loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Hatem Ibn-Khedher 1 ; Mohamed Ibn Khedher 2 and Makhlouf Hadji 2

Affiliations: 1 Université de Paris, LIPADE, F-75006 Paris, France ; 2 IRT - SystemX, 8 Avenue de la Vauve, 91120 Palaiseau, France

Keyword(s): Neural Network, Adversarial Attack, Linear Programming (LP).

Abstract: An adversarial attack is defined as the minimal perturbation that change the model decision. Machine learning (ML) models such as Deep Neural Networks (DNNs) are vulnerable to different adversarial examples where malicious perturbed inputs lead to erroneous model outputs. Breaking neural networks with adversarial attack requires an intelligent approach that decides about the maximum allowed margin in which the neural network decision (output) is invariant. In this paper, we propose a new formulation based on linear programming approach modelling adversarial attacks. Our approach considers noised inputs while reaching the optimal perturbation. To assess the performance of our approach, we discuss two main scenarios quantifying the algorithm’s decision behavior in terms of total perturbation cost, percentage of perturbed inputs, and other cost factors. Then, the approach is implemented and evaluated under different neural network scales.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.133.123.162

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Ibn-Khedher, H.; Ibn Khedher, M. and Hadji, M. (2021). Mathematical Programming Approach for Adversarial Attack Modelling. In Proceedings of the 13th International Conference on Agents and Artificial Intelligence - Volume 2: ICAART; ISBN 978-989-758-484-8; ISSN 2184-433X, SciTePress, pages 343-350. DOI: 10.5220/0010324203430350

@conference{icaart21,
author={Hatem Ibn{-}Khedher. and Mohamed {Ibn Khedher}. and Makhlouf Hadji.},
title={Mathematical Programming Approach for Adversarial Attack Modelling},
booktitle={Proceedings of the 13th International Conference on Agents and Artificial Intelligence - Volume 2: ICAART},
year={2021},
pages={343-350},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010324203430350},
isbn={978-989-758-484-8},
issn={2184-433X},
}

TY - CONF

JO - Proceedings of the 13th International Conference on Agents and Artificial Intelligence - Volume 2: ICAART
TI - Mathematical Programming Approach for Adversarial Attack Modelling
SN - 978-989-758-484-8
IS - 2184-433X
AU - Ibn-Khedher, H.
AU - Ibn Khedher, M.
AU - Hadji, M.
PY - 2021
SP - 343
EP - 350
DO - 10.5220/0010324203430350
PB - SciTePress