{"id":"https://openalex.org/W4413010799","doi":"https://doi.org/10.1109/tpami.2025.3596462","title":"Real-World Adversarial Defense Against Patch Attacks Based on Diffusion Model","display_name":"Real-World Adversarial Defense Against Patch Attacks Based on Diffusion Model","publication_year":2025,"publication_date":"2025-08-06","ids":{"openalex":"https://openalex.org/W4413010799","doi":"https://doi.org/10.1109/tpami.2025.3596462","pmid":"https://pubmed.ncbi.nlm.nih.gov/40768456"},"language":"en","primary_location":{"id":"doi:10.1109/tpami.2025.3596462","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tpami.2025.3596462","pdf_url":null,"source":{"id":"https://openalex.org/S199944782","display_name":"IEEE Transactions on Pattern Analysis and Machine Intelligence","issn_l":"0162-8828","issn":["0162-8828","1939-3539","2160-9292"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Pattern Analysis and Machine Intelligence","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","pubmed"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5049695114","display_name":"Xingxing Wei","orcid":"https://orcid.org/0000-0002-0778-8377"},"institutions":[{"id":"https://openalex.org/I4210100255","display_name":"Beijing Academy of Artificial Intelligence","ror":"https://ror.org/016a74861","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210100255"]},{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Xingxing Wei","raw_affiliation_strings":["Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China"],"affiliations":[{"raw_affiliation_string":"Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I4210100255"]},{"raw_affiliation_string":"Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China","institution_ids":["https://openalex.org/I82880672","https://openalex.org/I4210100255"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5048132729","display_name":"Caixin Kang","orcid":null},"institutions":[{"id":"https://openalex.org/I4210100255","display_name":"Beijing Academy of Artificial Intelligence","ror":"https://ror.org/016a74861","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210100255"]},{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Caixin Kang","raw_affiliation_strings":["Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China"],"affiliations":[{"raw_affiliation_string":"Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I4210100255"]},{"raw_affiliation_string":"Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China","institution_ids":["https://openalex.org/I82880672","https://openalex.org/I4210100255"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068755794","display_name":"Yinpeng Dong","orcid":"https://orcid.org/0000-0003-1299-683X"},"institutions":[{"id":"https://openalex.org/I4210100255","display_name":"Beijing Academy of Artificial Intelligence","ror":"https://ror.org/016a74861","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210100255"]},{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yinpeng Dong","raw_affiliation_strings":["Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, Department of Computer Science and Technology, Tsinghua University, Beijing, China","Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, China"],"affiliations":[{"raw_affiliation_string":"Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, Department of Computer Science and Technology, Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]},{"raw_affiliation_string":"Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, China","institution_ids":["https://openalex.org/I4210100255"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Zhengyi Wang","orcid":"https://orcid.org/0009-0002-7349-8703"},"institutions":[{"id":"https://openalex.org/I4210100255","display_name":"Beijing Academy of Artificial Intelligence","ror":"https://ror.org/016a74861","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210100255"]},{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhengyi Wang","raw_affiliation_strings":["Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, Department of Computer Science and Technology, Tsinghua University, Beijing, China","Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, China"],"affiliations":[{"raw_affiliation_string":"Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, Department of Computer Science and Technology, Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]},{"raw_affiliation_string":"Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, China","institution_ids":["https://openalex.org/I4210100255"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5048633696","display_name":"Shouwei Ruan","orcid":"https://orcid.org/0009-0007-0481-5855"},"institutions":[{"id":"https://openalex.org/I4210100255","display_name":"Beijing Academy of Artificial Intelligence","ror":"https://ror.org/016a74861","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210100255"]},{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shouwei Ruan","raw_affiliation_strings":["Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China"],"affiliations":[{"raw_affiliation_string":"Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I4210100255"]},{"raw_affiliation_string":"Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China","institution_ids":["https://openalex.org/I82880672","https://openalex.org/I4210100255"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5074010547","display_name":"Yubo Chen","orcid":"https://orcid.org/0009-0000-1197-0959"},"institutions":[{"id":"https://openalex.org/I4210100255","display_name":"Beijing Academy of Artificial Intelligence","ror":"https://ror.org/016a74861","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210100255"]},{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yubo Chen","raw_affiliation_strings":["Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China"],"affiliations":[{"raw_affiliation_string":"Institute of Artificial Intelligence, State Key Laboratory of Virtual Reality Technology and Systems, Beihang University, Beijing, China","institution_ids":["https://openalex.org/I4210100255"]},{"raw_affiliation_string":"Institute of Artificial Intelligence, Beihang University, No.37, Xueyuan Road, Haidian District, Beijing, P.R. China","institution_ids":["https://openalex.org/I82880672","https://openalex.org/I4210100255"]}]},{"author_position":"last","author":{"id":null,"display_name":"Hang Su","orcid":"https://orcid.org/0000-0001-8294-6315"},"institutions":[{"id":"https://openalex.org/I4210100255","display_name":"Beijing Academy of Artificial Intelligence","ror":"https://ror.org/016a74861","country_code":"CN","type":"other","lineage":["https://openalex.org/I4210100255"]},{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hang Su","raw_affiliation_strings":["Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, Department of Computer Science and Technology, Tsinghua University, Beijing, China","Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, China"],"affiliations":[{"raw_affiliation_string":"Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, Department of Computer Science and Technology, Tsinghua University, Beijing, China","institution_ids":["https://openalex.org/I99065089"]},{"raw_affiliation_string":"Institute for Artificial Intelligence, Beijing National Research Center for Information Science and Technology, China","institution_ids":["https://openalex.org/I4210100255"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5049695114"],"corresponding_institution_ids":["https://openalex.org/I4210100255","https://openalex.org/I82880672"],"apc_list":null,"apc_paid":null,"fwci":2.1983,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.86743129,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":95},"biblio":{"volume":"47","issue":"12","first_page":"11124","last_page":"11140"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.7175999879837036,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.7175999879837036,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.7142999768257141,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13192","display_name":"Forensic Fingerprint Detection Methods","score":0.6123999953269958,"subfield":{"id":"https://openalex.org/subfields/3311","display_name":"Safety Research"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.7781014442443848},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6392849087715149},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5373669266700745},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3923543393611908},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.34622499346733093}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.7781014442443848},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6392849087715149},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5373669266700745},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3923543393611908},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.34622499346733093}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tpami.2025.3596462","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tpami.2025.3596462","pdf_url":null,"source":{"id":"https://openalex.org/S199944782","display_name":"IEEE Transactions on Pattern Analysis and Machine Intelligence","issn_l":"0162-8828","issn":["0162-8828","1939-3539","2160-9292"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Pattern Analysis and Machine Intelligence","raw_type":"journal-article"},{"id":"pmid:40768456","is_oa":false,"landing_page_url":"https://pubmed.ncbi.nlm.nih.gov/40768456","pdf_url":null,"source":{"id":"https://openalex.org/S4306525036","display_name":"PubMed","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE transactions on pattern analysis and machine intelligence","raw_type":null}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[{"id":"https://openalex.org/F4320335787","display_name":"Fundamental Research Funds for the Central Universities","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":42,"referenced_works":["https://openalex.org/W639708223","https://openalex.org/W2108598243","https://openalex.org/W2183341477","https://openalex.org/W2243397390","https://openalex.org/W2535873859","https://openalex.org/W2607219512","https://openalex.org/W2774018344","https://openalex.org/W2774644650","https://openalex.org/W2902867332","https://openalex.org/W2946727698","https://openalex.org/W2962785568","https://openalex.org/W2963302614","https://openalex.org/W2963485691","https://openalex.org/W2963857521","https://openalex.org/W2990945337","https://openalex.org/W3048431450","https://openalex.org/W3127986341","https://openalex.org/W3128390792","https://openalex.org/W3138516171","https://openalex.org/W3176477939","https://openalex.org/W3179647175","https://openalex.org/W3202052293","https://openalex.org/W3204155906","https://openalex.org/W3213472242","https://openalex.org/W4221139075","https://openalex.org/W4226232092","https://openalex.org/W4282936640","https://openalex.org/W4312610155","https://openalex.org/W4312918928","https://openalex.org/W4312933868","https://openalex.org/W4313180120","https://openalex.org/W4382318250","https://openalex.org/W4386071495","https://openalex.org/W4386076667","https://openalex.org/W4388430402","https://openalex.org/W4390099286","https://openalex.org/W4390190766","https://openalex.org/W4394602955","https://openalex.org/W4402727695","https://openalex.org/W4402776114","https://openalex.org/W4404819869","https://openalex.org/W4409263302"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2502115930","https://openalex.org/W2482350142","https://openalex.org/W4246396837","https://openalex.org/W3126451824","https://openalex.org/W1561927205","https://openalex.org/W2033914206","https://openalex.org/W2042327336"],"abstract_inverted_index":{"Adversarial":[0,57],"patches":[1,73],"present":[2],"significant":[3,162],"challenges":[4],"to":[5,41,67,117,184],"the":[6,13,34,47,53,56,64,81,110,113,121,171,188,194],"robustness":[7],"of":[8,15,36,49,55,83,112,180,197],"deep":[9],"learning":[10],"models,":[11],"making":[12],"development":[14],"effective":[16],"defenses":[17],"become":[18],"critical":[19],"for":[20,123,170],"real-world":[21,139],"applications.":[22],"This":[23],"paper":[24],"introduces":[25],"DIFFender,":[26,198],"a":[27,37,89,161,212],"novel":[28],"DIFfusion-based":[29],"DeFender":[30],"framework":[31],"that":[32],"leverages":[33],"power":[35],"text-guided":[38],"diffusion":[39,65,91,115],"model":[40,66,92,116],"counter":[42],"adversarial":[43,72,146,165,207],"patch":[44,84,166,208],"attacks.":[45,147],"At":[46],"core":[48],"our":[50],"approach":[51],"is":[52],"discovery":[54],"Anomaly":[58],"Perception":[59],"(AAP)":[60],"phenomenon,":[61],"which":[62,199],"enables":[63],"accurately":[68],"detect":[69],"and":[70,86,132,151,157,205],"locate":[71],"by":[74],"analyzing":[75],"distributional":[76],"anomalies.":[77],"DIFFender":[78,102],"seamlessly":[79],"integrates":[80],"tasks":[82,119],"localization":[85],"restoration":[87],"within":[88],"unified":[90],"framework,":[93],"enhancing":[94],"defense":[95,118,167,214],"efficacy":[96],"through":[97],"their":[98],"close":[99],"interaction.":[100],"Additionally,":[101],"employs":[103],"an":[104],"efficient":[105],"few-shot":[106],"prompt-tuning":[107],"algorithm,":[108],"facilitating":[109],"adaptation":[111],"pre-trained":[114],"without":[120],"need":[122],"extensive":[124],"retraining.":[125],"Our":[126],"comprehensive":[127],"evaluation,":[128],"covering":[129],"image":[130],"classification":[131],"face":[133],"recognition":[134],"tasks,":[135],"as":[136,138],"well":[137],"scenarios,":[140],"demonstrates":[141],"DIFFender's":[142],"robust":[143],"performance":[144],"against":[145,202],"The":[148],"framework's":[149],"versatility":[150],"generalizability":[152],"across":[153],"various":[154],"settings,":[155],"classifiers,":[156],"attack":[158],"methodologies":[159],"mark":[160],"advancement":[163],"in":[164],"strategies.":[168],"Except":[169],"popular":[172],"visible":[173,206],"domain,":[174],"we":[175,192],"have":[176],"identified":[177],"another":[178],"advantage":[179],"DIFFender:":[181],"its":[182],"capability":[183],"easily":[185],"expand":[186],"into":[187],"infrared":[189,204],"domain.":[190],"Consequently,":[191],"demonstrate":[193],"good":[195],"flexibility":[196],"can":[200],"defend":[201],"both":[203],"attacks":[209],"alternatively":[210],"using":[211],"universal":[213],"framework.":[215]},"counts_by_year":[{"year":2025,"cited_by_count":1}],"updated_date":"2026-04-09T08:11:56.329763","created_date":"2025-10-10T00:00:00"}