{"title":"物联网应用中深度学习分类器的黑盒对抗攻击","authors":"Abhijit Singh, B. Sikdar","doi":"10.1109/WF-IoT54382.2022.10152229","DOIUrl":null,"url":null,"abstract":"The increasing adoption of Internet of Things (IoT) has resulted in the availability of big data, which can reveal valuable insights if processed efficiently. Classification tasks are very important in such applications, and Artificial Intelligence is widely used to solve these problems. This paper demonstrates that Deep Learning classifiers used in IoT environments are vulnerable to black-box adversarial attacks. Such attacks can render these models ineffective by causing severe performance issues. This paper develops a black-box adversarial attack mechanism to generate adversarial examples for data obtained from smart meters installed in residential houses. An analysis is presented to demonstrate that the statistical properties of these adversarial examples are indistinguishable from those of the true examples, and the performance of the targeted models degrades sharply when exposed to the proposed attack. Further, the inherent properties of the attack mechanism imply that it is able to evade the entire class of gradient masking based defence methods. The effectiveness of the proposed black-box adversarial attack is demonstrated on the publicly available United Kingdom-Domestic Appliance-Level Electricity smart meter dataset.","PeriodicalId":176605,"journal":{"name":"2022 IEEE 8th World Forum on Internet of Things (WF-IoT)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Black-Box Adversarial Attack for Deep Learning Classifiers in IoT Applications\",\"authors\":\"Abhijit Singh, B. Sikdar\",\"doi\":\"10.1109/WF-IoT54382.2022.10152229\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The increasing adoption of Internet of Things (IoT) has resulted in the availability of big data, which can reveal valuable insights if processed efficiently. Classification tasks are very important in such applications, and Artificial Intelligence is widely used to solve these problems. This paper demonstrates that Deep Learning classifiers used in IoT environments are vulnerable to black-box adversarial attacks. Such attacks can render these models ineffective by causing severe performance issues. This paper develops a black-box adversarial attack mechanism to generate adversarial examples for data obtained from smart meters installed in residential houses. An analysis is presented to demonstrate that the statistical properties of these adversarial examples are indistinguishable from those of the true examples, and the performance of the targeted models degrades sharply when exposed to the proposed attack. Further, the inherent properties of the attack mechanism imply that it is able to evade the entire class of gradient masking based defence methods. The effectiveness of the proposed black-box adversarial attack is demonstrated on the publicly available United Kingdom-Domestic Appliance-Level Electricity smart meter dataset.\",\"PeriodicalId\":176605,\"journal\":{\"name\":\"2022 IEEE 8th World Forum on Internet of Things (WF-IoT)\",\"volume\":\"2 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-10-26\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE 8th World Forum on Internet of Things (WF-IoT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/WF-IoT54382.2022.10152229\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE 8th World Forum on Internet of Things (WF-IoT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/WF-IoT54382.2022.10152229","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Black-Box Adversarial Attack for Deep Learning Classifiers in IoT Applications
The increasing adoption of Internet of Things (IoT) has resulted in the availability of big data, which can reveal valuable insights if processed efficiently. Classification tasks are very important in such applications, and Artificial Intelligence is widely used to solve these problems. This paper demonstrates that Deep Learning classifiers used in IoT environments are vulnerable to black-box adversarial attacks. Such attacks can render these models ineffective by causing severe performance issues. This paper develops a black-box adversarial attack mechanism to generate adversarial examples for data obtained from smart meters installed in residential houses. An analysis is presented to demonstrate that the statistical properties of these adversarial examples are indistinguishable from those of the true examples, and the performance of the targeted models degrades sharply when exposed to the proposed attack. Further, the inherent properties of the attack mechanism imply that it is able to evade the entire class of gradient masking based defence methods. The effectiveness of the proposed black-box adversarial attack is demonstrated on the publicly available United Kingdom-Domestic Appliance-Level Electricity smart meter dataset.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
