Adversarial sample generation method based on target detection model feature vector migration

A technology of adversarial samples and target detection, applied in the field of computer vision and deep learning, can solve the problems of adversarial sample distortion, concealment deterioration, increase of anti-noise, etc., and achieve strong attack effect and good transferability

Pending Publication Date: 2022-05-27
NANJING UNIV
View PDF0 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In order to improve the attack capability of adversarial samples, attackers often adopt the method of increasing the adversarial noise, but this will lead to distortion of adversarial samples, poor concealment and reduced attack usability

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Adversarial sample generation method based on target detection model feature vector migration
  • Adversarial sample generation method based on target detection model feature vector migration
  • Adversarial sample generation method based on target detection model feature vector migration

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0061] This embodiment proposes an adversarial sample generation method based on feature vector migration of a target detection model. The adversarial sample generation method includes three types of entities: several image samples, several deep learning models and an attacker. The image samples are several pictures taken in real scenes, such as: portraits, animals, urban traffic, etc. In this embodiment, the target detection model is used as a representative of the deep learning model. The target detection model is a deep learning model based on image tasks, the model can classify and locate the target object on the image sample, and output the detection result.

[0062] like figure 1 As shown, the target detection model can distinguish the foreground of a given image, that is, the target object and the background part, and identify the category of the foreground target object on the image, and select the corresponding position of each target object, that is, the detection f...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an adversarial sample generation method based on target detection model feature vector migration. The adversarial sample generation method comprises the following steps of S1, convolutional neural network feature vector migration; step S2, generating adversarial noise; and step S3, evaluating an adversarial sample attack effect. According to the method, the attack effect of the confrontation sample in deep learning models such as target detection is stronger, and better mobility is achieved on the premise that attack concealment is considered. The adversarial sample generation method disclosed by the invention reveals the important role of the feature vector in the adversarial mechanism of the target detection model, verifies the attack threat of the adversarial sample disclosed by the invention, and can heuristically explore the research in the field of a robust target detection algorithm, so that a new defense mechanism is designed; and the method is of great significance to application of the target detection model in actual life.

Description

technical field [0001] The invention relates to the fields of computer vision and deep learning, and in particular to a method for generating confrontation samples based on the transfer of feature vectors of target detection models. Background technique [0002] With the rapid development of artificial intelligence technology, more and more deep learning models play a greater role in production and life. Deep learning has a wide range of applications in many fields, such as: face recognition, fingerprint unlocking, smart medical care, smart input methods, voice assistants, and more. Although deep learning has shown strong advantages in various application scenarios, the emergence of adversarial examples has caused great obstacles and security risks to the promotion of deep learning. Adversarial examples are a special kind of input that can make the model misjudge with serious consequences. Taking the image classification task as an example, for a certain input image, the d...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06V10/774G06V10/764G06V10/80G06V10/82G06K9/62G06N3/04G06N3/08
CPCG06N3/08G06N3/045G06F18/24G06F18/253G06F18/214
Inventor 毛云龙袁新雨华景煜仲盛
Owner NANJING UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap