A delayed elastic-net approach for performing adversarial attacks
| UDC.coleccion | Investigación | es_ES |
| UDC.conferenceTitle | ICPR 2020 | es_ES |
| UDC.departamento | Ciencias da Computación e Tecnoloxías da Información | es_ES |
| UDC.endPage | 384 | es_ES |
| UDC.grupoInv | Laboratorio de Investigación e Desenvolvemento en Intelixencia Artificial (LIDIA) | es_ES |
| UDC.issue | 94131702 | es_ES |
| UDC.startPage | 378 | es_ES |
| dc.contributor.author | Cancela, Brais | |
| dc.contributor.author | Bolón-Canedo, Verónica | |
| dc.contributor.author | Alonso-Betanzos, Amparo | |
| dc.date.accessioned | 2024-11-20T09:36:32Z | |
| dc.date.available | 2024-11-20T09:36:32Z | |
| dc.date.issued | 2021 | |
| dc.description | Presented at: 5th International Conference on Pattern Recognition, ICPR 2020, Virtual, Milan, 10-15 January 2021 | es_ES |
| dc.description | This version of the paper has been accepted for publication. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works. The final published paper is available online at: https://doi.org/10.1109/ICPR48806.2021.9413170 | es_ES |
| dc.description.abstract | [Abstract]: With the rise of the so-called Adversarial Attacks, there is an increased concern on model security. In this paper we present two different contributions: novel measures of robustness (based on adversarial attacks) and a novel adversarial attack. The key idea behind these metrics is to obtain a measure that could compare different architectures, with independence of how the input is preprocessed (robustness against different input sizes and value ranges). To do so, a novel adversarial attack is presented, performing a delayed elastic-net adversarial attack (constraints are only used whenever a successful adversarial attack is obtained). Experimental results show that our approach obtains state-of-the-art adversarial samples, in terms of minimal perturbation distance. Finally, a benchmark of ImageNet pretrained models is used to conduct experiments aiming to shed some light about which model should be selected whenever security is a role factor. | es_ES |
| dc.description.sponsorship | This research has been financially supported in part by European Union ERDF funds, by the Spanish Ministerio de Economía y Competitividad (research project TIN2015-65069-C2), and by the Xunta de Galicia (research projects GRC2014/035 and ED431G/01). We also gratefully acknowledge the support of NVIDIA Corporation with the donation of the Titan Xp GPU used for this research. Brais Cancela acknowledges the support of the Xunta de Galicia under its postdoctoral program. | es_ES |
| dc.description.sponsorship | Xunta de Galicia; GRC2014/035 | es_ES |
| dc.description.sponsorship | Xunta de Galicia; ED431G/01 | es_ES |
| dc.identifier.citation | B. Cancela, V. Bolón-Canedo and A. Alonso-Betanzos, "A delayed Elastic-Net approach for performing adversarial attacks," 2020 25th International Conference on Pattern Recognition (ICPR), Milan, Italy, 2021, pp. 378-384, doi: 10.1109/ICPR48806.2021.9413170. | es_ES |
| dc.identifier.doi | 10.1109/ICPR48806.2021.9413170 | |
| dc.identifier.uri | http://hdl.handle.net/2183/40205 | |
| dc.language.iso | eng | es_ES |
| dc.publisher | IEEE | es_ES |
| dc.relation.projectID | info:eu-repo/grantAgreement/MINECO/Plan Estatal de Investigación Científica y Técnica y de Innovación 2013-2016/TIN2015-65069-C2-1-R/ES/ALGORITMOS ESCALABLES DE APRENDIZAJE COMPUTACIONAL: MAS ALLA DE LA CLASIFICACION Y LA REGRESION | es_ES |
| dc.relation.projectID | info:eu-repo/grantAgreement/MINECO/Plan Estatal de Investigación Científica y Técnica y de Innovación 2013-2016/TIN2015-65069-C2-2-R/ES/ALGORITMOS ESCALABLES DE APRENDIZAJE COMPUTACIONAL: MAS ALLA DE LA CLASIFICACION Y LA REGRESION | es_ES |
| dc.relation.uri | https://doi.org/10.1109/ICPR48806.2021.9413170 | es_ES |
| dc.rights | © 2021, IEEE | es_ES |
| dc.rights.accessRights | open access | es_ES |
| dc.subject | Perturbation methods | es_ES |
| dc.subject | Data preprocessing | es_ES |
| dc.subject | Benchmark testing | es_ES |
| dc.subject | Size measurement | es_ES |
| dc.subject | Robustness | es_ES |
| dc.subject | Pattern recognition | es_ES |
| dc.subject | Security | es_ES |
| dc.title | A delayed elastic-net approach for performing adversarial attacks | es_ES |
| dc.type | conference output | es_ES |
| dspace.entity.type | Publication | |
| relation.isAuthorOfPublication | ba91aca1-bdb4-4be5-b686-463937924910 | |
| relation.isAuthorOfPublication | c114dccd-76e4-4959-ba6b-7c7c055289b1 | |
| relation.isAuthorOfPublication | a89f1cad-dbc5-471f-986a-26c021ed4a95 | |
| relation.isAuthorOfPublication.latestForDiscovery | ba91aca1-bdb4-4be5-b686-463937924910 |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- Cancela_Brais_2021_A_delayed_Elastic_Net_approach_for_performing.pdf
- Size:
- 545.38 KB
- Format:
- Adobe Portable Document Format
- Description: