A Defense Method for Adversarial Attacks of Deep Reinforcement Learning Models

A reinforcement learning and model technology, applied in neural learning methods, biological neural network models, platform integrity maintenance, etc., can solve problems such as neural network adversarial attacks, and achieve the effect of improving efficiency

Active Publication Date: 2021-12-07
ZHEJIANG UNIV OF TECH
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, neural networks are extremely vulnerable to adversarial attacks. Experts and scholars have also proposed many attack methods and defense methods. However, there are no patent proposals for defense methods for deep reinforcement learning.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A Defense Method for Adversarial Attacks of Deep Reinforcement Learning Models
  • A Defense Method for Adversarial Attacks of Deep Reinforcement Learning Models
  • A Defense Method for Adversarial Attacks of Deep Reinforcement Learning Models

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present invention, and do not limit the protection scope of the present invention.

[0033] Such as figure 1 As shown, the defense method for deep reinforcement learning model anti-attack provided by the embodiment includes the following steps:

[0034] S101, using the visual prediction model built based on the generative confrontation network to predict the input environment state at the previous moment and output the current environment state, and obtain the predicted environment state value of the next frame under the deep reinforcement learning strategy for predicting the current environment state;

[0035] S102. Obtain the actual current environmen...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a defense method and application for deep reinforcement learning model anti-attacks, including: using a visual prediction model to predict the input environment state at the previous moment, outputting and predicting the current environment state, and obtaining the predicted current environment state in depth reinforcement Predict the environment state value in the next frame under the learning strategy; obtain the actual current environment state output by the deep reinforcement learning model, and obtain the environment state value of the actual current environment state with the added disturbance under the deep reinforcement learning strategy; use the discriminant model to predict the environment state value and the value of the environment state with disturbance added, and obtain whether the deep reinforcement learning model is attacked according to the judgment result; when the depth reinforcement learning model is attacked, extract the actual current environment state, and use two defense models to defend the actual current environment state ; the deep reinforcement learning model uses the actual current environment state after the defense to learn to predict the output.

Description

technical field [0001] The invention belongs to the field of security defense, and in particular relates to a defense method for deep reinforcement learning models against attacks. Background technique [0002] With the rapid development of artificial intelligence technology, more and more fields have begun to use AI technology. Since the concept of "artificial intelligence" was first proposed in 1956, AI has attracted more and more attention. His research areas include knowledge representation, machine perception, machine thinking, machine learning, and machine behavior, and he has made some achievements in various fields. For example, AlphaGo, an artificial intelligence Go software developed by Google DeepMind in 2014, used deep learning and reinforcement learning, and defeated Lee Sedol, one of the world's top Go players, in 2016. Reinforcement learning is also a multi-disciplinary product, which itself is a decision science, so it can be found in many branches of disci...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/55G06N3/04G06N3/08
CPCG06F21/55G06N3/08G06N3/045
Inventor 陈晋音王雪柯熊晖郑海斌
Owner ZHEJIANG UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap