TY - GEN
T1 - Interpretation Area-Guided Detection of Adversarial Samples
AU - Wei, Jia Li
AU - Fan, Ming
AU - Xu, Xi
AU - Jia, Ang
AU - Xu, Zhou
AU - Xue, Lei
N1 - Publisher Copyright:
© 2020 IEEE.
PY - 2020/12
Y1 - 2020/12
N2 - Deep learning systems are known to be vulnerable to adversarial samples, which are implemented to change the prediction results by adding small perturbations to benign samples. It is significant to defend against an adversarial attack in critical fields such as automatic drive. In this paper, we propose an interpretation area-guided detection method of adversarial samples, which can improve the performance of the typical feature squeezing method by combining the generated interpretation results. Specifically, we divide the input image into two main parts, the interpretation part, and the non-interpretation part. Then we only squeeze the non-interpretation part, which can reduce the side-effect for benign samples. We evaluate our approach on two widely used datasets, and the results demonstrate that our approach outperforms the original feature squeezing method.
AB - Deep learning systems are known to be vulnerable to adversarial samples, which are implemented to change the prediction results by adding small perturbations to benign samples. It is significant to defend against an adversarial attack in critical fields such as automatic drive. In this paper, we propose an interpretation area-guided detection method of adversarial samples, which can improve the performance of the typical feature squeezing method by combining the generated interpretation results. Specifically, we divide the input image into two main parts, the interpretation part, and the non-interpretation part. Then we only squeeze the non-interpretation part, which can reduce the side-effect for benign samples. We evaluate our approach on two widely used datasets, and the results demonstrate that our approach outperforms the original feature squeezing method.
UR - https://www.scopus.com/pages/publications/85099368839
U2 - 10.1109/QRS-C51114.2020.00049
DO - 10.1109/QRS-C51114.2020.00049
M3 - 会议稿件
AN - SCOPUS:85099368839
T3 - Proceedings - Companion of the 2020 IEEE 20th International Conference on Software Quality, Reliability, and Security, QRS-C 2020
SP - 245
EP - 248
BT - Proceedings - Companion of the 2020 IEEE 20th International Conference on Software Quality, Reliability, and Security, QRS-C 2020
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 20th IEEE International Conference on Software Quality, Reliability, and Security, QRS 2020
Y2 - 11 December 2020 through 14 December 2020
ER -