Adversary resistant deep neural networks via advanced feature nullification

Han Keji; Li Yun; Hang Jie

首页> 外文期刊>Knowledge-Based Systems >Adversary resistant deep neural networks via advanced feature nullification

【24h】

Adversary resistant deep neural networks via advanced feature nullification

机译：通过高级特征无效化来抵抗对手的深度神经网络

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Deep neural networks (DNNs) have been achieving excellent performance in many learning tasks. However, recent studies reveal that DNNs are vulnerable to adversarial examples. Fortunately, a random feature nullification (RFN) algorithm is proposed to improve the robustness of DNNs against gradient-based adversarial examples. However, experimental results demonstrate that RFN ruins the availability of DNNs in some cases. To explore more efficient feature nullification (FN) algorithms, we theoretically prove that FN can improve the robustness of DNNs. Moreover, sliding window feature nullification (SWFN) and fixed stride feature nullification (FSFN) algorithms are proposed to improve the robustness of DNNs. The experimental results demonstrate that compared to RFN, the proposed algorithms can maintain the availability of DNNs without decreasing its robustness against gradient-based attacks. (C) 2019 Elsevier B.V. All rights reserved.

机译：深度神经网络（DNN）在许多学习任务中均取得了出色的表现。但是，最近的研究表明，DNN很容易受到对抗性例子的攻击。幸运的是，提出了一种随机特征归零（RFN）算法，以提高DNN对基于梯度的对抗性示例的鲁棒性。但是，实验结果表明，RFN在某些情况下会破坏DNN的可用性。为了探索更有效的特征归零（FN）算法，我们从理论上证明FN可以提高DNN的鲁棒性。此外，提出了滑动窗特征无效化（SWFN）和固定步幅特征无效化（FSFN）算法，以提高DNN的鲁棒性。实验结果表明，与RFN相比，所提出的算法可以保持DNN的可用性，而不会降低其对基于梯度的攻击的鲁棒性。（C）2019 Elsevier B.V.保留所有权利。

著录项

来源
《Knowledge-Based Systems》 |2019年第1期|108-116|共9页
作者
Han Keji; Li Yun; Hang Jie;
展开▼
作者单位

Nanjing Univ Posts & Telecommun, Sch Comp Sci & Technol, Wenyuanlu 9, Nanjing 210023, Jiangsu, Peoples R China;

Nanjing Univ Posts & Telecommun, Sch Comp Sci & Technol, Wenyuanlu 9, Nanjing 210023, Jiangsu, Peoples R China;

Nanjing Univ Posts & Telecommun, Sch Comp Sci & Technol, Wenyuanlu 9, Nanjing 210023, Jiangsu, Peoples R China;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Adversarial machine learning; Deep learning; Feature nullification; Hadamard product;

机译：对抗机器学习;深度学习;功能失效;Hadamard产品;

相似文献

外文文献
中文文献
专利

1. Adversary resistant deep neural networks via advanced feature nullification [J] . Han Keji, Li Yun, Hang Jie Knowledge-Based Systems . 2019,第Sepa1期

机译：通过先进的功能无效抗逆深度神经网络
2. Adversary Resistant Deep Neural Networks with an Application to Malware Detection [J] . Qinglong Wang, Wenbo Guo, Kaixuan Zhang, SIGKDD explorations . 2017,第CDaROM期

机译：对抗性深度神经网络，应用于恶意软件检测
3. Spoofing Attack Detection and Localizing Multiple Adversaries in Deep Neural Network [J] . H. Lookman Sithic, T. Induja International Journal of Applied Engineering Research . 2018,第22aPta5期

机译：欺骗深度神经网络中的攻击检测和定位多个对手
4. Minimum Uncertainty Based Detection of Adversaries in Deep Neural Networks [C] . Fatemeh Sheikholeslami, Swayambhoo Jain, Georgios B. Giannakis Information Theory and Applications Workshop . 2020

机译：基于最小不确定度的深度神经网络中对手的检测
5. Scalable Kernel Learning, Tensors in Community Identification, and Robust Adversary Detection in Deep Neural Networks [D] . ?Sheikholeslami, Fatemeh 2019

机译：可扩展的核学习，社区标识张量和强大的敌手检测深层神经网络
6. Deep feature loss to denoise OCT images using deep neural networks [O] . Maryam Mehdizadeh, Cara MacNish, Di Xiao, 2021

机译：利用深神经网络深入特色损失去弃去OCT图像
7. Adversary Resistant Deep Neural Networks with an Application to Malware Detection [O] . Wang, Qinglong, Guo, Wenbo, Zhang, Kaixuan, 2017

机译：对抗性深度神经网络及其在恶意软件中的应用发现

Adversary resistant deep neural networks via advanced feature nullification

摘要

著录项

相似文献

相关主题

期刊订阅