Adversarial examples detection through the sensitivity in space mappings. Issue 5 (23rd April 2020)
- Record Type:
- Journal Article
- Title:
- Adversarial examples detection through the sensitivity in space mappings. Issue 5 (23rd April 2020)
- Main Title:
- Adversarial examples detection through the sensitivity in space mappings
- Authors:
- Li, Xurong
Ji, Shouling
Ji, Juntao
Ren, Zhenyu
Wu, Chunming
Li, Bo
Wang, Ting - Abstract:
- Abstract : Adversarial examples (AEs) against deep neural networks (DNNs) raise wide concerns about the robustness of DNNs. Existing detection mechanisms are often limited to a given attack algorithm. Therefore, it is highly desirable to develop a robust detection approach that remains effective for a large group of attack algorithms. In addition, most of the existing defences only perform well for small images (e.g. MNIST and Canadian institute for advanced research (CIFAR)) rather than large images (e.g. ImageNet). In this paper, the authors propose a robust and effective defence method for analysing the sensitivity of various AEs, especially in a much harder case (large images). Their method first creates a feature map from the input space to the new feature space, by utilising 19 different feature mapping methods. Then, a detector is learned with the machine‐learning algorithm to recognise the unique distribution of AEs. Their extensive evaluations on their proposed detector show that their detector can achieve: (i) low false‐positive rate (<1%), (ii) high true‐positive rate (higher than 98%), (iii) low overhead (<0.1 s per input), and (iv) good robustness (work well across different learning models, attack algorithms, and parameters), which demonstrate the efficacy of the proposed detector in practise.
- Is Part Of:
- IET computer vision. Volume 14:Issue 5(2020)
- Journal:
- IET computer vision
- Issue:
- Volume 14:Issue 5(2020)
- Issue Display:
- Volume 14, Issue 5 (2020)
- Year:
- 2020
- Volume:
- 14
- Issue:
- 5
- Issue Sort Value:
- 2020-0014-0005-0000
- Page Start:
- 201
- Page End:
- 213
- Publication Date:
- 2020-04-23
- Subjects:
- learning (artificial intelligence) -- neural nets -- object detection
AE detection -- feature space -- feature mapping -- machine learning -- adversarial examples detection -- space mappings -- deep neural networks -- DNN -- detection mechanisms
Computer vision -- Periodicals
Pattern recognition systems -- Periodicals
006.37 - Journal URLs:
- http://digital-library.theiet.org/content/journals/iet-cvi ↗
http://www.ietdl.org/IET-CVI ↗
https://ietresearch.onlinelibrary.wiley.com/journal/17519640 ↗
http://www.theiet.org/ ↗ - DOI:
- 10.1049/iet-cvi.2019.0378 ↗
- Languages:
- English
- ISSNs:
- 1751-9632
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 4363.252250
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 16688.xml