Attacks based on malicious perturbations on image processing systems and defense methods against them
Annotation
Systems implementing artificial intelligence technologies have become widespread due to their effectiveness in solving various applied tasks including computer vision. Image processing through neural networks is also used in security- critical systems. At the same time, the use of artificial intelligence is associated with characteristic threats including disruption of machine learning models. The phenomenon of triggering an incorrect neural network response by introducing perturbations that are visually imperceptible to a person was first described and attracted the attention of researchers in 2013. Methods of attacks on neural networks based on malicious perturbations have been continuously improved, ways of disrupting the operation of neural networks in processing various types of data and tasks of the target model have been proposed. The threat of disrupting the functioning of neural networks through these attacks has become a significant problem for systems implementing artificial intelligence technologies. Thus, research in the field of countering attacks based on malicious perturbations is very relevant. This article describes current attacks, provides an overview and comparative analysis of such attacks on image processing systems based on artificial intelligence. Approaches to the classification of attacks based on malicious perturbations are formulated. Defense methods against such attacks are considered, their shortcomings are revealed. The limitations of the applied defense methods that reduce the effectiveness of counteraction to attacks are shown. Approaches and practical measures to detect and eliminate harmful disturbances are proposed.
Keywords
Постоянный URL
Articles in current issue
- Determination of the action type of hydrate formationinhibitors by their infrared spectra
- Application of Raman spectroscopy to study the inactivation process of bacterial microorganisms
- Numerical study of the effect of methemoglobin concentration in the blood on the absorption of light by human skin.
- Low-temperature cell for IR Fourier spectrometric investigation of hydrocarbon substances
- Peculiarities of growing Ga1–xInxAs solid solutions on GaAs substrates in the field of a temperature gradient through a thin gas zone
- An enhanced AES-GCM based security protocol for securing the IoT communication
- Brain MRT image super resolution using discrete cosine transform and convolutional neural network
- Text augmentation preserving persona speech style and vocabulary
- Verification of event-driven software systems using the specification language of cooperating automata objects
- Intelligent adaptive testing system
- Neural network-based method for visual recognition of driver’s voice commands using attention mechanism
- Brain tumour segmentation in MRI using fuzzy deformable fusion model with Dolphin-SCA
- Optimization of human tracking systems in virtual reality based on a neural network approach
- Errors in the demodulation algorithm with a generated carrier phase introduted by the low-pass filter
- Modeling of the process of spherical form correction for rotors of electrostatically suspended gyros
- Method of spatial multiplexing in multi-antenna communication systems
- Modeling and simulation of heat exchanger with strong dependence of oil viscosity on temperature
- Approach to the generalized parameters formation of the complex technical systems technical condition using neural network structures
- Numerical simulation of gas dynamics during operation of a wide-range rocket nozzle with a porous insert
- The exact solution of a shock wave reflection problem from a wall shielded by a gas suspension layer
- Adaptive observer for state variables of a time-varying nonlinear system with unknown constant parameters and delayed measurements
- RuLegalNER: a new dataset for Russian legal named entities recognition