Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Image recognition attack method based on algorithm confrontational attack

An image recognition and adversarial technology, applied in the field of computer systems, can solve the problems of high attack success rate of adversarial attack methods, and achieve the effect of wide applicability and improved security.

Active Publication Date: 2019-03-19
HANGZHOU ANHENG INFORMATION TECH CO LTD
View PDF5 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] The present invention solves the problem that in the prior art, there is no adversarial attack method that can be applied to all machine learning algorithms and maintain a high attack success rate in black box testing. The present invention provides an optimized algorithm-based Image recognition attack method for adversarial attack

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Image recognition attack method based on algorithm confrontational attack
  • Image recognition attack method based on algorithm confrontational attack

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] The present invention will be further described in detail below with reference to the embodiments, but the protection scope of the present invention is not limited thereto.

[0026] The invention relates to an image recognition attack method based on algorithmic adversarial attack, and constructs an adversarial generation network against machine learning classification. Similar adversarial sample images to make image recognition errors.

[0027] In the present invention, adversarial attack means that in machine learning algorithms, especially neural networks, due to the internal complexity, it is impossible to completely eliminate security problems. Therefore, by adding subtle disturbances to input samples, it can ultimately affect the classification of models to a greater extent. The method used to generate this specific subtle perturbation is to build a neural network corresponding to the target model, and train the neural network to automatically generate subtle pert...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to an image recognition attack method based on algorithm confrontational attack. The method includes inputting the original image needing to be identified and attacked into the adversarial generation network to obtain a resistance image, carrying out image identification and classification on the original image and the resistance image simultaneously, if the classification isthe same, indicating that the attack is unsuccessful, collecting data and updating the adversarial generation network, otherwise, indicating that the attack is successful. According to the method, anexisting image recognition algorithm can be attacked, the algorithm cannot carry out normal image recognition by generating a resistance sample, and therefore functional application in the fields offace recognition, image detection, automatic driving and the like is influenced, and the applicability is wide; once the training of the adversarial generation network is completed, the generated adversarial samples do not need to depend on the contact of a target model and a large number of numerical operations, and the characteristics of high efficiency and migration are achieved; research on the adversarial attack of machine learning is beneficial to further optimization of a machine learning algorithm and a data processing means, and the safety of the machine learning algorithm and the application thereof is improved.

Description

technical field [0001] The present invention relates to the technical field of computer systems based on a specific computing model, in particular to an image recognition attack method based on algorithmic adversarial attack that is efficient, widely applicable, transferable and secure. Background technique [0002] Machine learning is a learning model that specializes in how computers simulate or implement human learning behaviors to acquire new knowledge or skills, reorganize existing knowledge structures to continuously improve their performance, and is the core of artificial intelligence. The fundamental way of intelligence, its application in all fields of artificial intelligence. [0003] With the wide application of machine learning in various fields, the security issues of machine learning algorithms themselves also have a crucial impact on maintaining Internet security, such as face recognition errors in the field of image recognition, or automatic driving. Incorre...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06K9/00G06N3/04
CPCG06V40/172G06V40/40G06V10/96G06N3/045
Inventor 唐佳莉范渊
Owner HANGZHOU ANHENG INFORMATION TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com