{"id":"https://openalex.org/W4403321913","doi":"https://doi.org/10.48550/arxiv.2409.14119","title":"Obliviate: Neutralizing Task-agnostic Backdoors within the Parameter-efficient Fine-tuning Paradigm","display_name":"Obliviate: Neutralizing Task-agnostic Backdoors within the Parameter-efficient Fine-tuning Paradigm","publication_year":2024,"publication_date":"2024-09-21","ids":{"openalex":"https://openalex.org/W4403321913","doi":"https://doi.org/10.48550/arxiv.2409.14119"},"language":"en","primary_location":{"id":"pmh:oai:arXiv.org:2409.14119","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2409.14119","pdf_url":"https://arxiv.org/pdf/2409.14119","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"type":"preprint","indexed_in":["arxiv","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2409.14119","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101858950","display_name":"Jaehan Kim","orcid":"https://orcid.org/0000-0001-8048-097X"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Kim, Jaehan","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087779165","display_name":"Minkyoo Song","orcid":"https://orcid.org/0009-0004-1597-2053"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Song, Minkyoo","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020454074","display_name":"Seung Ho Na","orcid":"https://orcid.org/0000-0003-0908-1233"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Na, Seung Ho","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5084473174","display_name":"Seungwon Shin","orcid":"https://orcid.org/0000-0002-1077-5606"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Shin, Seungwon","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5101858950"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T13219","display_name":"Mind wandering and attention","score":0.8492000102996826,"subfield":{"id":"https://openalex.org/subfields/2805","display_name":"Cognitive Neuroscience"},"field":{"id":"https://openalex.org/fields/28","display_name":"Neuroscience"},"domain":{"id":"https://openalex.org/domains/1","display_name":"Life Sciences"}},"topics":[{"id":"https://openalex.org/T13219","display_name":"Mind wandering and attention","score":0.8492000102996826,"subfield":{"id":"https://openalex.org/subfields/2805","display_name":"Cognitive Neuroscience"},"field":{"id":"https://openalex.org/fields/28","display_name":"Neuroscience"},"domain":{"id":"https://openalex.org/domains/1","display_name":"Life Sciences"}},{"id":"https://openalex.org/T10054","display_name":"Parallel Computing and Optimization Techniques","score":0.7634000182151794,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10462","display_name":"Reinforcement Learning in Robotics","score":0.7225000262260437,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/task","display_name":"Task (project management)","score":0.6179839372634888},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5756253004074097},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.40454399585723877},{"id":"https://openalex.org/keywords/human\u2013computer-interaction","display_name":"Human\u2013computer interaction","score":0.3483850955963135},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.11065420508384705},{"id":"https://openalex.org/keywords/systems-engineering","display_name":"Systems engineering","score":0.078756183385849}],"concepts":[{"id":"https://openalex.org/C2780451532","wikidata":"https://www.wikidata.org/wiki/Q759676","display_name":"Task (project management)","level":2,"score":0.6179839372634888},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5756253004074097},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.40454399585723877},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.3483850955963135},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.11065420508384705},{"id":"https://openalex.org/C201995342","wikidata":"https://www.wikidata.org/wiki/Q682496","display_name":"Systems engineering","level":1,"score":0.078756183385849}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:arXiv.org:2409.14119","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2409.14119","pdf_url":"https://arxiv.org/pdf/2409.14119","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"doi:10.48550/arxiv.2409.14119","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2409.14119","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2409.14119","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2409.14119","pdf_url":"https://arxiv.org/pdf/2409.14119","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4403321913.pdf"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W3196817267","https://openalex.org/W1976600725"],"abstract_inverted_index":{"Parameter-efficient":[0],"fine-tuning":[1],"(PEFT)":[2],"has":[3],"become":[4],"a":[5,32,60],"key":[6],"training":[7],"strategy":[8],"for":[9],"large":[10],"language":[11],"models.":[12],"However,":[13],"its":[14],"reliance":[15],"on":[16,31],"fewer":[17],"trainable":[18],"parameters":[19],"poses":[20],"security":[21],"risks,":[22],"such":[23],"as":[24],"task-agnostic":[25,47,104],"backdoors.":[26],"Despite":[27],"their":[28],"severe":[29],"impact":[30],"wide":[33],"range":[34],"of":[35,52,80,101],"tasks,":[36],"there":[37],"is":[38],"no":[39],"practical":[40],"defense":[41,112],"solution":[42],"available":[43],"that":[44,91],"effectively":[45],"counters":[46],"backdoors":[48,105,117],"within":[49,73],"the":[50,78,97,102],"context":[51],"PEFT.":[53],"In":[54],"this":[55],"study,":[56],"we":[57],"introduce":[58],"Obliviate,":[59],"PEFT-integrable":[61],"backdoor":[62],"defense.":[63],"We":[64],"develop":[65],"two":[66],"techniques":[67],"aimed":[68],"at":[69,126],"amplifying":[70],"benign":[71],"neurons":[72],"PEFT":[74,88],"layers":[75],"and":[76,118],"penalizing":[77],"influence":[79],"trigger":[81],"tokens.":[82],"Our":[83],"evaluations":[84],"across":[85],"three":[86],"major":[87],"architectures":[89],"show":[90],"our":[92,108],"method":[93,109],"can":[94],"significantly":[95],"reduce":[96],"attack":[98],"success":[99],"rate":[100],"state-of-the-art":[103],"(83.6%$\\downarrow$).":[106],"Furthermore,":[107],"exhibits":[110],"robust":[111],"capabilities":[113],"against":[114],"both":[115],"task-specific":[116],"adaptive":[119],"attacks.":[120],"Source":[121],"code":[122],"will":[123],"be":[124],"obtained":[125],"https://github.com/obliviateARR/Obliviate.":[127]},"counts_by_year":[],"updated_date":"2026-03-10T16:38:18.471706","created_date":"2025-10-10T00:00:00"}