{"id":"https://openalex.org/W3163711566","doi":"https://doi.org/10.1109/tc.2021.3076826","title":"An Efficient Preprocessing-Based Approach to Mitigate Advanced Adversarial Attacks","display_name":"An Efficient Preprocessing-Based Approach to Mitigate Advanced Adversarial Attacks","publication_year":2021,"publication_date":"2021-04-30","ids":{"openalex":"https://openalex.org/W3163711566","doi":"https://doi.org/10.1109/tc.2021.3076826","mag":"3163711566"},"language":"en","primary_location":{"id":"doi:10.1109/tc.2021.3076826","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tc.2021.3076826","pdf_url":null,"source":{"id":"https://openalex.org/S157670870","display_name":"IEEE Transactions on Computers","issn_l":"0018-9340","issn":["0018-9340","1557-9956","2326-3814"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Computers","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5019692903","display_name":"Han Qiu","orcid":"https://orcid.org/0000-0003-2678-8070"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Han Qiu","raw_affiliation_strings":["Institute for Network Sciences and Cyberspace, Beijing National Research Center for Information Science and Technology, Tsinghua University, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0003-2678-8070","affiliations":[{"raw_affiliation_string":"Institute for Network Sciences and Cyberspace, Beijing National Research Center for Information Science and Technology, Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5025846619","display_name":"Yi Zeng","orcid":"https://orcid.org/0000-0002-9595-9091"},"institutions":[{"id":"https://openalex.org/I36258959","display_name":"University of California San Diego","ror":"https://ror.org/0168r3w48","country_code":"US","type":"education","lineage":["https://openalex.org/I36258959"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Yi Zeng","raw_affiliation_strings":["University of California San Diego, San Diego, CA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of California San Diego, San Diego, CA, USA","institution_ids":["https://openalex.org/I36258959"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5065248294","display_name":"Qinkai Zheng","orcid":"https://orcid.org/0000-0002-5391-9446"},"institutions":[{"id":"https://openalex.org/I183067930","display_name":"Shanghai Jiao Tong University","ror":"https://ror.org/0220qvk04","country_code":"CN","type":"education","lineage":["https://openalex.org/I183067930"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Qinkai Zheng","raw_affiliation_strings":["Shanghai Jiao Tong University, Shanghai, China"],"raw_orcid":"https://orcid.org/0000-0002-5391-9446","affiliations":[{"raw_affiliation_string":"Shanghai Jiao Tong University, Shanghai, China","institution_ids":["https://openalex.org/I183067930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5073264981","display_name":"Shangwei Guo","orcid":"https://orcid.org/0000-0002-6443-5308"},"institutions":[{"id":"https://openalex.org/I158842170","display_name":"Chongqing University","ror":"https://ror.org/023rhb549","country_code":"CN","type":"education","lineage":["https://openalex.org/I158842170"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shangwei Guo","raw_affiliation_strings":["College of Computer Science, Chongqing University, Chongqing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"College of Computer Science, Chongqing University, Chongqing, China","institution_ids":["https://openalex.org/I158842170"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101591101","display_name":"Tianwei Zhang","orcid":"https://orcid.org/0000-0001-6595-6650"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Tianwei Zhang","raw_affiliation_strings":["Nanyang Technological University, Singapore"],"raw_orcid":"https://orcid.org/0000-0001-6595-6650","affiliations":[{"raw_affiliation_string":"Nanyang Technological University, Singapore","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5011803365","display_name":"Hewu Li","orcid":"https://orcid.org/0000-0002-6331-6542"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hewu Li","raw_affiliation_strings":["Institute for Network Sciences and Cyberspace, Beijing National Research Center for Information Science and Technology, Tsinghua University, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-6331-6542","affiliations":[{"raw_affiliation_string":"Institute for Network Sciences and Cyberspace, Beijing National Research Center for Information Science and Technology, Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5019692903"],"corresponding_institution_ids":["https://openalex.org/I99065089"],"apc_list":null,"apc_paid":null,"fwci":2.9385,"has_fulltext":false,"cited_by_count":33,"citation_normalized_percentile":{"value":0.92374274,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":"73","issue":"3","first_page":"645","last_page":"655"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9753999710083008,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9593999981880188,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8407810926437378},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.6783269643783569},{"id":"https://openalex.org/keywords/preprocessor","display_name":"Preprocessor","score":0.6590495109558105},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.6553581953048706},{"id":"https://openalex.org/keywords/usability","display_name":"Usability","score":0.5394684672355652},{"id":"https://openalex.org/keywords/computer-engineering","display_name":"Computer engineering","score":0.4735642671585083},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.4696098268032074},{"id":"https://openalex.org/keywords/deep-neural-networks","display_name":"Deep neural networks","score":0.4559181332588196},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4422135055065155},{"id":"https://openalex.org/keywords/distributed-computing","display_name":"Distributed computing","score":0.4285734295845032},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.4009447395801544},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3748224377632141},{"id":"https://openalex.org/keywords/human\u2013computer-interaction","display_name":"Human\u2013computer interaction","score":0.172345370054245}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8407810926437378},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.6783269643783569},{"id":"https://openalex.org/C34736171","wikidata":"https://www.wikidata.org/wiki/Q918333","display_name":"Preprocessor","level":2,"score":0.6590495109558105},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.6553581953048706},{"id":"https://openalex.org/C170130773","wikidata":"https://www.wikidata.org/wiki/Q216378","display_name":"Usability","level":2,"score":0.5394684672355652},{"id":"https://openalex.org/C113775141","wikidata":"https://www.wikidata.org/wiki/Q428691","display_name":"Computer engineering","level":1,"score":0.4735642671585083},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.4696098268032074},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.4559181332588196},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4422135055065155},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.4285734295845032},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.4009447395801544},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3748224377632141},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.172345370054245},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tc.2021.3076826","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tc.2021.3076826","pdf_url":null,"source":{"id":"https://openalex.org/S157670870","display_name":"IEEE Transactions on Computers","issn_l":"0018-9340","issn":["0018-9340","1557-9956","2326-3814"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Computers","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G4430707556","display_name":null,"funder_award_id":"Tier 1 RS02/19","funder_id":"https://openalex.org/F4320320751","funder_display_name":"Ministry of Education - Singapore"},{"id":"https://openalex.org/G7675662412","display_name":null,"funder_award_id":"61832013","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320320751","display_name":"Ministry of Education - Singapore","ror":"https://ror.org/01kcva023"},{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":56,"referenced_works":["https://openalex.org/W9657784","https://openalex.org/W1673923490","https://openalex.org/W1945616565","https://openalex.org/W2031614119","https://openalex.org/W2064076387","https://openalex.org/W2108598243","https://openalex.org/W2180612164","https://openalex.org/W2183341477","https://openalex.org/W2230740169","https://openalex.org/W2243397390","https://openalex.org/W2269778407","https://openalex.org/W2607219512","https://openalex.org/W2618043096","https://openalex.org/W2620038827","https://openalex.org/W2736899637","https://openalex.org/W2765424254","https://openalex.org/W2765725061","https://openalex.org/W2768346313","https://openalex.org/W2774018344","https://openalex.org/W2810611310","https://openalex.org/W2913848079","https://openalex.org/W2954978443","https://openalex.org/W2962759300","https://openalex.org/W2962933288","https://openalex.org/W2963001136","https://openalex.org/W2963268689","https://openalex.org/W2963384482","https://openalex.org/W2963542245","https://openalex.org/W2963744840","https://openalex.org/W2963857521","https://openalex.org/W2964082701","https://openalex.org/W2981860227","https://openalex.org/W2990270730","https://openalex.org/W3037830434","https://openalex.org/W3102720581","https://openalex.org/W3103340107","https://openalex.org/W3103557498","https://openalex.org/W3103836116","https://openalex.org/W3132864771","https://openalex.org/W4383466480","https://openalex.org/W6637162671","https://openalex.org/W6640425456","https://openalex.org/W6689238212","https://openalex.org/W6737043114","https://openalex.org/W6741036071","https://openalex.org/W6744679260","https://openalex.org/W6744996944","https://openalex.org/W6745272055","https://openalex.org/W6746402973","https://openalex.org/W6747920752","https://openalex.org/W6748475379","https://openalex.org/W6752931940","https://openalex.org/W6758975236","https://openalex.org/W6762488536","https://openalex.org/W6762749081","https://openalex.org/W6774549192"],"related_works":["https://openalex.org/W2950183588","https://openalex.org/W3080754722","https://openalex.org/W4383221314","https://openalex.org/W3093978547","https://openalex.org/W2953536436","https://openalex.org/W3203790781","https://openalex.org/W2997056298","https://openalex.org/W4313346231","https://openalex.org/W2738001131","https://openalex.org/W4285785480"],"abstract_inverted_index":{"Deep":[0],"Neural":[1],"Networks":[2],"are":[3],"well-known":[4],"to":[5,8],"be":[6],"vulnerable":[7],"Adversarial":[9],"Examples.":[10],"Recently,":[11],"advanced":[12,115],"gradient-based":[13],"attacks":[14,47,66],"were":[15],"proposed":[16],"(e.g.,":[17],"BPDA":[18],"and":[19,27,67,89,97,114,118],"EOT),":[20],"which":[21],"can":[22,108],"significantly":[23],"increase":[24],"the":[25,41,54,90,94,129],"difficulty":[26],"complexity":[28],"of":[29,43,64,92],"designing":[30],"effective":[31],"defenses.":[32],"In":[33],"this":[34],"paper,":[35],"we":[36,59,80],"present":[37],"a":[38,73,82],"study":[39],"towards":[40],"opportunity":[42],"mitigating":[44],"those":[45,65],"powerful":[46],"with":[48,86],"only":[49],"pre-processing":[50],"operations.":[51],"We":[52],"make":[53],"following":[55],"two":[56],"contributions.":[57],"First,":[58],"perform":[60],"an":[61],"in-depth":[62],"analysis":[63],"summarize":[68],"three":[69],"fundamental":[70],"properties":[71,88],"that":[72,105],"good":[74],"defense":[75,122],"solution":[76],"should":[77],"have.":[78],"Second,":[79],"design":[81],"lightweight":[83],"preprocessing":[84],"function":[85],"these":[87,100],"capability":[91],"preserving":[93],"model's":[95],"usability":[96],"robustness":[98],"against":[99],"threats.":[101],"Extensive":[102],"evaluations":[103],"indicate":[104],"our":[106],"solutions":[107,123],"effectively":[109],"mitigate":[110],"all":[111],"existing":[112],"standard":[113],"attack":[116],"techniques,":[117],"beat":[119],"11":[120],"state-of-the-art":[121],"published":[124],"in":[125],"top-tier":[126],"conferences":[127],"over":[128],"past":[130],"2":[131],"years.":[132]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":7},{"year":2023,"cited_by_count":6},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":5}],"updated_date":"2026-05-08T15:41:06.802602","created_date":"2025-10-10T00:00:00"}