Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Adversarial sample generation method based on content-aware GAN

A technology of adversarial samples and content perception, applied in the field of deep learning, can solve problems such as low quality of adversarial samples, low attack success rate, and easy identification of disturbances, so as to reduce the degree of perceptibility, increase the attack success rate, and improve speed effect

Active Publication Date: 2020-11-03
BEIJING UNIV OF POSTS & TELECOMM +1
View PDF5 Cites 16 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

These works are different in the methods of realizing adversarial attacks, but there are more or less problems, such as the quality of the generated adversarial samples is not high, the added perturbation is easy to be recognized, the attack success rate is not high, and the attack mobility inferior

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Adversarial sample generation method based on content-aware GAN
  • Adversarial sample generation method based on content-aware GAN
  • Adversarial sample generation method based on content-aware GAN

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0033] In order to make the above-mentioned features and advantages of the present invention more comprehensible, the present invention will be further described in detail below in conjunction with specific embodiments and accompanying drawings.

[0034] The adversarial sample generation method designed by the present invention is based on the basic attack method WGAN_GP. By using the unsupervised training phase of two different targets, the loss function of the model adversarial training phase is designed, so that the GAN model can learn the distribution of adversarial samples from random noise, Generate unlimited adversarial samples in batches to conduct adversarial attacks on the target model. The specific training process is as figure 1 As shown, its main steps include:

[0035] Step 100, training WGAN_GP to learn the data distribution of normal samples, the structure diagram of the normal training stage is as follows figure 2 shown.

[0036] Further, step 100 specific...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an adversarial sample generation method based on content awareness GAN, which changes a training process on the basis of WGAN_GP, directly generates an adversarial sample witha target by inputting random noise, adds a content feature extraction part, restrains the quality of the generated sample under the condition of not influencing an attack effect, and improves the accuracy of adversarial sample generation. Content characteristics of adversarial samples can be kept unchanged as much as possible. The system comprises a generator G, a discriminator D, a target model f, a disturbance evaluation part and a feature extraction network, wherein the generator is responsible for generating a sample from random noise, the generator is trained according to a loss functionof the discriminator D, the target model f, the disturbance evaluation part and the feature extraction network, and the generator directly generates an unlimited adversarial sample from the noise. Onthe basis of the generative adversarial network, the semantic information of the concerned sample and a mode of directly generating the adversarial sample instead of a superimposed disturbance mode, direct generation of the adversarial sample of the specified target is realized by using unsupervised GAN training, the sample generation speed is increased, and the quality of the generated sample isimproved; the change of the adversarial sample in the content feature region is reduced while the high attack success rate is maintained.

Description

technical field [0001] The invention belongs to the field of deep learning, in particular to a method for generating an adversarial example based on content-aware GAN. Background technique [0002] Artificial intelligence is a hot method used to solve problems in various fields in recent years. As one of the fields of machine learning, deep learning has gradually become a research hotspot in the field of computer vision. With the continuous development of deep neural network models, more and more deep learning training frameworks and open source tools have been developed. At the same time, as the performance of hardware such as GPUs used for training continues to improve, the software and hardware conditions for training complex models have become increasingly complex. Increasing availability has greatly advanced the application of deep learning in various fields of real life, and computer vision solutions are gradually entering the fields where safety requirements are criti...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06K9/62G06N3/04G06N3/08
CPCG06N3/08G06N3/045G06F18/241G06F18/214Y02T10/40
Inventor 刘建毅张茹田宇李娟李婧雯
Owner BEIJING UNIV OF POSTS & TELECOMM
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com