Adversarial sample detection method and device, computing equipment and computer storage medium

A technique for adversarial samples and detection methods, applied in the field of machine learning

Active Publication Date: 2020-01-31
DONGGUAN UNIV OF TECH
View PDF3 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Currently, there is no adversarial example dete

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Adversarial sample detection method and device, computing equipment and computer storage medium
  • Adversarial sample detection method and device, computing equipment and computer storage medium
  • Adversarial sample detection method and device, computing equipment and computer storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0037] In order to make the objectives, technical solutions and advantages of the embodiments of the present application clearer, the various embodiments of the present application will be described in detail below with reference to the accompanying drawings. However, those of ordinary skill in the art can understand that, in each implementation manner of the present application, many technical details are provided for readers to better understand the present application. However, even without these technical details and various changes and modifications based on the following implementation modes, the technical solution claimed in this application can also be realized.

[0038] The application scenario of the embodiment of the present invention is the adversarial example detection of the classification target model, wherein the classification target model is any classification model in the existing machine learning. For different target models, the trained detectors are diffe...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to the technical field of machine learning, and discloses an adversarial sample detection method and device, computing equipment and a computer storage medium. The method comprises the following steps: acquiring a training sample and a corresponding training sample label, wherein the training sample label comprises a normal sample and an adversarial sample; inputting the training sample into a target model to obtain a first prediction score vector of the training sample; adding N times of random disturbance to the training sample to obtain N groups of contrast training samples; respectively inputting the N groups of contrast training samples into a target model to obtain a second prediction score vector of each group of contrast training samples; constructing featuredata according to the first prediction score vector and the second prediction score vector of each group of contrast training samples; training a classification model according to the feature data andthe training sample label corresponding to the feature data to obtain a detector; and detecting the input test data according to the detector. According to the embodiment of the invention, reliable detection of the adversarial sample can be realized according to the detector.

Description

technical field [0001] The present application relates to the technical field of machine learning, and in particular to an adversarial sample detection method, device, computing device and computer storage medium. Background technique [0002] As an important data analysis tool, machine learning is widely used in many application fields such as biometric identification, automobile automatic driving, and machine vision. While machine learning brings great convenience to people, it also exposes some security issues. Adding small, imperceptible perturbations to the original samples generates adversarial samples, and machine learning models are vulnerable to adversarial samples. For example, according to the characteristics of the facial recognition model, the facial recognition model can make wrong classifications by adding small perturbations to the original facial pictures. There are also malicious controls for autonomous car driving, voice control systems, and more. Attac...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06K9/62G06N20/00
CPCG06N20/00G06F18/241G06F18/214G06N7/01G06N5/02
Inventor 王艺黄波王炜
Owner DONGGUAN UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap