Artificial intelligence security and privacy: a survey

Xinlei He; Guowen Xu; Xingshuo Han; Qian Wang; Lingchen Zhao; Chao Shen; Chenhao Lin; Zhengyu Zhao; Qian Li; Le Yang; Shouling Ji; Shaofeng Li; Haojin Zhu; Zhibo Wang; Rui Zheng; Tianqing Zhu; Qi Li; Chaoxiang He; Qifan Wang; Hongsheng Hu; Shuo Wang; Shi Feng Sun; Hongwei Yao; Zhan Qin; Kai Chen; Yue Zhao; Hongwei Li; Xinyi Huang; Dengguo Feng

doi:10.1007/s11432-025-4388-5

Artificial intelligence security and privacy: a survey

Xinlei He
, Guowen Xu
, Xingshuo Han
, Qian Wang
, Lingchen Zhao
, Chao Shen
, Chenhao Lin
, Zhengyu Zhao
, Qian Li
, Le Yang
, Shouling Ji
, Shaofeng Li
, Haojin Zhu
, Zhibo Wang
, Rui Zheng
, Tianqing Zhu
, Qi Li
, Chaoxiang He
, Qifan Wang
, Hongsheng Hu

Shuo Wang, Shi Feng Sun, Hongwei Yao, Zhan Qin, Kai Chen, Yue Zhao, Hongwei Li, Xinyi Huang, Dengguo Feng

电子与信息学部

The Hong Kong University of Science and Technology (Guangzhou)
University of Electronic Science and Technology of China
Nanyang Technological University
Wuhan University
Xi'an Jiaotong University
Zhejiang University
Southeast University, Nanjing
Shanghai Jiao Tong University
City University of Macau
Tsinghua University
University of Birmingham
University of Newcastle
CAS - Institute of Information Engineering
Jinan University
State Key Laboratory of Cryptology

科研成果: 期刊稿件 › 文献综述 › 同行评审

16 引用（Scopus）

摘要

Artificial intelligence (AI) is revolutionizing both industries and reshaping the global economy. However, the rapid advancement of AI technologies brings significant security and privacy challenges. Recent incidents highlight vulnerabilities in AI systems, such as data leakage and malicious code injection, leading to severe financial losses and privacy breaches. Although existing studies have discussed specific security threats, they often lack detailed granularity and cover a limited scope. In this survey, we fill this gap by systematically categorizing and analyzing the threats and countermeasures in AI systems, which span both the training and inference stages, encompass centralized and distributed settings, and address both conventional and foundation AI models. By reviewing existing literature, we aim to provide AI researchers and practitioners with a thorough understanding of system vulnerabilities and current countermeasures. We hope to inspire further research into robust solutions, ultimately contributing to the development of resilient AI technologies.

源语言	英语
文章编号	181101
期刊	Science China Information Sciences
卷	68
期	8
DOI	https://doi.org/10.1007/s11432-025-4388-5
出版状态	已出版 - 8月 2025

访问文件

10.1007/s11432-025-4388-5

其它文件与链接

链接到 Scopus 的出版物

引用此

@article{410d8e00573845c9ac52f452c39205e4,

title = "Artificial intelligence security and privacy: a survey",

abstract = "Artificial intelligence (AI) is revolutionizing both industries and reshaping the global economy. However, the rapid advancement of AI technologies brings significant security and privacy challenges. Recent incidents highlight vulnerabilities in AI systems, such as data leakage and malicious code injection, leading to severe financial losses and privacy breaches. Although existing studies have discussed specific security threats, they often lack detailed granularity and cover a limited scope. In this survey, we fill this gap by systematically categorizing and analyzing the threats and countermeasures in AI systems, which span both the training and inference stages, encompass centralized and distributed settings, and address both conventional and foundation AI models. By reviewing existing literature, we aim to provide AI researchers and practitioners with a thorough understanding of system vulnerabilities and current countermeasures. We hope to inspire further research into robust solutions, ultimately contributing to the development of resilient AI technologies.",

keywords = "adversarial attacks, artificial intelligence security and privacy, attacks against large language models, backdoor, data poisoning, distributed training and inference defenses, model extraction, privacy inference",

author = "Xinlei He and Guowen Xu and Xingshuo Han and Qian Wang and Lingchen Zhao and Chao Shen and Chenhao Lin and Zhengyu Zhao and Qian Li and Le Yang and Shouling Ji and Shaofeng Li and Haojin Zhu and Zhibo Wang and Rui Zheng and Tianqing Zhu and Qi Li and Chaoxiang He and Qifan Wang and Hongsheng Hu and Shuo Wang and Sun, \{Shi Feng\} and Hongwei Yao and Zhan Qin and Kai Chen and Yue Zhao and Hongwei Li and Xinyi Huang and Dengguo Feng",

note = "Publisher Copyright: {\textcopyright} The Author(s) 2025.",

year = "2025",

month = aug,

doi = "10.1007/s11432-025-4388-5",

language = "英语",

volume = "68",

journal = "Science China Information Sciences",

issn = "1674-733X",

publisher = "Science China Press ",

number = "8",

}

He, X, Xu, G, Han, X, Wang, Q, Zhao, L, Shen, C, Lin, C, Zhao, Z, Li, Q, Yang, L, Ji, S, Li, S, Zhu, H, Wang, Z, Zheng, R, Zhu, T, Li, Q, He, C, Wang, Q, Hu, H, Wang, S, Sun, SF, Yao, H, Qin, Z, Chen, K, Zhao, Y, Li, H, Huang, X & Feng, D 2025, 'Artificial intelligence security and privacy: a survey', Science China Information Sciences, 卷 68, 号码 8, 181101. https://doi.org/10.1007/s11432-025-4388-5

TY - JOUR

T1 - Artificial intelligence security and privacy

T2 - a survey

AU - He, Xinlei

AU - Xu, Guowen

AU - Han, Xingshuo

AU - Wang, Qian

AU - Zhao, Lingchen

AU - Shen, Chao

AU - Lin, Chenhao

AU - Zhao, Zhengyu

AU - Li, Qian

AU - Yang, Le

AU - Ji, Shouling

AU - Li, Shaofeng

AU - Zhu, Haojin

AU - Wang, Zhibo

AU - Zheng, Rui

AU - Zhu, Tianqing

AU - Li, Qi

AU - He, Chaoxiang

AU - Wang, Qifan

AU - Hu, Hongsheng

AU - Wang, Shuo

AU - Sun, Shi Feng

AU - Yao, Hongwei

AU - Qin, Zhan

AU - Chen, Kai

AU - Zhao, Yue

AU - Li, Hongwei

AU - Huang, Xinyi

AU - Feng, Dengguo

PY - 2025/8

Y1 - 2025/8

N2 - Artificial intelligence (AI) is revolutionizing both industries and reshaping the global economy. However, the rapid advancement of AI technologies brings significant security and privacy challenges. Recent incidents highlight vulnerabilities in AI systems, such as data leakage and malicious code injection, leading to severe financial losses and privacy breaches. Although existing studies have discussed specific security threats, they often lack detailed granularity and cover a limited scope. In this survey, we fill this gap by systematically categorizing and analyzing the threats and countermeasures in AI systems, which span both the training and inference stages, encompass centralized and distributed settings, and address both conventional and foundation AI models. By reviewing existing literature, we aim to provide AI researchers and practitioners with a thorough understanding of system vulnerabilities and current countermeasures. We hope to inspire further research into robust solutions, ultimately contributing to the development of resilient AI technologies.

AB - Artificial intelligence (AI) is revolutionizing both industries and reshaping the global economy. However, the rapid advancement of AI technologies brings significant security and privacy challenges. Recent incidents highlight vulnerabilities in AI systems, such as data leakage and malicious code injection, leading to severe financial losses and privacy breaches. Although existing studies have discussed specific security threats, they often lack detailed granularity and cover a limited scope. In this survey, we fill this gap by systematically categorizing and analyzing the threats and countermeasures in AI systems, which span both the training and inference stages, encompass centralized and distributed settings, and address both conventional and foundation AI models. By reviewing existing literature, we aim to provide AI researchers and practitioners with a thorough understanding of system vulnerabilities and current countermeasures. We hope to inspire further research into robust solutions, ultimately contributing to the development of resilient AI technologies.

KW - adversarial attacks

KW - artificial intelligence security and privacy

KW - attacks against large language models

KW - backdoor

KW - data poisoning

KW - distributed training and inference defenses

KW - model extraction

KW - privacy inference

UR - https://www.scopus.com/pages/publications/105009967082

U2 - 10.1007/s11432-025-4388-5

DO - 10.1007/s11432-025-4388-5

M3 - 文献综述

AN - SCOPUS:105009967082

SN - 1674-733X

VL - 68

JO - Science China Information Sciences

JF - Science China Information Sciences

IS - 8

M1 - 181101

ER -

Artificial intelligence security and privacy: a survey

摘要

访问文件

其它文件与链接

学术指纹

引用此