DC Field | Value | Language |
---|---|---|
dc.contributor.author | Kang, Mingu | ko |
dc.contributor.author | Tran, Trung Quang | ko |
dc.contributor.author | Cho, Seungju | ko |
dc.contributor.author | Kim,Daeyoung | ko |
dc.date.accessioned | 2021-11-03T06:47:18Z | - |
dc.date.available | 2021-11-03T06:47:18Z | - |
dc.date.created | 2021-10-26 | - |
dc.date.created | 2021-10-26 | - |
dc.date.issued | 2021-07 | - |
dc.identifier.citation | 2021 International Joint Conference on Neural Networks, IJCNN 2021 | - |
dc.identifier.uri | http://hdl.handle.net/10203/288646 | - |
dc.description.abstract | Adversarial attack is aimed at fooling a target classifier with imperceptible perturbation. Adversarial examples, which are carefully crafted with a malicious purpose, can lead to erroneous predictions, resulting in catastrophic accidents. To mitigate the effect of adversarial attacks, we propose a novel purification model called CAP-GAN. CAP-GAN considers the idea of pixel-level and feature-level consistency to achieve reasonable purification under cycle-consistent learning. Specifically, we utilize a guided attention module and knowledge distillation to convey meaningful information to the purification model. Once the model is fully trained, inputs are projected into the purification model and transformed into clean-like images. We vary the capacity of the adversary to argue the robustness against various types of attack strategies. On CIFAR-10 dataset, CAP-GAN outperforms other pre-processing based defenses under both black-box and white-box settings. | - |
dc.language | English | - |
dc.publisher | Institute of Electrical and Electronics Engineers Inc. | - |
dc.title | CAP-GAN: Towards Adversarial Robustness with Cycle-consistent Attentional Purification | - |
dc.type | Conference | - |
dc.identifier.scopusid | 2-s2.0-85116452157 | - |
dc.type.rims | CONF | - |
dc.citation.publicationname | 2021 International Joint Conference on Neural Networks, IJCNN 2021 | - |
dc.identifier.conferencecountry | CC | - |
dc.identifier.conferencelocation | Shenzhen | - |
dc.identifier.doi | 10.1109/IJCNN52387.2021.9533322 | - |
dc.contributor.localauthor | Kim,Daeyoung | - |
dc.contributor.nonIdAuthor | Kang, Mingu | - |
dc.contributor.nonIdAuthor | Tran, Trung Quang | - |
dc.contributor.nonIdAuthor | Cho, Seungju | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.