Item Infomation
Full metadata record
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Gábor, Szűcs | - |
dc.contributor.author | Richárd, Kiss | - |
dc.date.accessioned | 2023-04-26T06:44:51Z | - |
dc.date.available | 2023-04-26T06:44:51Z | - |
dc.date.issued | 2022 | - |
dc.identifier.uri | https://link.springer.com/article/10.1007/s11042-022-14021-5 | - |
dc.identifier.uri | https://dlib.phenikaa-uni.edu.vn/handle/PNK/8333 | - |
dc.description | CC BY | vi |
dc.description.abstract | The fast improvement of deep learning methods resulted in breakthroughs in image classification, however, these models are sensitive to adversarial perturbations, which can cause serious problems. Adversarial attacks try to change the model output by adding noise to the input, in our research we propose a combined defense method against it. Two defense approaches have been evolved in the literature, one robustizes the attacked model for higher accuracy, and the other approach detects the adversarial examples. Only very few papers discuss both approaches, thus our aim was to combine them to obtain a more robust model and to examine the combination, in particular the filtering capability of the detector. Our contribution was that the filtering based on the decision of the detector is able to enhance the accuracy, which was theoretically proved. | vi |
dc.language.iso | en | vi |
dc.publisher | Springer | vi |
dc.subject | 2N labeling defense method | vi |
dc.subject | NULL labeling method | vi |
dc.title | 2N labeling defense method against adversarial attacks by filtering and extended class label set | vi |
dc.type | Book | vi |
Appears in Collections | ||
OER - Công nghệ thông tin |
Files in This Item: