{"id":"https://openalex.org/W7138877696","doi":"https://doi.org/10.48550/arxiv.2603.17914","title":"Noise-Aware Misclassification Attack Detection in Collaborative DNN Inference","display_name":"Noise-Aware Misclassification Attack Detection in Collaborative DNN Inference","publication_year":2026,"publication_date":"2026-03-18","ids":{"openalex":"https://openalex.org/W7138877696","doi":"https://doi.org/10.48550/arxiv.2603.17914"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2603.17914","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2603.17914","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2603.17914","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5089969522","display_name":"Shima Yousefi","orcid":"https://orcid.org/0000-0003-1533-4065"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Yousefi, Shima","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5015917097","display_name":"Saptarshi Debroy","orcid":"https://orcid.org/0000-0002-4783-119X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Debroy, Saptarshi","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5089969522"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.8973000049591064,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.8973000049591064,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.017799999564886093,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10036","display_name":"Advanced Neural Network Applications","score":0.010400000028312206,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.6694999933242798},{"id":"https://openalex.org/keywords/inference","display_name":"Inference","score":0.641700029373169},{"id":"https://openalex.org/keywords/autoencoder","display_name":"Autoencoder","score":0.6200000047683716},{"id":"https://openalex.org/keywords/anomaly-detection","display_name":"Anomaly detection","score":0.5737000107765198},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.508400022983551},{"id":"https://openalex.org/keywords/noise","display_name":"Noise (video)","score":0.46129998564720154},{"id":"https://openalex.org/keywords/object-detection","display_name":"Object detection","score":0.4514000117778778},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.4147000014781952},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.4138999879360199},{"id":"https://openalex.org/keywords/feature-extraction","display_name":"Feature extraction","score":0.41359999775886536}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7530999779701233},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.6694999933242798},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6425999999046326},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.641700029373169},{"id":"https://openalex.org/C101738243","wikidata":"https://www.wikidata.org/wiki/Q786435","display_name":"Autoencoder","level":3,"score":0.6200000047683716},{"id":"https://openalex.org/C739882","wikidata":"https://www.wikidata.org/wiki/Q3560506","display_name":"Anomaly detection","level":2,"score":0.5737000107765198},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.5223000049591064},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.508400022983551},{"id":"https://openalex.org/C99498987","wikidata":"https://www.wikidata.org/wiki/Q2210247","display_name":"Noise (video)","level":3,"score":0.46129998564720154},{"id":"https://openalex.org/C2776151529","wikidata":"https://www.wikidata.org/wiki/Q3045304","display_name":"Object detection","level":3,"score":0.4514000117778778},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.4207000136375427},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.4147000014781952},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.4138999879360199},{"id":"https://openalex.org/C52622490","wikidata":"https://www.wikidata.org/wiki/Q1026626","display_name":"Feature extraction","level":2,"score":0.41359999775886536},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.3702999949455261},{"id":"https://openalex.org/C77052588","wikidata":"https://www.wikidata.org/wiki/Q644307","display_name":"Constant false alarm rate","level":2,"score":0.3675999939441681},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.35589998960494995},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.3474999964237213},{"id":"https://openalex.org/C2781238097","wikidata":"https://www.wikidata.org/wiki/Q175026","display_name":"Object (grammar)","level":2,"score":0.335999995470047},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.3352000117301941},{"id":"https://openalex.org/C2776836416","wikidata":"https://www.wikidata.org/wiki/Q1364844","display_name":"False alarm","level":2,"score":0.33329999446868896},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.3249000012874603},{"id":"https://openalex.org/C29265498","wikidata":"https://www.wikidata.org/wiki/Q7047719","display_name":"Noise measurement","level":3,"score":0.3248000144958496},{"id":"https://openalex.org/C51632099","wikidata":"https://www.wikidata.org/wiki/Q3985153","display_name":"Training set","level":2,"score":0.303600013256073},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.30070000886917114},{"id":"https://openalex.org/C138236772","wikidata":"https://www.wikidata.org/wiki/Q25098575","display_name":"Edge device","level":3,"score":0.2892000079154968},{"id":"https://openalex.org/C2983787585","wikidata":"https://www.wikidata.org/wiki/Q93586","display_name":"Feature matching","level":3,"score":0.2770000100135803},{"id":"https://openalex.org/C162307627","wikidata":"https://www.wikidata.org/wiki/Q204833","display_name":"Enhanced Data Rates for GSM Evolution","level":2,"score":0.2750999927520752},{"id":"https://openalex.org/C103278499","wikidata":"https://www.wikidata.org/wiki/Q254465","display_name":"Similarity (geometry)","level":3,"score":0.2718000113964081},{"id":"https://openalex.org/C31972630","wikidata":"https://www.wikidata.org/wiki/Q844240","display_name":"Computer vision","level":1,"score":0.2694999873638153},{"id":"https://openalex.org/C100675267","wikidata":"https://www.wikidata.org/wiki/Q1371624","display_name":"Background noise","level":2,"score":0.2619999945163727},{"id":"https://openalex.org/C22607594","wikidata":"https://www.wikidata.org/wiki/Q5375150","display_name":"Enabling","level":2,"score":0.25600001215934753},{"id":"https://openalex.org/C163294075","wikidata":"https://www.wikidata.org/wiki/Q581861","display_name":"Noise reduction","level":2,"score":0.2535000145435333}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2603.17914","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2603.17914","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2603.17914","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2603.17914","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Collaborative":[0],"inference":[1],"of":[2,29,53,95,117],"object":[3,111],"classification":[4,112],"Deep":[5],"neural":[6],"Networks":[7],"(DNNs)":[8],"where":[9],"resource-constrained":[10],"end-devices":[11],"offload":[12],"partially":[13],"processed":[14],"data":[15,38],"to":[16,20,36,41,47,75,98,122],"remote":[17],"edge":[18],"servers":[19],"complete":[21],"end-to-end":[22],"processing,":[23],"is":[24,34],"becoming":[25],"a":[26,61,71,86],"key":[27],"enabler":[28],"edge-AI.":[30],"However,":[31],"such":[32],"edge-offloading":[33],"vulnerable":[35],"malicious":[37],"injections":[39],"leading":[40],"stealthy":[42],"misclassifications":[43],"that":[44,90],"are":[45],"tricky":[46],"detect,":[48],"especially":[49],"in":[50],"the":[51,92,115,118],"presence":[52],"environmental":[54,96],"noise.":[55],"In":[56],"this":[57],"paper,":[58],"we":[59],"propose":[60],"semi-gray-box":[62],"and":[63,139],"noise-":[64],"aware":[65],"anomaly":[66],"detection":[67,100,120],"framework":[68,84],"fueled":[69],"by":[70,79,136],"variational":[72],"autoencoder":[73],"(VAE)":[74],"capture":[76],"deviations":[77],"caused":[78,135],"adversarial":[80],"manipulation.":[81],"The":[82],"proposed":[83,119],"incorporates":[85],"robust":[87],"noise-aware":[88],"feature":[89,137],"captures":[91],"characteristic":[93],"behavior":[94],"noise":[97,141],"improve":[99],"accuracy":[101],"while":[102,132],"reducing":[103],"false":[104],"alarm":[105],"rates.":[106],"Our":[107],"evaluation":[108],"with":[109],"popular":[110],"DNNs":[113],"demonstrate":[114],"robustness":[116],"(up":[121],"90%":[123],"AUROC":[124],"across":[125],"DNN":[126],"configurations)":[127],"under":[128],"realistic":[129],"noisy":[130],"conditions":[131],"revealing":[133],"limitations":[134],"similarity":[138],"elevated":[140],"levels.":[142]},"counts_by_year":[],"updated_date":"2026-05-05T08:41:31.759640","created_date":"2026-03-20T00:00:00"}