Encoding generative adversarial networks for defense against image classification attacks
| dc.centro | E.T.S.I. Informática | es_ES |
| dc.contributor.author | Rodríguez Rodríguez, José Antonio | |
| dc.contributor.author | Pérez Bravo, José María | |
| dc.contributor.author | García-González, Jorge | |
| dc.contributor.author | Molina-Cabello, Miguel Ángel | |
| dc.contributor.author | Thurnhofer-Hemsi, Karl | |
| dc.contributor.author | López-Rubio, Ezequiel | |
| dc.date.accessioned | 2022-06-16T10:08:27Z | |
| dc.date.available | 2022-06-16T10:08:27Z | |
| dc.date.created | 2022-06-16 | |
| dc.date.issued | 2022 | |
| dc.departamento | Lenguajes y Ciencias de la Computación | |
| dc.description.abstract | Image classification has undergone a revolution in recent years due to the high performance of new deep learning models. However, severe security issues may impact the performance of these systems. In particular, adversarial attacks are based on modifying input images in a way that is imperceptible for human vision, so that deep learning image classifiers are deceived. This work proposes a new deep neural network model composed of an encoder and a Generative Adversarial Network (GAN). The former encodes a possibly malformed input image into a latent vector, while the latter generates a reconstructed image from the latent vector. Then the reconstructed image can be reliably classified because our model removes the deleterious effects of the attack. The experiments carried out were designed to test the proposed approach against the Fast Gradient Signed Method attack. The obtained results demonstrate the suitability of our approach in terms of an excellent balance between classification accuracy and computational cost. | es_ES |
| dc.description.sponsorship | Universidad de Málaga. Campus de Excelencia Internacional Andalucía Tech. | es_ES |
| dc.identifier.uri | https://hdl.handle.net/10630/24396 | |
| dc.language.iso | eng | es_ES |
| dc.relation.eventdate | Mayo de 2022 | es_ES |
| dc.relation.eventplace | Puerto de la Cruz (Tenerife), España | es_ES |
| dc.relation.eventtitle | International Work-Conference on the Interplay Between Natural and Artificial Computation (IWINAC 2022) | es_ES |
| dc.rights.accessRights | open access | es_ES |
| dc.subject | Inteligencia artificial | es_ES |
| dc.subject | Algoritmos | es_ES |
| dc.subject | Redes neuronales (Informática) | es_ES |
| dc.subject | Aprendizaje automático (Inteligencia artificial) | es_ES |
| dc.subject.other | Adversarial attack | es_ES |
| dc.subject.other | Generative adversarial networks | es_ES |
| dc.subject.other | Fast gradient signed method attack | es_ES |
| dc.title | Encoding generative adversarial networks for defense against image classification attacks | es_ES |
| dc.type | conference output | es_ES |
| dspace.entity.type | Publication | |
| relation.isAuthorOfPublication | bd8d08dc-ffee-4da1-9656-28204211eb1a | |
| relation.isAuthorOfPublication | ae409266-06a3-4cd4-84e8-fb88d4976b3f | |
| relation.isAuthorOfPublication.latestForDiscovery | bd8d08dc-ffee-4da1-9656-28204211eb1a |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- IWINAC_2022___Encoding_Generative_Adversarial_Networks_for_defense_against_image_classification_attacks.pdf
- Size:
- 608.94 KB
- Format:
- Adobe Portable Document Format
- Description: