Search engine for discovering works of Art, research articles, and books related to Art and Culture
Javascript must be enabled to continue!
Mitigating Adversarial Attacks Uncertainty Through Interval Analysis
View through CrossRef
Abstract
The adversarial attack is characterized by a high attack success rate and a fast generation of examples. It is widely used in neural network robustness evaluation and adversarial training. Restricted by the randomness of the initialization of the attack point and the iterative finding algorithm can not guarantee that it can reach the global optimal solution, the existing adversarial attack methods have attack uncertainty in a single attack and need to increase the number of attacks in order to improve the attack success rate. This paper defines the label susceptibility to analyze the attack effect. For adversarial data with high label susceptibility, using interval analysis to find the adversarial examples in its neighbourhood can effectively alleviate the attack uncertainty and improve the attack success rate. Experimental results on multiple datasets show that for white-box and black-box attack methods, our method achieves attack success rates that can surpass those attained by baseline methods requiring significantly more attack attempts while maintaining superior computational efficiency.
Title: Mitigating Adversarial Attacks Uncertainty Through Interval Analysis
Description:
Abstract
The adversarial attack is characterized by a high attack success rate and a fast generation of examples.
It is widely used in neural network robustness evaluation and adversarial training.
Restricted by the randomness of the initialization of the attack point and the iterative finding algorithm can not guarantee that it can reach the global optimal solution, the existing adversarial attack methods have attack uncertainty in a single attack and need to increase the number of attacks in order to improve the attack success rate.
This paper defines the label susceptibility to analyze the attack effect.
For adversarial data with high label susceptibility, using interval analysis to find the adversarial examples in its neighbourhood can effectively alleviate the attack uncertainty and improve the attack success rate.
Experimental results on multiple datasets show that for white-box and black-box attack methods, our method achieves attack success rates that can surpass those attained by baseline methods requiring significantly more attack attempts while maintaining superior computational efficiency.
Related Results
New Perspectives for 3D Visualization of Dynamic Reservoir Uncertainty
New Perspectives for 3D Visualization of Dynamic Reservoir Uncertainty
This reference is for an abstract only. A full paper was not submitted for this conference.
Abstract
1 Int...
ProDef-MDS: A Proactive Defense Mechanism Protecting Malware Detection Systems from Adversarial Attacks
ProDef-MDS: A Proactive Defense Mechanism Protecting Malware Detection Systems from Adversarial Attacks
Malware threatens cybersecurity by enabling data theft, unauthorized access, and extortion. Traditional malware detection systems (MDS) struggle with the increasing volume and comp...
Reserves Uncertainty Calculation Accounting for Parameter Uncertainty
Reserves Uncertainty Calculation Accounting for Parameter Uncertainty
Abstract
An important goal of geostatistical modeling is to assess output uncertainty after processing realizations through a transfer function, in particular, to...
Efficient Defense Against First Order Adversarial Attacks on Convolutional Neural Networks
Efficient Defense Against First Order Adversarial Attacks on Convolutional Neural Networks
Machine learning models, especially neural networks, are vulnerable to adversarial attacks, where inputs are purposefully altered to induce incorrect predictions. These adversarial...
The uncertainty–investment relationship: scrutinizing the role of firm size
The uncertainty–investment relationship: scrutinizing the role of firm size
PurposeThe objective of this paper is threefold. First, it aims to empirically study whether firm-specific/idiosyncratic uncertainty, macroeconomic/aggregate uncertainty and politi...
Enhancing Autonomous Vehicle's Perception Under Adversarial Attacks Using Dual Autoencoders
Enhancing Autonomous Vehicle's Perception Under Adversarial Attacks Using Dual Autoencoders
Machine learning (ML) has become essential for tasks like detection and classification in autonomous vehicles (AVs). However, ML models are vulnerable to adversarial attacks, which...
Deception-Based Security Framework for IoT: An Empirical Study
Deception-Based Security Framework for IoT: An Empirical Study
<p><b>A large number of Internet of Things (IoT) devices in use has provided a vast attack surface. The security in IoT devices is a significant challenge considering c...
An enhanced ensemble defense framework for boosting adversarial robustness of intrusion detection systems
An enhanced ensemble defense framework for boosting adversarial robustness of intrusion detection systems
Abstract
Machine learning (ML) and deep neural networks (DNN) have emerged as powerful tools for enhancing intrusion detection systems (IDS) in cybersecurity. However, re...