Dinh, V.-N. and Bui, N.-M. and Nguyen, V.-T. and Nguyen, K.-S. and Duong, Q.-M. and Trinh, Q.-K. (2022) A Study on Adversarial Attacks and Defense Method on Binarized Neural Network. In: Conference of 15th International Conference on Advanced Technologies for Communications, ATC 2022, 20 October 2022 Through 22 October 2022, Hanoi.
Full text not available from this repository. (Upload)Abstract
Binarized Neural Networks (BNNs) are relatively hardware-efficient neural network models which are seriously considered for edge-AI applications. However, BNNs are like other neural networks and exhibit certain linear properties and are vulnerable to adversarial attacks. This work evaluates the robustness of BNNs under Projected Gradient Descent (PGD) - one of the most powerful iterative adversarial attacks, on BNN models and analyzes the effectiveness of corresponding defense methods. Our extensive simulation shows that the network almost malfunction when performing recognition tasks when tested with PGD samples without adversarial training. On the other hand, adversarial training could significantly improve robustness for both BNNs and Deep learning neural networks (DNNs), though strong PGD attacks could still be challenging. Therefore, adversarial attacks are a real threat, and more effective adversarial defense methods and innovative network architectures may be required for practical applications. © 2022 IEEE.
Item Type: | Conference or Workshop Item (Paper) |
---|---|
Divisions: | Faculties > Faculty of Radio-Electronic Engineering |
Identification Number: | 10.1109/ATC55345.2022.9943040 |
Uncontrolled Keywords: | Deep learning; Network architecture; Network security, Adversarial attack; Adversarial training; AI applications; Binarized neural network; Edge-AI; Gradient-descent; Linear properties; Neural network model; Neural-networks; Projected gradient, Gradient methods |
Additional Information: | Conference of 15th International Conference on Advanced Technologies for Communications, ATC 2022 ; Conference Date: 20 October 2022 Through 22 October 2022; Conference Code:184412 |
URI: | http://eprints.lqdtu.edu.vn/id/eprint/10623 |