Unlock instant, AI-driven research and patent intelligence for your innovation.

Deep learning model poisoning attack detection method and device based on mutual information

A deep learning and attack detection technology, applied in machine learning, computing models, character and pattern recognition, etc., can solve problems such as expensive, time-consuming, and low efficiency, and achieve good applicability and good detection effects

Active Publication Date: 2022-07-19
ZHEJIANG UNIV OF TECH
View PDF8 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Most existing testing techniques for autonomous driving rely on manual collection of test data for different driving conditions, which becomes unacceptably expensive as test scenarios increase
At the same time, the existing testing technologies are all based on the detection of poisoning attacks that are visible to triggers. The detection effect on feature embedding attacks that are not visible to triggers is very poor, and there are problems such as time-consuming and low efficiency in the detection process.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Deep learning model poisoning attack detection method and device based on mutual information
  • Deep learning model poisoning attack detection method and device based on mutual information
  • Deep learning model poisoning attack detection method and device based on mutual information

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only a part of the embodiments of the present invention, but not all of the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present invention.

[0053] like figure 1 As shown, a deep learning model poisoning attack detection method based on mutual information includes the following steps:

[0054] (1) Obtain the sample set and the deep learning model to be detected

[0055] (1.1) The sample set is an image data set, including the MNIST data set, CIFAR10 data set, and Driving data set, etc., and obtain some benign test set samples from various data sets respectively. test And...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a deep learning model poisoning attack detection method based on mutual information, comprising the following steps: (1) acquiring a sample set and a deep learning model to be detected; (2) pre-training the deep learning model; (3) generating a poisoning model Pool and trigger sample pair; (4) Use mutual information to determine whether the deep learning model is poisoned. The invention also discloses a deep learning model poisoning attack detection device based on mutual information, which is used to implement the above method. The invention has good applicability, can effectively judge whether the model is poisoned and find out the poisoning target class, and can achieve better detection effect.

Description

technical field [0001] The invention relates to the technical field of poisoning detection, in particular to a deep learning model poisoning attack detection method and device based on mutual information. Background technique [0002] Deep learning has gradually become a research hotspot and mainstream development direction in the field of artificial intelligence. Deep learning is a computational model consisting of multiple processing layers, learning machine learning techniques for data representation with multiple levels of abstraction. Deep learning represents the main development direction of machine learning and artificial intelligence research, bringing revolutionary progress to fields such as machine learning and computer vision. Artificial intelligence technology has made breakthroughs in the fields of computer vision and natural language processing, which has ushered in a new round of explosive development of artificial intelligence. Deep learning is the key to t...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/55G06K9/62G06N20/00
CPCG06F21/55G06N20/00G06F18/2415G06F18/214
Inventor 陈晋音邹健飞熊晖
Owner ZHEJIANG UNIV OF TECH