalex.org/W2990347604","https://openalex.org/W2806377849","https://openalex.org/W2995785030","https://openalex.org/W3092684592","https://openalex.org/W2397892449","https://openalex.org/W2791798235","https://openalex.org/W2185776495","https://openalex.org/W1503331694","https://openalex.org/W1552859953"],"abstract_inverted_index":{"Deep":[0],"Neural":[1,65],"Network":[2],"(DNN)":[3],"workloads":[4],"are":[5,46,59,115],"quickly":[6],"moving":[7],"from":[8],"datacenters":[9],"onto":[10],"edge":[11,29,43,173,184],"devices,":[12],"for":[13],"latency,":[14],"privacy,":[15],"or":[16],"energy":[17],"reasons.":[18],"While":[19],"datacenter":[20],"networks":[21,31,45,114,170],"can":[22,75,100],"be":[23,69,102],"protected":[24],"using":[25],"conventional":[26],"cybersecurity":[27],"measures,":[28],"neural":[30,44,113,169],"bring":[32],"a":[33,177],"host":[34],"of":[35,97,128,163,168,179],"new":[36,140],"security":[37],"challenges.":[38],"Unlike":[39],"classic":[40],"IoT":[41],"applications,":[42],"typically":[47],"very":[48,70],"compute":[49],"and":[50,57,63,74,95,124,145,149,166,175,181],"memory":[51],"intensive,":[52],"their":[53],"execution":[54],"is":[55],"data-independent,":[56],"they":[58,83],"robust":[60],"to":[61,72,117,153],"noise":[62],"faults.":[64],"network":[66,99],"models":[67],"may":[68,121],"expensive":[71],"develop,":[73],"potentially":[76,108],"reveal":[77],"information":[78],"about":[79],"the":[80,98,126,129,154,161],"private":[81],"data":[82],"were":[84],"trained":[85],"on,":[86,165],"requiring":[87,139],"special":[88],"care":[89],"in":[90,104,147,172],"distribution.":[91],"The":[92],"hidden":[93],"states":[94],"outputs":[96],"also":[101],"used":[103],"reconstructing":[105],"user":[106],"inputs,":[107],"violating":[109],"users'":[110],"privacy.":[111],"Furthermore,":[112],"vulnerable":[116],"adversarial":[118],"attacks,":[119],"which":[120],"cause":[122],"misclassifications":[123],"violate":[125],"integrity":[127],"output.":[130],"These":[131],"properties":[132],"add":[133],"challenges":[134],"when":[135],"securing":[136],"edge-deployed":[137],"DNNs,":[138],"considerations,":[141],"threat":[142],"models,":[143],"priorities,":[144],"approaches":[146],"securely":[148],"privately":[150],"deploying":[151],"DNNs":[152],"edge.":[155],"In":[156],"this":[157],"work,":[158],"we":[159],"cover":[160],"landscape":[162],"attacks":[164,180],"defenses,":[167],"deployed":[171],"devices":[174],"provide":[176],"taxonomy":[178],"defenses":[182],"targeting":[183],"DNNs.":[185]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2021,"cited_by_count":3}],"updated_date":"2026-03-10T16:38:18.471706","created_date":"2025-10-10T00:00:00"}