Deep learning adversarial attack defense method based on generative adversarial network

A deep learning and adversarial technology, applied in the field of artificial intelligence, can solve problems such as low security, inability to solve deep learning adversarial sample attacks, etc., to achieve high security, solve adversarial sample attacks, and improve defense capabilities.

Active Publication Date: 2018-07-24
ZHEJIANG UNIV OF TECH
View PDF4 Cites 102 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] In order to overcome the inability of existing technologies to solve deep learning-oriented adversarial sample attacks and low security, the pr...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Deep learning adversarial attack defense method based on generative adversarial network
  • Deep learning adversarial attack defense method based on generative adversarial network
  • Deep learning adversarial attack defense method based on generative adversarial network

Examples

Experimental program
Comparison scheme
Effect test

example

[0054] Example: apply the method for generating a unified adversarial attack model of the present invention to an image, and generate an adversarial sample corresponding to the image. like image 3 shown. (a) is the original image, (b) is the perturbed image generated by the unified model, and (c) is the adversarial attack sample image generated by the unified model.

[0055] Apply it to attacks on face images, such as Figure 4 As shown, (a) is the original image, (b) is the perturbed image generated by the unified model, and (c) is the adversarial attack sample image generated by the unified model.

[0056] Apply the method of this embodiment to attack four network models: AlexNet, Inception-v3, Inception-v4 and Resnet-v2-101 models, and compare the attack success rate with other attack methods. Table 1 shows different attack algorithms Attack results for different ratios of model combinations (%)

[0057] w1:w2:w3:w4

1:0:0:0

0:1:0:0

0:0:1:0

0:0:0:1...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a deep learning adversarial attack defense method based on a generative adversarial network. The method comprises the following steps: step 1), based on the high performance ofthe generative adversarial network in learning sample distribution, designing a method for generating an adversarial example through the generative adversarial network, and after adding a target modelnetwork set TMi, enabling the sample generation based on a G network to become a multi-objective optimization problem; and the training for an AG-GAN model is mainly for the parameter training of thegenerative network G and a discrimination network D, and is divided into three modules; and step 2), using the adversarial example generated by the AG-GAN to train an attacked deep learning model, soas to improve the capability of the deep learning model of defending different types of adversarial examples. The deep learning adversarial attack defense method based on the generative adversarial network provided by the invention effectively improves the security.

Description

technical field [0001] The invention belongs to the security field of machine learning methods in the field of artificial intelligence. Aiming at the threat of adversarial sample attacks in deep learning methods in current machine learning, a deep learning adversarial attack defense method based on an adversarial generation network is proposed, which effectively improves its safety. Background technique [0002] Due to its good learning performance, the deep neural network model has been widely used in the real world, including computer vision, natural language processing, bioinformatics analysis, etc. Especially in the field of computer vision, driven by competitions such as ILSVRC and Kaggle, deep neural networks have shown more advanced performance than other machine learning methods. Graves et al. designed a new deep learning system, Differentiable Neural Computer (DNC), which introduces peripheral knowledge into deep learning. proposed a new type of neural network st...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L12/24H04L29/06G06K9/62G06N99/00
CPCH04L41/145H04L63/1441G06N20/00G06F18/24
Inventor 陈晋音郑海斌熊晖苏蒙蒙林翔俞山青宣琦
Owner ZHEJIANG UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap