Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Transferable image adversarial sample generation and deep neural network test method and system

A technology of image samples and adversarial samples, applied in biological neural network models, neural learning methods, neural architectures, etc., can solve problems such as weak ability to find errors, poor image sample quality, unstable optimization direction, etc., and achieve the success rate of generation High, increase diversity, ensure the effect of generating quality

Pending Publication Date: 2022-07-12
HOHAI UNIV
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] (1) The test method for the neural network of transferable image confrontation samples still has a weak ability to find errors, and the instability of the optimization direction is one of the main reasons for the weak ability to find errors;
[0006] (2) The current test method blindly pursues the ability to find errors but ignores the "imperceptibility" constraint of the disturbance, resulting in poor quality of the generated image samples

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Transferable image adversarial sample generation and deep neural network test method and system
  • Transferable image adversarial sample generation and deep neural network test method and system
  • Transferable image adversarial sample generation and deep neural network test method and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0046] Below in conjunction with specific embodiments, the present invention will be further illustrated, and it should be understood that these embodiments are only used to illustrate the present invention and not to limit the scope of the present invention. The modifications all fall within the scope defined by the appended claims of this application.

[0047] like figure 1 As shown, a method for generating a transferable image adversarial sample disclosed in an embodiment of the present invention mainly includes: first, setting relevant parameter information, including the maximum disturbance change value ε, the maximum number of iterations T, and the types of disturbance radii of neighboring image samples. The number N, the number of adjacent image samples M on each radius, the radius coefficient β, the maximum scale coefficient inter, the attenuation coefficient μ, and the generated disturbance step size λ=ε / T, the magnification coefficient of the adjacent image sample di...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a transferable image adversarial sample generation and deep neural network test method and system, and aims to test the robustness of a deep neural network model in a real environment. Firstly, data are collected, and a proxy model with the same function as a to-be-tested model is obtained through training. Diversified neighbor samples of the input image sample are then generated. And obtaining the gradient of the loss function relative to the neighbor image sample on the agent model, carrying out standardization operation on the gradient, and taking the average of the gradient as the disturbance direction. And finally, pixel values which do not conform to constraint conditions are cut according to dynamic constraints. And repeating the steps to reach the maximum number of iterations to obtain transferable image confrontation samples, and testing the to-be-tested model by using the transferable image confrontation samples. According to the method, the sample generation method is innovated through the diversification, gradient standardization and dynamic constraint generation of neighbor image samples, and the quality of the generated image is improved while the generation success rate of the transferable image confrontation sample is improved.

Description

technical field [0001] The invention relates to a test method and system for generating a transferable image confrontation sample and a deep neural network model, and belongs to the field of artificial intelligence testing. Background technique [0002] Although deep neural networks have achieved good results in many computer tasks and practical applications, recent studies have shown that DNNs for image processing tasks are particularly vulnerable to image adversarial examples that add tiny perturbations. These disturbances cannot be detected by humans, but they can cause serious errors in the AI ​​system, which brings security risks to the actual deployment of DNNs. [0003] At present, the security of DNNs mainly tests whether the deep neural network model can correctly predict on the generated image samples by generating image adversarial samples of the model to be tested. Although image adversarial samples exist widely, the threat of image adversarial samples generated...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/36G06K9/62G06N3/04G06N3/08
CPCG06F11/3684G06F11/3688G06N3/084G06N3/045G06F18/214
Inventor 张鹏程任彬吉顺慧蔡涵博肖明轩
Owner HOHAI UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com