Targeted Adversarial Examples Generating Method Based on cVAE in Black Box Settings

Autor:	YU Xiangzhan, LI Yetian, Zhang Chunrui, Wang Shen, YU Tingyue, Wang Zhenbang
Rok vydání:	2021
Předmět:	Black box (phreaking) Computer science business.industry Applied Mathematics Deep learning Machine learning computer.software_genre Autoencoder Adversarial system Robustness (computer science) Artificial intelligence Electrical and Electronic Engineering business Focus (optics) computer
Zdroj:	Chinese Journal of Electronics. 30:866-875
ISSN:	2075-5597 1022-4653
DOI:	10.1049/cje.2021.06.009
Popis:	In recent years, adversarial examples has become one of the most important security threats in deep learning applications. For testing the security of deep learning models in adversarial environment, many researches focus on generating adversarial examples quickly and efficiently. In order to solve the problems of existing generative adversarial networks based methods which can not effectively generate the targeted adversarial examples in black box settings, and to improve the temporal performance of gradient-based generating methods, an adversarial examples generating method based on conditional Variational autoencoder (cVAE) is proposed in this paper, where a cVAE is designed elaborately to generate adversarial examples without most of the detailed information about the attacked deep learning models, of which the output can be controlled arbitrarily by these crafted inputs, used to test the robustness of deep learning models against adversarial examples. The experimental results show that the proposed method can achieve a comparable attack success rate and a better temporal performance than the existing gradient-based generating methods in black box environment.
Databáze:	OpenAIRE
Externí odkaz:	https://explore.openaire.eu/search/publication?articleId=doi_________::008f4f3f27d2e98eb9b3f50fdfd9cd71 https://doi.org/10.1049/cje.2021.06.009 Zobrazit plný text záznamu Plný text