{"title":"通过卷积自编码器减轻对抗性攻击","authors":"Wenjun Bai, Changqin Quan, Zhiwei Luo","doi":"10.1109/SNPD.2017.8022700","DOIUrl":null,"url":null,"abstract":"In order to defend adversarial attacks in computer vision models, the conventional approach arises on actively incorporate such samples into the training datasets. Nonetheless, the manual production of adversarial samples is painful and labor intensive. Here we propose a novel generative model: Convolutional Autoencoder Model to add unsupervised adversarial training, i.e., the production of adversarial images from the encoded feature representation, on conventional supervised convolutional neural network training. To accomplish such objective, we first provide a novel statistical understanding of convolutional neural network to translate convolution and pooling computations equivalently as a hierarchy of encoders, and sampling tricks, respectively. Then, we derive our proposed Convolutional Autoencoder Model with the ‘adversarial decoders’ to automate the generation of adversarial samples. We validated our proposed Convolutional Autoencoder Model on MNIST dataset, and achieved the clear-cut performance improvement over the normal Convolutional Neural Network.","PeriodicalId":186094,"journal":{"name":"2017 18th IEEE/ACIS International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel/Distributed Computing (SNPD)","volume":"35 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"15","resultStr":"{\"title\":\"Alleviating adversarial attacks via convolutional autoencoder\",\"authors\":\"Wenjun Bai, Changqin Quan, Zhiwei Luo\",\"doi\":\"10.1109/SNPD.2017.8022700\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In order to defend adversarial attacks in computer vision models, the conventional approach arises on actively incorporate such samples into the training datasets. Nonetheless, the manual production of adversarial samples is painful and labor intensive. Here we propose a novel generative model: Convolutional Autoencoder Model to add unsupervised adversarial training, i.e., the production of adversarial images from the encoded feature representation, on conventional supervised convolutional neural network training. To accomplish such objective, we first provide a novel statistical understanding of convolutional neural network to translate convolution and pooling computations equivalently as a hierarchy of encoders, and sampling tricks, respectively. Then, we derive our proposed Convolutional Autoencoder Model with the ‘adversarial decoders’ to automate the generation of adversarial samples. We validated our proposed Convolutional Autoencoder Model on MNIST dataset, and achieved the clear-cut performance improvement over the normal Convolutional Neural Network.\",\"PeriodicalId\":186094,\"journal\":{\"name\":\"2017 18th IEEE/ACIS International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel/Distributed Computing (SNPD)\",\"volume\":\"35 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"15\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 18th IEEE/ACIS International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel/Distributed Computing (SNPD)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SNPD.2017.8022700\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 18th IEEE/ACIS International Conference on Software Engineering, Artificial Intelligence, Networking and Parallel/Distributed Computing (SNPD)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SNPD.2017.8022700","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Alleviating adversarial attacks via convolutional autoencoder
In order to defend adversarial attacks in computer vision models, the conventional approach arises on actively incorporate such samples into the training datasets. Nonetheless, the manual production of adversarial samples is painful and labor intensive. Here we propose a novel generative model: Convolutional Autoencoder Model to add unsupervised adversarial training, i.e., the production of adversarial images from the encoded feature representation, on conventional supervised convolutional neural network training. To accomplish such objective, we first provide a novel statistical understanding of convolutional neural network to translate convolution and pooling computations equivalently as a hierarchy of encoders, and sampling tricks, respectively. Then, we derive our proposed Convolutional Autoencoder Model with the ‘adversarial decoders’ to automate the generation of adversarial samples. We validated our proposed Convolutional Autoencoder Model on MNIST dataset, and achieved the clear-cut performance improvement over the normal Convolutional Neural Network.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
