Adversarial sample dynamic generation method and device, electronic equipment and storage medium

A technology of adversarial samples and dynamic generation, applied in the field of artificial intelligence, can solve problems such as poor flexibility, affecting the attack success rate, and the inability to adjust disturbance patterns in real time, so as to avoid unknown losses, improve matching degree, and increase attack success rate.

Active Publication Date: 2022-04-29
BEIJING REALAI TECH CO LTD
View PDF7 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] However, due to the color limitation of the printer, it is impossible to completely restore the perturbation pattern in the digital world, which will affect the success rate of the attack, and the above attack method cannot adjust the perturbation pattern in real time during the attack process, which has poor flexibility.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Adversarial sample dynamic generation method and device, electronic equipment and storage medium
  • Adversarial sample dynamic generation method and device, electronic equipment and storage medium
  • Adversarial sample dynamic generation method and device, electronic equipment and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] Embodiments of the present application will be described in more detail below with reference to the accompanying drawings. Although certain embodiments of the present application are shown in the drawings, it should be understood that the application may be embodied in various forms and should not be construed as limited to the embodiments set forth herein; A more thorough and complete understanding of the application. It should be understood that the drawings and embodiments of the present application are for exemplary purposes only, and are not intended to limit the protection scope of the present application.

[0035] It should be understood that the various steps described in the method implementations of the present application may be executed in different orders, and / or executed in parallel. Additionally, method embodiments may include additional steps and / or omit performing illustrated steps. The scope of the application is not limited in this regard.

[0036]...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to an adversarial sample dynamic generation method and device, electronic equipment and a storage medium. The method comprises the following steps: acquiring a first face image of a first user in real time; performing target detection and tracking on the first face image, and generating a candidate frame for marking a face in the first face image; adjusting the target confrontation pattern projected on the holographic film based on the candidate frame to generate a target disturbance image; and obtaining a target confrontation sample, wherein the target confrontation sample comprises the first face image and the target disturbance image. According to the method and the device, the anti-disturbance image of the digital world displayed in the electronic equipment can be converted into the real physical world in a holographic imaging manner, and the anti-disturbance image does not need to be printed, so that the attack success rate of the physical world anti-disturbance sample can be improved; and the confrontation pattern can be correspondingly adjusted along with the adjustment of the face, so that the matching degree between the confrontation pattern and the face in the obtained target confrontation sample is improved.

Description

technical field [0001] The present application relates to the technical field of artificial intelligence, and in particular to a method, device, electronic device and storage medium for dynamically generating an adversarial example. Background technique [0002] Adversarial example physical world attack studies the problem of how to construct an adversarial example in the real physical world when deploying a deep learning model in the real physical world. [0003] At present, the physical world attack methods disclosed in the field of adversarial sample attack and defense need to print specific forms of physical anti-disturbance patterns (such as masks, glasses, 3D masks, etc.) in real-world scenarios to transfer the disturbance patterns from the digital world to the physical world. . [0004] However, due to the color limitation of the printer, it is impossible to completely restore the perturbation pattern in the digital world, which will affect the success rate of the at...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06V40/16G06N20/00
CPCG06N20/00
Inventor 不公告发明人
Owner BEIJING REALAI TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap