Method and system for improving adversarial defense capability of Bayesian neural network

A neural network and capability technology, applied in neural learning methods, biological neural network models, probabilistic networks, etc., to achieve the effects of improved robustness, more consistent prediction, and improved noise resistance

Pending Publication Date: 2021-11-02
SHANGHAI JIAO TONG UNIV
View PDF1 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, since the ideal situation cannot be achieved in practical applications, there is still a

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and system for improving adversarial defense capability of Bayesian neural network
  • Method and system for improving adversarial defense capability of Bayesian neural network
  • Method and system for improving adversarial defense capability of Bayesian neural network

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0089] The present invention will be described in detail below in conjunction with specific embodiments. The following examples will help those skilled in the art to further understand the present invention, but do not limit the present invention in any form. It should be noted that those skilled in the art can make several changes and improvements without departing from the concept of the present invention. These all belong to the protection scope of the present invention.

[0090] An embodiment of the present invention provides a method for improving the Bayesian neural network's defense against defense capabilities. The method includes a network training step, a calculation optimization step, and a robustness enhancement step. The cross-entropy loss function and the KL divergence between the parameter distribution and the prior distribution are trained on the initial data to achieve good performance on noise-free data.

[0091] In the calculation optimization step and the...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a method and system for improving the adversarial defense capability of a Bayesian neural network, and relates to the technical field of Bayesian neural networks in the deep learning direction and adversarial defense, and the method comprises the following steps: a network training step: inputting initial data, and optimizing a cross entropy loss function and the KL divergence between parameter distribution and prior distribution to obtain a network model; training the initial data; and a robustness enhancement step: taking the parameters of the Bayesian neural network as input, calculating and optimizing the mathematical expectation of the spectral norm of the network parameter matrix, and reducing the sensitivity of the network to various noises according to the optimized mathematical expectation, thereby improving the adversarial defense capability of the Bayesian neural network model to the noises. According to the invention, the adversarial robustness of the Bayesian network model can be effectively improved, and the application prospect of the network model in practical problems is effectively enhanced; the output uncertainty of the network model is effectively reduced, the prediction of the network to the adversarial sample is more consistent, and the noise resistance of the network model is improved.

Description

technical field [0001] The invention relates to the technical field of Bayesian neural network and confrontation defense in the direction of deep learning, in particular, to a method and system for improving the Bayesian neural network confrontation defense capability. Background technique [0002] Bayesian neural networks are a special neural network architecture in the field of deep learning. Compared with the traditional neural network method, the parameters in the Bayesian neural network are random variables rather than constants. Therefore, even for the same input, the output of the network will vary across multiple runs, which is equivalent to sampling from a fixed probability distribution. This gives the Bayesian neural network the unique ability to model data uncertainty and model uncertainty, and therefore provides a certain degree of interpretability for the output of the network, making the Bayesian neural network in computer vision, natural language processing ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06N3/04G06N3/08G06N7/00
CPCG06N3/08G06N3/084G06N3/047G06N7/01
Inventor 马汝辉张家儒薛珍贵宋涛郑承宇管海兵
Owner SHANGHAI JIAO TONG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap