An analysis of adversarial algorithm techniques in image recognition and their countermeasures
The ability of neural network models to generalise and identify unseen data allows for neural networks to operate outside of what it has been trained on, but makes it vulnerable to data samples altered in human imperceptible ways to produce incorrect predictions. This project aims to experimentally...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
Nanyang Technological University
2021
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/10356/153433 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-153433 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-1534332021-12-02T06:01:05Z An analysis of adversarial algorithm techniques in image recognition and their countermeasures Tan, Alastair Song Xin Kong Wai-Kin Adams School of Computer Science and Engineering AdamsKong@ntu.edu.sg Engineering::Computer science and engineering The ability of neural network models to generalise and identify unseen data allows for neural networks to operate outside of what it has been trained on, but makes it vulnerable to data samples altered in human imperceptible ways to produce incorrect predictions. This project aims to experimentally test some adversarial algorithms used to fool neural networks, and examine some defensive techniques used to mitigate or prevent such attacks. The MNIST digit dataset, Tensorflow and the Cleverhans Library were used to collect the results required, and it was identified that dropping out neurons and adversarial training not only provided some level of protection against basic adversarial attacks, but improved a model’s capability to generalise and identify unseen, non-adversarial samples. Bachelor of Engineering (Computer Science) 2021-12-02T06:01:04Z 2021-12-02T06:01:04Z 2021 Final Year Project (FYP) Tan, A. S. X. (2021). An analysis of adversarial algorithm techniques in image recognition and their countermeasures. Final Year Project (FYP), Nanyang Technological University, Singapore. https://hdl.handle.net/10356/153433 https://hdl.handle.net/10356/153433 en application/pdf Nanyang Technological University |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
Engineering::Computer science and engineering |
| spellingShingle |
Engineering::Computer science and engineering Tan, Alastair Song Xin An analysis of adversarial algorithm techniques in image recognition and their countermeasures |
| description |
The ability of neural network models to generalise and identify unseen data allows for neural networks to operate outside of what it has been trained on, but makes it vulnerable to data samples altered in human imperceptible ways to produce incorrect predictions. This project aims to experimentally test some adversarial algorithms used to fool neural networks, and examine some defensive techniques used to mitigate or prevent such attacks. The MNIST digit dataset, Tensorflow and the Cleverhans Library were used to collect the results required, and it was identified that dropping out neurons and adversarial training not only provided some level of protection against basic adversarial attacks, but improved a model’s capability to generalise and identify unseen, non-adversarial samples. |
| author2 |
Kong Wai-Kin Adams |
| author_facet |
Kong Wai-Kin Adams Tan, Alastair Song Xin |
| format |
Final Year Project |
| author |
Tan, Alastair Song Xin |
| author_sort |
Tan, Alastair Song Xin |
| title |
An analysis of adversarial algorithm techniques in image recognition and their countermeasures |
| title_short |
An analysis of adversarial algorithm techniques in image recognition and their countermeasures |
| title_full |
An analysis of adversarial algorithm techniques in image recognition and their countermeasures |
| title_fullStr |
An analysis of adversarial algorithm techniques in image recognition and their countermeasures |
| title_full_unstemmed |
An analysis of adversarial algorithm techniques in image recognition and their countermeasures |
| title_sort |
analysis of adversarial algorithm techniques in image recognition and their countermeasures |
| publisher |
Nanyang Technological University |
| publishDate |
2021 |
| url |
https://hdl.handle.net/10356/153433 |
| _version_ |
1718368092487155712 |