SlideShare a Scribd company logo

2019 Triangle Machine Learning Day - Mitigating Evasion Attacks to Deep Neural Networks via Region-based Classification - Xiaoyu Cao, September 20, 2019

Download as PPTX, PDF
The Statistical and Applied Mathematical Sciences Institute, profile picture
The Statistical and Applied Mathematical Sciences Institute

The document discusses the challenge of mitigating evasion attacks on deep neural networks, where perturbations are added to inputs to deceive classifiers. It reviews existing defense methods that either compromise classification accuracy or require manual processing of detected adversarial examples. The authors propose a region-based classification approach to improve robustness against targeted attacks while evaluating its effectiveness on datasets like MNIST and CIFAR-10.

Education
Related topics:
Deep Neural Network
1 of 6
Download to read offline
1
2
3
4
5
6
Mitigating Evasion Attacks to Deep Neural Networks via Region-based Classification Xiaoyu Cao, Neil Zhenqiang Gong 1
Security is a Big Challenge for Deploying Deep Neural Networks 2 • Evasion Attacks • Perturbation is added to the input at test time to fool the classifiers. * Image from Ian J Goodfellow, Jonathon Shlens, and Christian Szegedy. Explaining and harnessing adversarial examples. ICLR 2015.
Existing Defenses 3 • New methods to train neural networks • Sacrifice classification accuracy on benign examples. • Detecting adversarial examples • Need human to manually process the detected adversarial examples. No benefit of automatic decision makings.
Understanding Adversarial Examples 4 𝑅𝑖 𝑅𝑡 Classification boundary of true class 𝒊 and target class 𝒕
Design Region-based Classification 5 Input Output 5 … … 0 5 … 0 0 Ensemble
Experimental Results 6 TABLE : Classification accuracy on benign examples and robustness to targeted CW attacks on (𝑎)MNIST dataset (𝑏) CIFAR-10 dataset. (𝑎) (𝑏)

More Related Content

PDF
Battista Biggio @ S+SSPR2014, Joensuu, Finland -- Poisoning Complete-Linkage ...
Pluribus One
 
PDF
Adversarial ML - Part 2.pdf
KSChidanandKumarJSSS
 
PDF
CEHS 2016 Poster
Eric Ma
 
PDF
Dnasec
Zied Houaneb
 
PDF
Adversarial ML - Part 1.pdf
KSChidanandKumarJSSS
 
PDF
The DETER Project: Advancing the Science of Cyber Security Experimentation an...
DETER-Project
 
PDF
Battista Biggio @ AISec 2013 - Is Data Clustering in Adversarial Settings Sec...
Pluribus One
 
PDF
The DETER Project: Towards Structural Advances in Experimental Cybersecurity ...
DETER-Project
 
Battista Biggio @ S+SSPR2014, Joensuu, Finland -- Poisoning Complete-Linkage ...
Pluribus One
 
Adversarial ML - Part 2.pdf
KSChidanandKumarJSSS
 
CEHS 2016 Poster
Eric Ma
 
Dnasec
Zied Houaneb
 
Adversarial ML - Part 1.pdf
KSChidanandKumarJSSS
 
The DETER Project: Advancing the Science of Cyber Security Experimentation an...
DETER-Project
 
Battista Biggio @ AISec 2013 - Is Data Clustering in Adversarial Settings Sec...
Pluribus One
 
The DETER Project: Towards Structural Advances in Experimental Cybersecurity ...
DETER-Project
 

Similar to 2019 Triangle Machine Learning Day - Mitigating Evasion Attacks to Deep Neural Networks via Region-based Classification - Xiaoyu Cao, September 20, 2019 (20)

PPTX
Tricking a DNN with adversarial examples
Ojasava Paras
 
PDF
Research of adversarial example on a deep neural network
NAVER Engineering
 
PDF
Detecting adversarials examples attacks to deep neural networks
Fabio Carrara
 
PDF
Robustness of Deep Neural Networks on White-box Attacks and Defense Strategie...
AkhileshPandey104
 
PPTX
Defending deep learning from adversarial attacks
Svetlana Levitan, PhD
 
PPTX
Adversarial robustness using clever hans
ShrutiMishra164
 
PDF
Universal Adversarial Perturbation
Hyunwoo Kim
 
PPTX
A Survey on Security and Privacy of Machine Learning
Thang Dang Duy
 
PDF
DEF CON 24 - Clarence Chio - machine duping 101
Felipe Prado
 
PPTX
slides_security_and_privacy_in_machine_learning.pptx
ssuserabf73f
 
PPTX
Fast Gradient Sign Method (FGSM)___.pptx
pujamane1
 
PDF
Security of Machine Learning
Institute of Contemporary Sciences
 
PDF
005 20151130 adversary_networks
Ha Phuong
 
PDF
Immunizing Image Classifiers Against Localized Adversary Attacks
gerogepatton
 
PDF
Immunizing Image Classifiers Against Localized Adversary Attacks
gerogepatton
 
PDF
Adversarial examples in deep learning (Gregory Chatel)
MeetupDataScienceRoma
 
PDF
Security and Privacy of Machine Learning
Priyanka Aash
 
PDF
Generative Adversarial Networks (GANs) at the Data Science Meetup Luxembourg ...
Chris Hammerschmidt
 
PDF
Ensembles of Many Diverse Weak Defenses can be Strong: Defending Deep Neural ...
Pooyan Jamshidi
 
PDF
BOOSTING ADVERSARIAL ATTACKS WITH MOMENTUM - Tianyu Pang and Chao Du, THU - D...
GeekPwn Keen
 
Tricking a DNN with adversarial examples
Ojasava Paras
 
Research of adversarial example on a deep neural network
NAVER Engineering
 
Detecting adversarials examples attacks to deep neural networks
Fabio Carrara
 
Robustness of Deep Neural Networks on White-box Attacks and Defense Strategie...
AkhileshPandey104
 
Defending deep learning from adversarial attacks
Svetlana Levitan, PhD
 
Adversarial robustness using clever hans
ShrutiMishra164
 
Universal Adversarial Perturbation
Hyunwoo Kim
 
A Survey on Security and Privacy of Machine Learning
Thang Dang Duy
 
DEF CON 24 - Clarence Chio - machine duping 101
Felipe Prado
 
slides_security_and_privacy_in_machine_learning.pptx
ssuserabf73f
 
Fast Gradient Sign Method (FGSM)___.pptx
pujamane1
 
Security of Machine Learning
Institute of Contemporary Sciences
 
005 20151130 adversary_networks
Ha Phuong
 
Immunizing Image Classifiers Against Localized Adversary Attacks
gerogepatton
 
Immunizing Image Classifiers Against Localized Adversary Attacks
gerogepatton
 
Adversarial examples in deep learning (Gregory Chatel)
MeetupDataScienceRoma
 
Security and Privacy of Machine Learning
Priyanka Aash
 
Generative Adversarial Networks (GANs) at the Data Science Meetup Luxembourg ...
Chris Hammerschmidt
 
Ensembles of Many Diverse Weak Defenses can be Strong: Defending Deep Neural ...
Pooyan Jamshidi
 
BOOSTING ADVERSARIAL ATTACKS WITH MOMENTUM - Tianyu Pang and Chao Du, THU - D...
GeekPwn Keen
 
Ad

More from The Statistical and Applied Mathematical Sciences Institute (20)

PDF
Causal Inference Opening Workshop - Latent Variable Models, Causal Inference,...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
2019 Fall Series: Special Guest Lecture - 0-1 Phase Transitions in High Dimen...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Causal Discovery in Neuroimaging Data - F...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Smooth Extensions to BART for Heterogeneo...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - A Bracketing Relationship between Differe...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Testing Weak Nulls in Matched Observation...
The Statistical and Applied Mathematical Sciences Institute
 
PPTX
Causal Inference Opening Workshop - Difference-in-differences: more than meet...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - New Statistical Learning Methods for Esti...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Bipartite Causal Inference with Interfere...
The Statistical and Applied Mathematical Sciences Institute
 
PPTX
Causal Inference Opening Workshop - Bridging the Gap Between Causal Literatur...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Some Applications of Reinforcement Learni...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Bracketing Bounds for Differences-in-Diff...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Assisting the Impact of State Polcies: Br...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Experimenting in Equilibrium - Stefan Wag...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Targeted Learning for Causal Inference Ba...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
Causal Inference Opening Workshop - Bayesian Nonparametric Models for Treatme...
The Statistical and Applied Mathematical Sciences Institute
 
PPTX
2019 Fall Series: Special Guest Lecture - Adversarial Risk Analysis of the Ge...
The Statistical and Applied Mathematical Sciences Institute
 
PPTX
2019 Fall Series: Professional Development, Writing Academic Papers…What Work...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
2019 GDRR: Blockchain Data Analytics - Machine Learning in/for Blockchain: Fu...
The Statistical and Applied Mathematical Sciences Institute
 
PDF
2019 GDRR: Blockchain Data Analytics - QuTrack: Model Life Cycle Management f...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Latent Variable Models, Causal Inference,...
The Statistical and Applied Mathematical Sciences Institute
 
2019 Fall Series: Special Guest Lecture - 0-1 Phase Transitions in High Dimen...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Causal Discovery in Neuroimaging Data - F...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Smooth Extensions to BART for Heterogeneo...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - A Bracketing Relationship between Differe...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Testing Weak Nulls in Matched Observation...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Difference-in-differences: more than meet...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - New Statistical Learning Methods for Esti...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Bipartite Causal Inference with Interfere...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Bridging the Gap Between Causal Literatur...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Some Applications of Reinforcement Learni...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Bracketing Bounds for Differences-in-Diff...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Assisting the Impact of State Polcies: Br...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Experimenting in Equilibrium - Stefan Wag...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Targeted Learning for Causal Inference Ba...
The Statistical and Applied Mathematical Sciences Institute
 
Causal Inference Opening Workshop - Bayesian Nonparametric Models for Treatme...
The Statistical and Applied Mathematical Sciences Institute
 
2019 Fall Series: Special Guest Lecture - Adversarial Risk Analysis of the Ge...
The Statistical and Applied Mathematical Sciences Institute
 
2019 Fall Series: Professional Development, Writing Academic Papers…What Work...
The Statistical and Applied Mathematical Sciences Institute
 
2019 GDRR: Blockchain Data Analytics - Machine Learning in/for Blockchain: Fu...
The Statistical and Applied Mathematical Sciences Institute
 
2019 GDRR: Blockchain Data Analytics - QuTrack: Model Life Cycle Management f...
The Statistical and Applied Mathematical Sciences Institute
 
Ad

Recently uploaded (20)

PDF
Computing-Curriculum for Schools in Ghana
abigailanane203
 
PDF
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
PPTX
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
PDF
Pre independence Education in Inndia.pdf
goofy5603
 
PDF
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
PDF
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
PDF
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
PDF
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
PPTX
Introduction_to_Human_Anatomy_and_Physiology_for_B.Pharm.pptx
chetansingh379583
 
PPTX
master seminar digital applications in india
ananyaray35
 
PPTX
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
PPTX
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
PDF
BÀI TẬP BỔ TRỢ 4 KỸ NĂNG TIẾNG ANH 9 GLOBAL SUCCESS - CẢ NĂM - BÁM SÁT FORM Đ...
Nguyen Thanh Tu Collection
 
PPTX
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
PDF
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
PPTX
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
PDF
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
PDF
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
PPTX
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
PDF
VCE English Exam - Section C Student Revision Booklet
jpinnuck
 
Computing-Curriculum for Schools in Ghana
abigailanane203
 
01-Introduction-to-Information-Management.pdf
PrinceIbarra
 
GDM (1) (1).pptx small presentation for students
shrawanbpkihs
 
Pre independence Education in Inndia.pdf
goofy5603
 
O5-L3 Freight Transport Ops (International) V1.pdf
labyankof
 
O7-L3 Supply Chain Operations - ICLT Program
labyankof
 
Insiders guide to clinical Medicine.pdf
AbhishekPatil315128
 
Anesthesia in Laparoscopic Surgery in India
mohitsuren827
 
Introduction_to_Human_Anatomy_and_Physiology_for_B.Pharm.pptx
chetansingh379583
 
master seminar digital applications in india
ananyaray35
 
Cell Structure & Organelles in detailed.
DHANASHREESIVAKUMAR
 
Renaissance Architecture: A Journey from Faith to Humanism
DrMonicaSharma
 
BÀI TẬP BỔ TRỢ 4 KỸ NĂNG TIẾNG ANH 9 GLOBAL SUCCESS - CẢ NĂM - BÁM SÁT FORM Đ...
Nguyen Thanh Tu Collection
 
Microbial diseases, their pathogenesis and prophylaxis
DevlinaSengupta
 
Saundersa Comprehensive Review for the NCLEX-RN Examination.pdf
sreejithcareers
 
Final Presentation General Medicine 03-08-2024.pptx
ZaheerAhmad228692
 
Microbial disease of the cardiovascular and lymphatic systems
KeyaSharma
 
grade 11-chemistry_fetena_net_5883.pdf teacher guide for all student
banteamlakmebratu738
 
PPH.pptx obstetrics and gynecology in nursing
SrideviDevaraj5
 
VCE English Exam - Section C Student Revision Booklet
jpinnuck
 

2019 Triangle Machine Learning Day - Mitigating Evasion Attacks to Deep Neural Networks via Region-based Classification - Xiaoyu Cao, September 20, 2019