Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Adversarial sample generation method, detector training method and related equipment

A technology against samples and training methods, applied in the field of neural network model training, can solve problems such as the difficulty of deploying key systems in the application of deep neural networks, achieve high detection accuracy and solve security problems

Pending Publication Date: 2022-03-15
BEIJING UNIV OF POSTS & TELECOMM +1
View PDF0 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In machine learning, the deep neural network (DNN) model is one of the most important models to promote the development of artificial intelligence, but applications based on deep neural networks are difficult to deploy in critical systems with extremely high safety requirements.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Adversarial sample generation method, detector training method and related equipment
  • Adversarial sample generation method, detector training method and related equipment
  • Adversarial sample generation method, detector training method and related equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0065] In order to make the purpose, technical solutions and advantages of the present application clearer, the present application will be further described in detail below in conjunction with specific embodiments and with reference to the accompanying drawings.

[0066] It should be noted that, unless otherwise defined, the technical terms or scientific terms used in the embodiments of the present application shall have the usual meanings understood by those skilled in the art to which the present application belongs. "First", "second" and similar words used in the embodiments of the present application do not indicate any order, quantity or importance, but are only used to distinguish different components. "Comprising" or "comprising" and similar words mean that the elements or items appearing before the word include the elements or items listed after the word and their equivalents, without excluding other elements or items. Words such as "connected" or "connected" are not li...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an adversarial sample generation method, a detector training method and related equipment. The method for generating the adversarial sample comprises the following steps: acquiring a clean training sample set; for each training sample in the training sample set, performing adversarial attack on the training sample to obtain a plurality of adversarial instances; selecting a target label according to the confrontation attack information of each target confrontation instance indicating successful confrontation in the plurality of confrontation instances; generating an adversarial sample corresponding to the training sample based on the target label; and storing the confrontation samples. The detector training method comprises the following steps: generating an adversarial sample set based on a training sample set by utilizing an adversarial sample generation method; performing first training of a binary classification task on the detector by using the training sample set; and performing second training on the detector subjected to the first training by using the confrontation sample set. The detector obtained through the training method is used for detecting whether the sample data input into the deep neural network contains the deep neural network Trojan horse or not.

Description

technical field [0001] This application relates to neural network model training, and in particular to a method for generating adversarial samples, a method for training a detector, and related equipment. Background technique [0002] In the past few decades, machine learning has developed rapidly in the application fields of artificial intelligence, such as computer vision, natural language processing and so on. In machine learning, the deep neural network (DNN) model is one of the most important models to promote the development of the field of artificial intelligence, but applications based on deep neural networks are difficult to deploy in key systems with extremely high safety requirements. In recent years, security issues related to deep neural networks have been continuously raised, e.g., an attacker can trick a DNN model into misclassifying a sample input by applying an intentionally chosen perturbation to a given sample. [0003] Researching the Trojan horse detect...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06V10/774G06V10/82G06K9/62G06N3/04G06N3/08
CPCG06N3/08G06N3/045G06F18/214
Inventor 王玉龙贾哲彭隽苏森徐鹏双锴张忠宝程祥
Owner BEIJING UNIV OF POSTS & TELECOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com