{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2026:JYESUFPPMSVYOVZC6X567W3PCG","short_pith_number":"pith:JYESUFPP","schema_version":"1.0","canonical_sha256":"4e092a15ef64ab875722f5fbefdb6f1187dc006ca7dc62648ae411f67df20753","source":{"kind":"arxiv","id":"2603.08316","version":3},"attestation_state":"computed","paper":{"title":"SlowBA: An efficiency backdoor attack towards VLM-based GUI agents","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.CL","cs.CV"],"primary_cat":"cs.CR","authors_text":"Haojin Zhu, Haozhen Tan, Junxian Li, Tu Lan, Yan Meng","submitted_at":"2026-03-09T12:38:28Z","abstract_excerpt":"Modern vision-language-model (VLM) based graphical user interface (GUI) agents are expected not only to execute actions accurately but also to respond to user instructions with low latency. While existing research on GUI-agent security mainly focuses on manipulating action correctness, the security risks related to response efficiency remain largely unexplored. In this paper, we introduce SlowBA, a novel backdoor attack that targets the responsiveness of VLM-based GUI agents. The key idea is to manipulate response latency by inducing excessively long reasoning chains under specific trigger pat"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"2603.08316","kind":"arxiv","version":3},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2026-03-09T12:38:28Z","cross_cats_sorted":["cs.CL","cs.CV"],"title_canon_sha256":"17189ddb3763dc907cd19fa40a889615cb7290678cf99da29b2d0308f7352c1b","abstract_canon_sha256":"9b375c2660b48f2126a34abff75180d5864c1e6fc88ab5450e54137b460761ee"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-07-02T01:17:29.206402Z","signature_b64":"FojkD8XqEGh6xmzOFRhNLGjnE8AVs0+KBfGDNtqGWFyOeNz3aOuInUb5g+JbBM/0NUnIaPg++lBNbhC+rEcWBw==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"4e092a15ef64ab875722f5fbefdb6f1187dc006ca7dc62648ae411f67df20753","last_reissued_at":"2026-07-02T01:17:29.205914Z","signature_status":"signed_v1","first_computed_at":"2026-07-02T01:17:29.205914Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"SlowBA: An efficiency backdoor attack towards VLM-based GUI agents","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.CL","cs.CV"],"primary_cat":"cs.CR","authors_text":"Haojin Zhu, Haozhen Tan, Junxian Li, Tu Lan, Yan Meng","submitted_at":"2026-03-09T12:38:28Z","abstract_excerpt":"Modern vision-language-model (VLM) based graphical user interface (GUI) agents are expected not only to execute actions accurately but also to respond to user instructions with low latency. While existing research on GUI-agent security mainly focuses on manipulating action correctness, the security risks related to response efficiency remain largely unexplored. In this paper, we introduce SlowBA, a novel backdoor attack that targets the responsiveness of VLM-based GUI agents. The key idea is to manipulate response latency by inducing excessively long reasoning chains under specific trigger pat"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"2603.08316","kind":"arxiv","version":3},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"integrity":{"clean":true,"summary":{"advisory":0,"critical":0,"by_detector":{},"informational":0},"endpoint":"/pith/2603.08316/integrity.json","findings":[],"available":true,"detectors_run":[],"snapshot_sha256":"c28c3603d3b5d939e8dc4c7e95fa8dfce3d595e45f758748cecf8e644a296938"},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"2603.08316","created_at":"2026-07-02T01:17:29.205977+00:00"},{"alias_kind":"arxiv_version","alias_value":"2603.08316v3","created_at":"2026-07-02T01:17:29.205977+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.2603.08316","created_at":"2026-07-02T01:17:29.205977+00:00"},{"alias_kind":"pith_short_12","alias_value":"JYESUFPPMSVY","created_at":"2026-07-02T01:17:29.205977+00:00"},{"alias_kind":"pith_short_16","alias_value":"JYESUFPPMSVYOVZC","created_at":"2026-07-02T01:17:29.205977+00:00"},{"alias_kind":"pith_short_8","alias_value":"JYESUFPP","created_at":"2026-07-02T01:17:29.205977+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":2,"internal_anchor_count":2,"sample":[{"citing_arxiv_id":"2604.24348","citing_title":"OS-SPEAR: A Toolkit for the Safety, Performance,Efficiency, and Robustness Analysis of OS Agents","ref_index":87,"is_internal_anchor":true},{"citing_arxiv_id":"2605.07110","citing_title":"Securing Computer-Use Agents: A Unified Architecture-Lifecycle Framework for Deployment-Grounded Reliability","ref_index":145,"is_internal_anchor":true}]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG","json":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG.json","graph_json":"https://pith.science/api/pith-number/JYESUFPPMSVYOVZC6X567W3PCG/graph.json","events_json":"https://pith.science/api/pith-number/JYESUFPPMSVYOVZC6X567W3PCG/events.json","paper":"https://pith.science/paper/JYESUFPP"},"agent_actions":{"view_html":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG","download_json":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG.json","view_paper":"https://pith.science/paper/JYESUFPP","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=2603.08316&json=true","fetch_graph":"https://pith.science/api/pith-number/JYESUFPPMSVYOVZC6X567W3PCG/graph.json","fetch_events":"https://pith.science/api/pith-number/JYESUFPPMSVYOVZC6X567W3PCG/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG/action/timestamp_anchor","attest_storage":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG/action/storage_attestation","attest_author":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG/action/author_attestation","sign_citation":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG/action/citation_signature","submit_replication":"https://pith.science/pith/JYESUFPPMSVYOVZC6X567W3PCG/action/replication_record"}},"created_at":"2026-07-02T01:17:29.205977+00:00","updated_at":"2026-07-02T01:17:29.205977+00:00"}