{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T05:04:02Z","timestamp":1780031042866,"version":"3.53.1"},"reference-count":46,"publisher":"IEEE","license":[{"start":{"date-parts":[[2026,4,8]],"date-time":"2026-04-08T00:00:00Z","timestamp":1775606400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,4,8]],"date-time":"2026-04-08T00:00:00Z","timestamp":1775606400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026,4,8]]},"DOI":"10.1109\/isqed69900.2026.11534688","type":"proceedings-article","created":{"date-parts":[[2026,5,28]],"date-time":"2026-05-28T22:26:58Z","timestamp":1780007218000},"page":"1-6","source":"Crossref","is-referenced-by-count":0,"title":["Evolving Landscape of Attacks on AI Hardware and Robust Defenses"],"prefix":"10.1109","author":[{"given":"Habibur","family":"Rahaman","sequence":"first","affiliation":[{"name":"University of Florida,Department of Electrical and Computer Engineering,Gainesville,FL,USA,32611"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Sudipta","family":"Paria","sequence":"additional","affiliation":[{"name":"University of Florida,Department of Electrical and Computer Engineering,Gainesville,FL,USA,32611"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Atri","family":"Chatterjee","sequence":"additional","affiliation":[{"name":"University of Florida,Department of Electrical and Computer Engineering,Gainesville,FL,USA,32611"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Swarup","family":"Bhunia","sequence":"additional","affiliation":[{"name":"University of Florida,Department of Electrical and Computer Engineering,Gainesville,FL,USA,32611"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2024.3509372"},{"key":"ref2","article-title":"Daash: A meta-attack framework for synthesizing effective and stealthy adversarial examples","author":"Nafi","year":"2025","journal-title":"arXiv preprint arXiv:2508.13309"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/ICCV.2019.00130"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3278519"},{"key":"ref5","article-title":"CSI NN: Reverse engineering of neural network architectures through electromagnetic side channel","volume-title":"28th USENIX Security Symposium (USENIX Security 19)","author":"Batina"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/DAC.2018.8465773"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/MDT.2010.7"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/JSSC.2016.2616357"},{"key":"ref9","article-title":"Fault attacks on secure chips","author":"Skorobogatov","year":"2011","journal-title":"Design and Security of Cryptographic Algorithms and Devices"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/2678373.2665726"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-48405-1_25"},{"key":"ref12","first-page":"2329","article-title":"Aegis: Mitigating targeted bit-flip attacks against deep neural networks","volume-title":"32nd USENIX Security Symposium (USENIX Security 23)","author":"Wang"},{"key":"ref13","article-title":"Secure and storage-efficient deep learning models for edge ai using automatic weight generation","author":"Rahaman","year":"2025","journal-title":"arXiv preprint arXiv:2507.06380"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2023.3333164"},{"key":"ref15","first-page":"2003","article-title":"Cache telepathy: Leveraging shared resource attacks to learn DNN architectures","volume-title":"29th USENIX Security Symposium (USENIX Security 20)","author":"Yan"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/ATS64447.2024.10915428"},{"key":"ref17","article-title":"Dnn-alias: Deep neural network protection against side-channel attacks via layer balancing","author":"Ahmadi","year":"2023","journal-title":"arXiv preprint arXiv:2303.06746"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/ATS64447.2024.10915238"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2024.3355816"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23291"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/MWSCAS57524.2023.10406065"},{"key":"ref22","article-title":"Badnets: Identifying vulnerabilities in the machine learning model supply chain","author":"Gu","year":"2017","journal-title":"arXiv preprint arXiv:1708.06733"},{"key":"ref23","article-title":"Spw: An ecc-based fault tolerance approach for dnns","author":"Raji","year":"2025","journal-title":"arXiv preprint arXiv:2508.12347"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/JPROC.2012.2188769"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/ICCAD51958.2021.9643556"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/ATS64447.2024.10915409"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-48405-1_26"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.23919\/DATE48585.2020.9116340"},{"key":"ref29","article-title":"Shield: An adaptive and lightweight defense against the remote power side-channel attacks on multi-tenant fpgas","author":"Ahmadi","year":"2023","journal-title":"arXiv preprint arXiv:2303.06486"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00031"},{"key":"ref31","article-title":"Spectral signatures in backdoor attacks","author":"Tran","year":"2018","journal-title":"Advances in Neural Information Processing Systems (NeurIPS)"},{"key":"ref32","article-title":"Detecting backdoor attacks on deep neural networks by activation clustering","author":"Chen","year":"2018","journal-title":"arXiv:1811.03728"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.3390\/electronics12040853"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.23919\/DATE64628.2025.10993193"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/ASP-DAC58780.2024.10473947"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2025.241463"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.3390\/info16040293"},{"key":"ref38","doi-asserted-by":"publisher","DOI":"10.1109\/DAC63849.2025.11132622"},{"issue":"3","key":"ref39","article-title":"The Algorithmic Foundations of Differential Privacy, ser. Foundations and Trends in Theoretical Computer Science","volume":"9","author":"Dwork","year":"2014"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1038\/s41598-025-98473-3"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3133982"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1609\/aaai.v37i2.25299"},{"key":"ref43","article-title":"Pruning filters for efficient convnets","volume-title":"International Conference on Learning Representations (ICLR) Workshop Track","volume":"20","author":"Li"},{"key":"ref44","article-title":"Deep compression: Compressing deep neural networks with pruning, trained quantization and huffman coding","volume-title":"International Conference on Learning Representations (ICLR) Workshop Track","author":"Han"},{"key":"ref45","article-title":"Explaining and harnessing adversarial examples","author":"Goodfellow","year":"2015","journal-title":"arXiv:1412.6572"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1038\/s41598-023-40807-0"}],"event":{"name":"2026 27th International Symposium on Quality Electronic Design (ISQED)","location":"San Francisco, CA, USA","start":{"date-parts":[[2026,4,8]]},"end":{"date-parts":[[2026,4,10]]}},"container-title":["2026 27th International Symposium on Quality Electronic Design (ISQED)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11534651\/11534652\/11534688.pdf?arnumber=11534688","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T04:24:57Z","timestamp":1780028697000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11534688\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,4,8]]},"references-count":46,"URL":"https:\/\/doi.org\/10.1109\/isqed69900.2026.11534688","relation":{},"subject":[],"published":{"date-parts":[[2026,4,8]]}}}