Vol. 13, No. 8, August 30, 2019
10.3837/tiis.2019.08.027,
Download Paper (Free):
Abstract
Adversarial attack is a technique that causes a malfunction of classification models by adding noise that cannot be distinguished by humans, which poses a threat to a deep learning model. In this paper, we propose an efficient method to detect adversarial images using Gaussian process regression. Existing deep learning-based adversarial detection methods require numerous adversarial images for their training. The proposed method overcomes this problem by performing classification based on the statistical features of adversarial images and clean images that are extracted by Gaussian process regression with a small number of images. This technique can determine whether the input image is an adversarial image by applying Gaussian process regression based on the intermediate output value of the classification model. Experimental results show that the proposed method achieves higher detection performance than the other deep learning-based adversarial detection methods for powerful attacks. In particular, the Gaussian process regression-based detector shows better detection performance than the baseline models for most attacks in the case with fewer adversarial examples.
Statistics
Show / Hide Statistics
Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.
Cite this article
[IEEE Style]
S. Lee, N. Kim, Y. Cho, J. Choi, S. Kim, J. Kim, J. Lee, "Adversarial Detection with Gaussian Process Regression-based Detector," KSII Transactions on Internet and Information Systems, vol. 13, no. 8, pp. 4285-4299, 2019. DOI: 10.3837/tiis.2019.08.027.
[ACM Style]
Sangheon Lee, Noo-ri Kim, Youngwha Cho, Jae-Young Choi, Suntae Kim, Jeong-Ah Kim, and Jee-Hyong Lee. 2019. Adversarial Detection with Gaussian Process Regression-based Detector. KSII Transactions on Internet and Information Systems, 13, 8, (2019), 4285-4299. DOI: 10.3837/tiis.2019.08.027.
[BibTeX Style]
@article{tiis:22196, title="Adversarial Detection with Gaussian Process Regression-based Detector", author="Sangheon Lee and Noo-ri Kim and Youngwha Cho and Jae-Young Choi and Suntae Kim and Jeong-Ah Kim and Jee-Hyong Lee and ", journal="KSII Transactions on Internet and Information Systems", DOI={10.3837/tiis.2019.08.027}, volume={13}, number={8}, year="2019", month={August}, pages={4285-4299}}