对抗训练对防御DeepFool攻击的有效性分析

2023 3rd International Conference on Intelligent Communication and Computational Techniques (ICCT) Pub Date : 2023-01-19 DOI:10.1109/ICCT56969.2023.10075774

Ashwin Muthuraman A., Balaaditya M., Snofy D. Dunston, M. V

{"title":"对抗训练对防御DeepFool攻击的有效性分析","authors":"Ashwin Muthuraman A., Balaaditya M., Snofy D. Dunston, M. V","doi":"10.1109/ICCT56969.2023.10075774","DOIUrl":null,"url":null,"abstract":"Medical image diagnosis is a time-consuming process when done manually, where the predictions are subjected to human error. Various Deep Learning models have brought about an efficient and reliable automated system for medical image analysis. However, these models are highly vulnerable to attacks, upon exposure of which the models lose their reliability and misclassify the input images. Adversarial attack is one such technique which fools the deep learning models with deceptive data. DeepFool is an adversarial attack that efficiently computes perturbations that fool deep networks. With the help of two different datasets, we studied the impact of DeepFool attack on EfficientNet-B0 model in this research. There are several defense mechanisms to protect the model against various attacks. Adversarial training is one such defense method, which trains the model towards a particular attack. In this study, we have also analysed how effectively adversarial training would defend a model and make it robust.","PeriodicalId":128100,"journal":{"name":"2023 3rd International Conference on Intelligent Communication and Computational Techniques (ICCT)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-01-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Analysis of the Effect of Adversarial Training in Defending EfficientNet-B0 Model from DeepFool Attack\",\"authors\":\"Ashwin Muthuraman A., Balaaditya M., Snofy D. Dunston, M. V\",\"doi\":\"10.1109/ICCT56969.2023.10075774\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Medical image diagnosis is a time-consuming process when done manually, where the predictions are subjected to human error. Various Deep Learning models have brought about an efficient and reliable automated system for medical image analysis. However, these models are highly vulnerable to attacks, upon exposure of which the models lose their reliability and misclassify the input images. Adversarial attack is one such technique which fools the deep learning models with deceptive data. DeepFool is an adversarial attack that efficiently computes perturbations that fool deep networks. With the help of two different datasets, we studied the impact of DeepFool attack on EfficientNet-B0 model in this research. There are several defense mechanisms to protect the model against various attacks. Adversarial training is one such defense method, which trains the model towards a particular attack. In this study, we have also analysed how effectively adversarial training would defend a model and make it robust.\",\"PeriodicalId\":128100,\"journal\":{\"name\":\"2023 3rd International Conference on Intelligent Communication and Computational Techniques (ICCT)\",\"volume\":\"14 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-01-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 3rd International Conference on Intelligent Communication and Computational Techniques (ICCT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICCT56969.2023.10075774\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 3rd International Conference on Intelligent Communication and Computational Techniques (ICCT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCT56969.2023.10075774","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

手动进行医学图像诊断是一个耗时的过程，其中预测容易受到人为错误的影响。各种深度学习模型为医学图像分析带来了高效、可靠的自动化系统。然而，这些模型极易受到攻击，一旦受到攻击，模型就会失去可靠性并对输入图像进行错误分类。对抗性攻击就是一种利用欺骗性数据欺骗深度学习模型的技术。DeepFool是一种对抗性攻击，可以有效地计算欺骗深度网络的扰动。在本研究中，我们借助两个不同的数据集，研究了DeepFool攻击对EfficientNet-B0模型的影响。有几种防御机制可以保护模型免受各种攻击。对抗性训练就是这样一种防御方法，它训练模型针对特定的攻击。在这项研究中，我们还分析了对抗性训练如何有效地保护模型并使其具有鲁棒性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Analysis of the Effect of Adversarial Training in Defending EfficientNet-B0 Model from DeepFool Attack

Medical image diagnosis is a time-consuming process when done manually, where the predictions are subjected to human error. Various Deep Learning models have brought about an efficient and reliable automated system for medical image analysis. However, these models are highly vulnerable to attacks, upon exposure of which the models lose their reliability and misclassify the input images. Adversarial attack is one such technique which fools the deep learning models with deceptive data. DeepFool is an adversarial attack that efficiently computes perturbations that fool deep networks. With the help of two different datasets, we studied the impact of DeepFool attack on EfficientNet-B0 model in this research. There are several defense mechanisms to protect the model against various attacks. Adversarial training is one such defense method, which trains the model towards a particular attack. In this study, we have also analysed how effectively adversarial training would defend a model and make it robust.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2023 3rd International Conference on Intelligent Communication and Computational Techniques (ICCT)

自引率

0.00%

发文量