Backdoor Threats in Variational Quantum Circuits: Taxonomy, Attacks, and Defenses
TLDR
This paper surveys backdoor attacks in Variational Quantum Circuits (VQCs), detailing their taxonomy, attack mechanisms, and defense strategies.
Key contributions
- Surveys backdoor attacks in Variational Quantum Circuits (VQCs).
- Categorizes attacks: data-poisoning, compiler-level, and quantum-native.
- Formalizes threat models and reviews existing attack strategies.
- Analyzes current detection and defense methods, highlighting limitations.
Why it matters
Variational Quantum Circuits (VQCs), crucial for NISQ, are highly vulnerable to backdoor attacks that embed hidden malicious behaviors. This survey provides a critical overview of attack types, defense limitations, and future directions for robust, quantum-aware security.
Original Abstract
Variational quantum algorithms (VQAs) are a central paradigm for noisy intermediate-scale (NISQ) quantum computing, yet their reliance on predesigned and pretrained variational quantum circuits (VQCs) introduces critical security vulnerabilities, particularly backdoor attacks. These attacks embed hidden malicious behaviors that remain dormant under normal conditions but are activated by specific triggers, leading to adversarial outcomes such as incorrect predictions or manipulated objective values. This paper presents a survey of backdoor attacks in VQCs, covering data-poisoning, compiler-level, and quantum-native mechanisms. We formalize key terminology and threat models, and review existing attack strategies along with their empirical characteristics. We also analyze current detection and defense approaches, highlighting their limitations, especially against quantum-specific threats. By synthesizing recent advances, this survey outlines the evolving security landscape of VQCs and identifies key challenges and future directions for developing robust, quantum-aware defenses in hybrid quantum-classical systems.
📬 Weekly AI Paper Digest
Get the top 10 AI/ML arXiv papers from the week — summarized, scored, and delivered to your inbox every Monday.