Robust source camera identification against adversarial attacks. Issue 100 (January 2021)
- Record Type:
- Journal Article
- Title:
- Robust source camera identification against adversarial attacks. Issue 100 (January 2021)
- Main Title:
- Robust source camera identification against adversarial attacks
- Authors:
- Lin, Hui
Wo, Yan
Wu, Yuanlu
Meng, Ke
Han, Guoqiang - Abstract:
- Abstract: Application of Deep Neural Networks (DNN) has dramatically improved the performance of Source Camera Identification (SCI), but easily suffers from adversarial attacks. These attacks raise security problems by tampering the identified outcomes with imperceptible noise. To address this issue, we analyze the feature extraction mapping for DNN-based SCI models on manifolds and discover that the vulnerability comes from the oscillation of the mapping. In light of this, we take that the feature extraction mapping should satisfy locally smooth and information monotonicity as a new design principle for robust SCI, and accordingly developed a defensive scheme. The proposed scheme constructs local smooth mapping that guarantees information monotonicity and achieves sufficient statistics by minimizing Kullback Leibler Divergence (KLD) between the local statistic coordinates on two manifolds. To enhance the usability of our method, we implement it with a Pre-Defense Network (PDN) trained by a two-phase training strategy, which ensures robustness, accuracy, and portability. Experiments on Dresden Image Dataset demonstrate that the proposed defense method offers not only strong robustness for the DNN-based SCI model against adversarial attacks, but also yields comparable or even superior identification performance over existing defense methods. Moreover, PDN also shows defense effect when migrated to other DNN-based SCI models, without extra retraining.
- Is Part Of:
- Computers & security. Issue 100(2021)
- Journal:
- Computers & security
- Issue:
- Issue 100(2021)
- Issue Display:
- Volume 100, Issue 100 (2021)
- Year:
- 2021
- Volume:
- 100
- Issue:
- 100
- Issue Sort Value:
- 2021-0100-0100-0000
- Page Start:
- Page End:
- Publication Date:
- 2021-01
- Subjects:
- Source camera identification -- Robustness -- Adversarial attacks -- Deep neural networks -- Smooth mapping -- Information monotonicity
00-01 -- 99-00
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2020.102079 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 15367.xml