To improve the efficiency of the traffic signal control and alleviate traffic congestion, many researchers focus on applying deep reinforcement learning (DRL) for traffic signal control systems (TSCS). The TSCS consider all the vehicles’ waiting time around the intersection and decrease them so as to alleviate the traffic congestion. However, it has been confirmed that the DRL model is vulnerable to backdoor attacks. In this paper, we propose the first backdoor attack against DRL based TSCS. We define a special drive behavior as malicious input (called trigger). Once the trigger is activated via an attacker, the TSCS will only take into waiting time for the attacker’s vehicle at the intersection. Our empirical experiments show that our proposed backdoor attacks are effective with negligible impact on TSCS’s normal operation.
2023-12-14
2024-11-15