{"id":"https://openalex.org/W4416250894","doi":"https://doi.org/10.1109/ijcnn64981.2025.11227740","title":"MTD-Net: Moving Target Defense for Defending Neural Networks Adversarial Attacks","display_name":"MTD-Net: Moving Target Defense for Defending Neural Networks Adversarial Attacks","publication_year":2025,"publication_date":"2025-06-30","ids":{"openalex":"https://openalex.org/W4416250894","doi":"https://doi.org/10.1109/ijcnn64981.2025.11227740"},"language":null,"primary_location":{"id":"doi:10.1109/ijcnn64981.2025.11227740","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn64981.2025.11227740","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 International Joint Conference on Neural Networks (IJCNN)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5104268369","display_name":"Zeshan Pang","orcid":null},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Zeshan Pang","raw_affiliation_strings":["College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation"],"affiliations":[{"raw_affiliation_string":"College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5084835984","display_name":"Shasha Guo","orcid":"https://orcid.org/0000-0002-3308-9123"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shasha Guo","raw_affiliation_strings":["College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation"],"affiliations":[{"raw_affiliation_string":"College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5082791472","display_name":"Yuyuan Sun","orcid":"https://orcid.org/0000-0002-7492-0315"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yuyuan Sun","raw_affiliation_strings":["College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation"],"affiliations":[{"raw_affiliation_string":"College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087978275","display_name":"Rongtao Liao","orcid":"https://orcid.org/0009-0005-8269-4871"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Rongtao Liao","raw_affiliation_strings":["College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation"],"affiliations":[{"raw_affiliation_string":"College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056431006","display_name":"Xuehu Yan","orcid":"https://orcid.org/0000-0001-6388-1720"},"institutions":[{"id":"https://openalex.org/I170215575","display_name":"National University of Defense Technology","ror":"https://ror.org/05d2yfz11","country_code":"CN","type":"education","lineage":["https://openalex.org/I170215575"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xuehu Yan","raw_affiliation_strings":["College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation"],"affiliations":[{"raw_affiliation_string":"College of Electronic Engineering, National University of Defense Technology,Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation","institution_ids":["https://openalex.org/I170215575"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5089358541","display_name":"Yuliang Lu","orcid":"https://orcid.org/0000-0002-8502-9907"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yuliang Lu","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5104268369"],"corresponding_institution_ids":["https://openalex.org/I170215575"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.18248014,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"8"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9886000156402588,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9886000156402588,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11273","display_name":"Advanced Graph Neural Networks","score":0.00279999990016222,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12026","display_name":"Explainable Artificial Intelligence (XAI)","score":0.001500000013038516,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.8973000049591064},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.7587000131607056},{"id":"https://openalex.org/keywords/inference","display_name":"Inference","score":0.661300003528595},{"id":"https://openalex.org/keywords/predictability","display_name":"Predictability","score":0.6370000243186951},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.6180999875068665},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5608000159263611},{"id":"https://openalex.org/keywords/deep-neural-networks","display_name":"Deep neural networks","score":0.5472999811172485}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.8973000049591064},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.782800018787384},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.7587000131607056},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.661300003528595},{"id":"https://openalex.org/C197640229","wikidata":"https://www.wikidata.org/wiki/Q2534066","display_name":"Predictability","level":2,"score":0.6370000243186951},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6247000098228455},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.6180999875068665},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5608000159263611},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.5472999811172485},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.44269999861717224},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.38760000467300415},{"id":"https://openalex.org/C2779304628","wikidata":"https://www.wikidata.org/wiki/Q3503480","display_name":"Face (sociological concept)","level":2,"score":0.38119998574256897},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.3458999991416931},{"id":"https://openalex.org/C51632099","wikidata":"https://www.wikidata.org/wiki/Q3985153","display_name":"Training set","level":2,"score":0.3073999881744385},{"id":"https://openalex.org/C41065033","wikidata":"https://www.wikidata.org/wiki/Q2825412","display_name":"Adversary","level":2,"score":0.2921999990940094},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.28940001130104065},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.2847999930381775}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ijcnn64981.2025.11227740","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn64981.2025.11227740","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 International Joint Conference on Neural Networks (IJCNN)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":13,"referenced_works":["https://openalex.org/W2117876524","https://openalex.org/W2194775991","https://openalex.org/W2243397390","https://openalex.org/W2892090366","https://openalex.org/W2963299894","https://openalex.org/W2963857521","https://openalex.org/W2964137095","https://openalex.org/W2988043334","https://openalex.org/W3087792431","https://openalex.org/W3107235539","https://openalex.org/W3198840923","https://openalex.org/W3206981768","https://openalex.org/W4392699575"],"related_works":[],"abstract_inverted_index":{"Deep":[0],"learning":[1],"models":[2],"face":[3],"the":[4,27,32,64,67,72,83,129],"threat":[5],"of":[6,34,63,66,107],"adversarial":[7,42,168],"attacks,":[8],"which":[9,56],"challenges":[10],"their":[11,111],"application.":[12],"Moving":[13],"Target":[14],"Defense":[15],"(MTD)":[16],"is":[17,171],"a":[18,48,53,78],"defense":[19,43,166],"paradigm":[20],"that":[21,74,157],"thwarts":[22],"attacks":[23,169],"by":[24],"constantly":[25],"changing":[26],"targets\u2019":[28],"features":[29],"and":[30,51,60,109,151,170],"restricting":[31],"predictability":[33],"targets.":[35],"Recent":[36],"works":[37],"have":[38],"applied":[39],"MTD":[40,76,165],"in":[41,77],"but":[44],"rely":[45],"on":[46,95,144],"maintaining":[47],"model":[49],"set":[50],"assuming":[52],"weak":[54],"adversary,":[55],"causes":[57],"extra":[58],"storage":[59],"unreliable":[61],"evaluation":[62],"robustness":[65],"methods.":[68],"This":[69],"paper":[70],"proposes":[71],"MTD-Net":[73,86,102,119,133,143,158],"realizes":[75],"single":[79],"neural":[80],"network.":[81],"In":[82],"training":[84],"stage,":[85],"parameters":[87,108,118],"are":[88,123],"randomly":[89],"disabled":[90],"to":[91,163,173],"ensure":[92],"desirable":[93],"accuracy":[94],"diversified":[96],"parameter":[97],"groups.":[98],"During":[99],"each":[100],"query,":[101],"dynamically":[103],"chooses":[104,120],"several":[105],"groups":[106],"aggregates":[110],"inference":[112,122],"results":[113,155],"for":[114,121,126],"final":[115],"prediction.":[116],"The":[117,153],"unpredictable,":[124],"even":[125],"adversaries":[127],"possessing":[128],"model\u2019s":[130],"weights.":[131],"Thus,":[132],"achieves":[134,159],"factual":[135],"unpredictability":[136],"under":[137,167],"strong":[138],"whitebox":[139],"attacks.":[140],"We":[141],"evaluate":[142],"two":[145],"widely":[146],"used":[147],"datasets,":[148],"i.e.,":[149],"GTSRB":[150],"CIFAR10.":[152],"experimental":[154],"demonstrate":[156],"superior":[160],"performance":[161],"compared":[162],"existing":[164],"applicable":[172],"multiple":[174],"architectures.":[175]},"counts_by_year":[],"updated_date":"2026-04-09T08:11:56.329763","created_date":"2025-11-14T00:00:00"}