DC Field | Value | Language |
---|---|---|
dc.contributor.author | Ji, Sangwoo | - |
dc.contributor.author | Park, Namgyu | - |
dc.contributor.author | Na, Dongbin | - |
dc.contributor.author | Zhu, Bin | - |
dc.contributor.author | Kim, Jong | - |
dc.date.accessioned | 2023-07-11T01:40:50Z | - |
dc.date.available | 2023-07-11T01:40:50Z | - |
dc.date.created | 2022-09-29 | - |
dc.date.issued | 2022-10 | - |
dc.identifier.issn | 1077-3142 | - |
dc.identifier.uri | https://oasis.postech.ac.kr/handle/2014.oak/117883 | - |
dc.description.abstract | © 2022 Elsevier Inc.Transfer learning is preferable for training a deep neural network with a small training dataset by leveraging a pre-trained teacher model. However, transfer learning opens a door for new attacks that generate adversarial examples using the pre-trained teacher model. In this paper, we propose a novel method called feature distancing to defend against adversarial attacks tailored to transfer learning. The method aims to train a student model with a distinct feature representation from the teacher model. We generate adversarial examples of the mimic attack with the teacher model, and the examples are used to train the student model. We use triplet loss to put the mimic attack examples close to their source images and far from their target images in the feature space of the student model. The proposed method is evaluated on three different transfer learning tasks with diverse attack configurations. It is the only method that achieves high “robust accuracy” and high “test accuracy” on every task we evaluate. | - |
dc.language | English | - |
dc.publisher | Academic Press Inc. | - |
dc.relation.isPartOf | Computer Vision and Image Understanding | - |
dc.title | Defending against attacks tailored to transfer learning via feature distancing | - |
dc.type | Article | - |
dc.identifier.doi | 10.1016/j.cviu.2022.103533 | - |
dc.type.rims | ART | - |
dc.identifier.bibliographicCitation | Computer Vision and Image Understanding, v.223 | - |
dc.identifier.wosid | 000864655200004 | - |
dc.citation.title | Computer Vision and Image Understanding | - |
dc.citation.volume | 223 | - |
dc.contributor.affiliatedAuthor | Ji, Sangwoo | - |
dc.contributor.affiliatedAuthor | Park, Namgyu | - |
dc.contributor.affiliatedAuthor | Na, Dongbin | - |
dc.contributor.affiliatedAuthor | Kim, Jong | - |
dc.identifier.scopusid | 2-s2.0-85136661502 | - |
dc.description.journalClass | 1 | - |
dc.description.journalClass | 1 | - |
dc.description.isOpenAccess | N | - |
dc.type.docType | Article | - |
dc.subject.keywordAuthor | Adversarial example | - |
dc.subject.keywordAuthor | Mimic attack | - |
dc.subject.keywordAuthor | Robust transfer learning | - |
dc.subject.keywordAuthor | Target-agnostic attack | - |
dc.subject.keywordAuthor | Triplet loss | - |
dc.relation.journalWebOfScienceCategory | Computer Science, Artificial Intelligence | - |
dc.relation.journalWebOfScienceCategory | Engineering, Electrical & Electronic | - |
dc.description.journalRegisteredClass | scie | - |
dc.description.journalRegisteredClass | scopus | - |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
library@postech.ac.kr Tel: 054-279-2548
Copyrights © by 2017 Pohang University of Science ad Technology All right reserved.