ResearchTrend.AI
AutoZOOM: Autoencoder-based Zeroth Order Optimization Method for Attacking Black-box Neural Networks
v1v2v3v4v5 (latest)

AutoZOOM: Autoencoder-based Zeroth Order Optimization Method for Attacking Black-box Neural Networks

Chun-Chen Tu
Pai-Shun Ting
Pin-Yu Chen
Sijia Liu
Huan Zhang
Jinfeng Yi
Cho-Jui Hsieh
Shin-Ming Cheng
ArXiv (abs)PDFHTML

Papers citing "AutoZOOM: Autoencoder-based Zeroth Order Optimization Method for Attacking Black-box Neural Networks"

50 / 215 papers shown
Title
FlowOpt: Fast Optimization Through Whole Flow Processes for Training-Free Editing
FlowOpt: Fast Optimization Through Whole Flow Processes for Training-Free Editing
Or Ronai
Vladimir Kulikov
T. Michaeli
36
0
0
24 Oct 2025
More Than Memory Savings: Zeroth-Order Optimization Mitigates Forgetting in Continual Learning
More Than Memory Savings: Zeroth-Order Optimization Mitigates Forgetting in Continual Learning
Wanhao Yu
Zheng Wang
Shuteng Niu
Sen Lin
Li Yang
CLL
56
0
0
23 Oct 2025
Federated Learning on Riemannian Manifolds: A Gradient-Free Projection-Based Approach
Federated Learning on Riemannian Manifolds: A Gradient-Free Projection-Based Approach
Hongye Wang
Zhaoye Pan
Chang He
Jiaxiang Li
Bo Jiang
76
1
0
30 Jul 2025
ChainMarks: Securing DNN Watermark with Cryptographic Chain
ChainMarks: Securing DNN Watermark with Cryptographic ChainACM Asia Conference on Computer and Communications Security (AsiaCCS), 2025
Brian Choi
Shu Wang
Isabelle Choi
Kun Sun
195
0
0
08 May 2025
GSBA$^K$: $top$-$K$ Geometric Score-based Black-box Attack
GSBAK^K: toptop-KK Geometric Score-based Black-box Attack
Md. Farhamdur Reza
Richeng Jin
Tianfu Wu
H. Dai
AAML
219
0
0
17 Mar 2025
ZOQO: Zero-Order Quantized Optimization
ZOQO: Zero-Order Quantized OptimizationIEEE International Conference on Acoustics, Speech, and Signal Processing (ICASSP), 2025
Noga Bar
Raja Giryes
MQ
41
1
0
12 Jan 2025
ElasticZO: A Memory-Efficient On-Device Learning with Combined Zeroth- and First-Order Optimization
ElasticZO: A Memory-Efficient On-Device Learning with Combined Zeroth- and First-Order Optimization
Keisuke Sugiura
Hiroki Matsutani
MQ
154
3
0
08 Jan 2025
Hard-Label Black-Box Attacks on 3D Point Clouds
Hard-Label Black-Box Attacks on 3D Point Clouds
Daizong Liu
Yunbo Tao
Pan Zhou
Wei Hu
3DPC
266
3
0
30 Nov 2024
Poor Man's Training on MCUs: A Memory-Efficient Quantized Back-Propagation-Free Approach
Poor Man's Training on MCUs: A Memory-Efficient Quantized Back-Propagation-Free Approach
Yequan Zhao
Hai Li
Ian Young
Zheng Zhang
MQ
208
3
0
07 Nov 2024
One-Index Vector Quantization Based Adversarial Attack on Image Classification
One-Index Vector Quantization Based Adversarial Attack on Image ClassificationPattern Recognition Letters (PR), 2024
Haiju Fan
Xiaona Qin
Shuang Chen
Hubert P. H. Shum
Ming Li
98
1
0
02 Sep 2024
AdvQDet: Detecting Query-Based Adversarial Attacks with Adversarial Contrastive Prompt Tuning
AdvQDet: Detecting Query-Based Adversarial Attacks with Adversarial Contrastive Prompt TuningACM Multimedia (MM), 2024
Xin Wang
Kai-xiang Chen
Jiabo He
Zhineng Chen
Jingjing Chen
Yu-Gang Jiang
AAML
197
9
0
04 Aug 2024
Sparse vs Contiguous Adversarial Pixel Perturbations in Multimodal Models: An Empirical Analysis
Sparse vs Contiguous Adversarial Pixel Perturbations in Multimodal Models: An Empirical Analysis
Cristian-Alexandru Botocan
Raphael Meier
Ljiljana Dolamic
AAML
92
0
0
25 Jul 2024
SemiAdv: Query-Efficient Black-Box Adversarial Attack with Unlabeled Images
SemiAdv: Query-Efficient Black-Box Adversarial Attack with Unlabeled Images
Mingyuan Fan
Yang Liu
Cen Chen
Ximeng Liu
AAML
79
0
0
13 Jul 2024
Invisible Optical Adversarial Stripes on Traffic Sign against Autonomous Vehicles
Invisible Optical Adversarial Stripes on Traffic Sign against Autonomous Vehicles
Dongfang Guo
Yuting Wu
Yimin Dai
Pengfei Zhou
Xin Lou
Rui Tan
95
12
0
10 Jul 2024
$L_p$-norm Distortion-Efficient Adversarial Attack
LpL_p-norm Distortion-Efficient Adversarial Attack
Chao Zhou
Yuan-Gen Wang
Zi-Jia Wang
Xiangui Kang
109
0
0
03 Jul 2024
Query-Efficient Hard-Label Black-Box Attack against Vision Transformers
Query-Efficient Hard-Label Black-Box Attack against Vision Transformers
Chao Zhou
Xiaowen Shi
Yuan-Gen Wang
ViTAAML
115
0
0
29 Jun 2024
Enhancing robustness of data-driven SHM models: adversarial training with circle loss
Enhancing robustness of data-driven SHM models: adversarial training with circle loss
Xiangli Yang
Xijie Deng
Hanwei Zhang
Yang Zou
Jianxi Yang
AAML
92
1
0
20 Jun 2024
Efficient Black-box Adversarial Attacks via Bayesian Optimization Guided by a Function Prior
Efficient Black-box Adversarial Attacks via Bayesian Optimization Guided by a Function Prior
Shuyu Cheng
Yibo Miao
Yinpeng Dong
Xiao Yang
Xiao-Shan Gao
Jun Zhu
AAML
151
6
0
29 May 2024
Double Variance Reduction: A Smoothing Trick for Composite Optimization Problems without First-Order Gradient
Double Variance Reduction: A Smoothing Trick for Composite Optimization Problems without First-Order Gradient
Hao Di
Haishan Ye
Yueling Zhang
Xiangyu Chang
Guang Dai
Ivor W. Tsang
223
1
0
28 May 2024
Evaluating Adversarial Robustness in the Spatial Frequency Domain
Evaluating Adversarial Robustness in the Spatial Frequency Domain
Keng-Hsin Liao
Chin-Yuan Yeh
Hsi-Wen Chen
Ming-Syan Chen
122
0
0
10 May 2024
Towards Efficient Training and Evaluation of Robust Models against $l_0$ Bounded Adversarial Perturbations
Towards Efficient Training and Evaluation of Robust Models against l0l_0 Bounded Adversarial Perturbations
Xuyang Zhong
Yixiao Huang
Chen Liu
AAML
53
0
0
08 May 2024
Towards a Novel Perspective on Adversarial Examples Driven by Frequency
Towards a Novel Perspective on Adversarial Examples Driven by Frequency
Zhun Zhang
Yi Zeng
Qihe Liu
Shijie Zhou
AAML
114
3
0
16 Apr 2024
BruSLeAttack: A Query-Efficient Score-Based Black-Box Sparse Adversarial Attack
BruSLeAttack: A Query-Efficient Score-Based Black-Box Sparse Adversarial Attack
Viet Vo
Ehsan Abbasnejad
Damith C. Ranasinghe
AAML
166
10
0
08 Apr 2024
Fully Zeroth-Order Bilevel Programming via Gaussian Smoothing
Fully Zeroth-Order Bilevel Programming via Gaussian Smoothing
Alireza Aghasi
Saeed Ghadimi
161
4
0
29 Mar 2024
Hard-label based Small Query Black-box Adversarial Attack
Hard-label based Small Query Black-box Adversarial AttackIEEE Workshop/Winter Conference on Applications of Computer Vision (WACV), 2024
Jeonghwan Park
Paul Miller
Niall McLaughlin
MLAU
91
10
0
09 Mar 2024
Verification of Neural Networks' Global Robustness
Verification of Neural Networks' Global Robustness
Anan Kabaha
Dana Drachsler-Cohen
AAMLOOD
191
11
0
29 Feb 2024
Sparse MeZO: Less Parameters for Better Performance in Zeroth-Order LLM Fine-Tuning
Sparse MeZO: Less Parameters for Better Performance in Zeroth-Order LLM Fine-Tuning
Yong Liu
Zirui Zhu
Chaoyu Gong
Minhao Cheng
Cho-Jui Hsieh
Yang You
MoE
133
32
0
24 Feb 2024
Revisiting Zeroth-Order Optimization for Memory-Efficient LLM Fine-Tuning: A Benchmark
Revisiting Zeroth-Order Optimization for Memory-Efficient LLM Fine-Tuning: A Benchmark
Yihua Zhang
Pingzhi Li
Junyuan Hong
Jiaxiang Li
Yimeng Zhang
...
Wotao Yin
Mingyi Hong
Zhangyang Wang
Sijia Liu
Tianlong Chen
273
91
0
18 Feb 2024
Trust Regions for Explanations via Black-Box Probabilistic Certification
Trust Regions for Explanations via Black-Box Probabilistic Certification
Amit Dhurandhar
Swagatam Haldar
Dennis L. Wei
Karthikeyan N. Ramamurthy
FAtt
232
3
0
17 Feb 2024
Black-Box Tuning of Vision-Language Models with Effective Gradient Approximation
Black-Box Tuning of Vision-Language Models with Effective Gradient Approximation
Zixian Guo
Yuxiang Wei
Ming-Yu Liu
Zhilong Ji
Jinfeng Bai
Yiwen Guo
Wangmeng Zuo
VLM
128
9
0
26 Dec 2023
DTA: Distribution Transform-based Attack for Query-Limited Scenario
DTA: Distribution Transform-based Attack for Query-Limited Scenario
Renyang Liu
Wei Zhou
Xin Jin
Song Gao
Yuanyu Wang
Ruxin Wang
108
0
0
12 Dec 2023
SoK: Pitfalls in Evaluating Black-Box Attacks
SoK: Pitfalls in Evaluating Black-Box Attacks
Fnu Suya
Anshuman Suri
Tingwei Zhang
Jingtao Hong
Yuan Tian
David Evans
AAML
252
7
0
26 Oct 2023
Boosting Black-box Attack to Deep Neural Networks with Conditional Diffusion Models
Boosting Black-box Attack to Deep Neural Networks with Conditional Diffusion ModelsIEEE Transactions on Information Forensics and Security (IEEE TIFS), 2023
Renyang Liu
Wei Zhou
Tianwei Zhang
Kangjie Chen
Jun Zhao
Kwok-Yan Lam
139
17
0
11 Oct 2023
ZooPFL: Exploring Black-box Foundation Models for Personalized Federated Learning
ZooPFL: Exploring Black-box Foundation Models for Personalized Federated Learning
Wang Lu
Hao Yu
Yongfeng Zhang
Damien Teney
Haohan Wang
Yiqiang Chen
Qiang Yang
Xing Xie
Xiangyang Ji
141
8
0
08 Oct 2023
Efficient Federated Prompt Tuning for Black-box Large Pre-trained Models
Efficient Federated Prompt Tuning for Black-box Large Pre-trained Models
Zihao Lin
Yan Sun
Yifan Shi
Xueqian Wang
Lifu Huang
Li Shen
Dacheng Tao
144
13
0
04 Oct 2023
DeepZero: Scaling up Zeroth-Order Optimization for Deep Model Training
DeepZero: Scaling up Zeroth-Order Optimization for Deep Model TrainingInternational Conference on Learning Representations (ICLR), 2023
Aochuan Chen
Yimeng Zhang
Jinghan Jia
James Diffenderfer
Jiancheng Liu
Konstantinos Parasyris
Yihua Zhang
Zheng Zhang
B. Kailkhura
Sijia Liu
360
72
0
03 Oct 2023
A Survey of Robustness and Safety of 2D and 3D Deep Learning Models Against Adversarial Attacks
A Survey of Robustness and Safety of 2D and 3D Deep Learning Models Against Adversarial AttacksACM Computing Surveys (ACM Comput. Surv.), 2023
Yanjie Li
Bin Xie
Songtao Guo
Yuanyuan Yang
Bin Xiao
AAML
152
26
0
01 Oct 2023
Exploring Non-additive Randomness on ViT against Query-Based Black-Box Attacks
Exploring Non-additive Randomness on ViT against Query-Based Black-Box AttacksBritish Machine Vision Conference (BMVC), 2023
Jindong Gu
Fangyun Wei
Juil Sock
Han Hu
AAML
103
1
0
12 Sep 2023
3DHacker: Spectrum-based Decision Boundary Generation for Hard-label 3D Point Cloud Attack
3DHacker: Spectrum-based Decision Boundary Generation for Hard-label 3D Point Cloud AttackIEEE International Conference on Computer Vision (ICCV), 2023
Yunbo Tao
Daizong Liu
Pan Zhou
Yulai Xie
Wei Du
Wei Hu
3DPCAAML
135
24
0
15 Aug 2023
Mirror Natural Evolution Strategies
Mirror Natural Evolution Strategies
Haishan Ye
99
5
0
01 Aug 2023
Multi-stage Neural Networks: Function Approximator of Machine Precision
Multi-stage Neural Networks: Function Approximator of Machine PrecisionJournal of Computational Physics (JCP), 2023
Yongjian Wang
Ching-Yao Lai
135
69
0
18 Jul 2023
Boosting Model Inversion Attacks with Adversarial Examples
Boosting Model Inversion Attacks with Adversarial ExamplesIEEE Transactions on Dependable and Secure Computing (IEEE TDSC), 2023
Shuai Zhou
Tianqing Zhu
Dayong Ye
Xin Yu
Wanlei Zhou
AAMLMIACV
109
23
0
24 Jun 2023
A Comprehensive Study on the Robustness of Image Classification and Object Detection in Remote Sensing: Surveying and Benchmarking
A Comprehensive Study on the Robustness of Image Classification and Object Detection in Remote Sensing: Surveying and BenchmarkingJournal of remote sensing (JRS), 2023
Shaohui Mei
Jiawei Lian
Xiaofei Wang
Yuru Su
Mingyang Ma
Lap-Pui Chau
AAML
210
12
0
21 Jun 2023
Reversible Adversarial Examples with Beam Search Attack and Grayscale Invariance
Reversible Adversarial Examples with Beam Search Attack and Grayscale Invariance
Hao Zhang
Chi Man Pun
Xia Du
AAML
74
1
0
20 Jun 2023
Improving Adversarial Transferability via Intermediate-level Perturbation Decay
Improving Adversarial Transferability via Intermediate-level Perturbation DecayNeural Information Processing Systems (NeurIPS), 2023
Qizhang Li
Yiwen Guo
W. Zuo
Hao Chen
AAML
199
29
0
26 Apr 2023
Certified Zeroth-order Black-Box Defense with Robust UNet Denoiser
Certified Zeroth-order Black-Box Defense with Robust UNet Denoiser
Astha Verma
A. Subramanyam
Siddhesh Bangar
Naman Lal
R. Shah
ShinĂ­chi Satoh
209
7
0
13 Apr 2023
Ensemble-based Blackbox Attacks on Dense Prediction
Ensemble-based Blackbox Attacks on Dense PredictionComputer Vision and Pattern Recognition (CVPR), 2023
Zikui Cai
Yaoteng Tan
M. Salman Asif
AAML
115
26
0
25 Mar 2023
An End-to-End Framework for Marketing Effectiveness Optimization under Budget Constraint
An End-to-End Framework for Marketing Effectiveness Optimization under Budget Constraint
Ziang Yan
Shusen Wang
Guorui Zhou
Jingjian Lin
Peng Jiang
OffRL
67
9
0
09 Feb 2023
Generalizable Black-Box Adversarial Attack with Meta Learning
Generalizable Black-Box Adversarial Attack with Meta LearningIEEE Transactions on Pattern Analysis and Machine Intelligence (TPAMI), 2023
Fei Yin
Yong Zhang
Baoyuan Wu
Yan Feng
Jingyi Zhang
Yanbo Fan
Yujiu Yang
AAML
159
42
0
01 Jan 2023
Publishing Efficient On-device Models Increases Adversarial Vulnerability
Publishing Efficient On-device Models Increases Adversarial Vulnerability
Sanghyun Hong
Nicholas Carlini
Alexey Kurakin
AAML
101
4
0
28 Dec 2022

We use cookies and other tracking technologies to improve your browsing experience on our website, to show you personalized content and targeted ads, to analyze our website traffic, and to understand where our visitors are coming from. See our policy.