loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Duc-Anh Nguyen 1 ; Kha Do Minh 1 ; Duc-Anh Pham 2 and Pham Ngoc Hung 1

Affiliations: 1 VNU University of Engineering and Technology (VNU-UET), Building E3, 144 Xuan Thuy Road, Cau Giay District, Hanoi, Vietnam ; 2 University of Transport Technology, 54 Trieu Khuc Road, Thanh Xuan District, Hanoi, Vietnam

Keyword(s): Adversarial Example Generation, Deep Neural Network, Robustness, Autoencoder.

Abstract: To evaluate the robustness of DNNs, most of the adversarial methods such as FGSM, box-constrained L-BFGS, and ATN generate adversarial examples with small Lp-norm. However, these adversarial examples might contain many redundant perturbations. Removing these perturbations increases the quality of adversarial examples. Therefore, this paper proposes a method to improve the quality of adversarial examples by recognizing and then removing such perturbations. The proposed method includes two phases namely the autoencoder training phase and the improvement phase. In the autoencoder training phase, the proposed method trains an autoencoder that learns how to recognize redundant perturbations. In the second phase, the proposed method uses the trained autoencoder in combination with the greedy improvement step to produce more high-quality adversarial examples. The experiments on MNIST and CIFAR-10 have shown that the proposed method could improve the quality of adversarial examples significa ntly. In terms of L0-norm, the distance decreases by about 82%-95%. In terms of L2-norm, the distance drops by around 56%-81%. Additionally, the proposed method has a low computational cost. This shows the potential ability of the proposed method in practice. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.220.160.216

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Nguyen, D.; Do Minh, K.; Pham, D. and Hung, P. (2022). Method for Improving Quality of Adversarial Examples. In Proceedings of the 14th International Conference on Agents and Artificial Intelligence - Volume 2: ICAART; ISBN 978-989-758-547-0; ISSN 2184-433X, SciTePress, pages 214-225. DOI: 10.5220/0010814400003116

@conference{icaart22,
author={Duc{-}Anh Nguyen. and Kha {Do Minh}. and Duc{-}Anh Pham. and Pham Ngoc Hung.},
title={Method for Improving Quality of Adversarial Examples},
booktitle={Proceedings of the 14th International Conference on Agents and Artificial Intelligence - Volume 2: ICAART},
year={2022},
pages={214-225},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010814400003116},
isbn={978-989-758-547-0},
issn={2184-433X},
}

TY - CONF

JO - Proceedings of the 14th International Conference on Agents and Artificial Intelligence - Volume 2: ICAART
TI - Method for Improving Quality of Adversarial Examples
SN - 978-989-758-547-0
IS - 2184-433X
AU - Nguyen, D.
AU - Do Minh, K.
AU - Pham, D.
AU - Hung, P.
PY - 2022
SP - 214
EP - 225
DO - 10.5220/0010814400003116
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic