Towards optimal defences on adversarial examples for DNN-driven digital twinning
Digital twinning is one of the main enablers of the Metaverse. It involves the creation of a digital twin (DT), a virtual model that accurately reflects a physical entity (PE) in real time. Integral to digital twinning are DNNs, which play a pivotal role in enhancing the digital twinning process....
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
Nanyang Technological University
2023
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/10356/171756 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-171756 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-1717562023-11-10T15:37:11Z Towards optimal defences on adversarial examples for DNN-driven digital twinning Lee, Michael Yew Chuan Jun Zhao School of Computer Science and Engineering junzhao@ntu.edu.sg Engineering::Computer science and engineering::Computing methodologies::Artificial intelligence Digital twinning is one of the main enablers of the Metaverse. It involves the creation of a digital twin (DT), a virtual model that accurately reflects a physical entity (PE) in real time. Integral to digital twinning are DNNs, which play a pivotal role in enhancing the digital twinning process. Not only are DNNs used to fulfil the functional requirements of DTs, but they also facilitate essential underlying processes supporting DTs. This includes enabling seamless information communication and optimising the allocation of resources among the devices that support DTs. Thus, DNNs are crucial to the optimal and smooth execution of DTs. However, DNNs are vulnerable to a type of attack known as adversarial examples. Such attacks threaten the functionality of DTs when DNNs supporting the digital twinning process are attacked. While defences for DNNs exist, works typically only focus on high attack prevention rates. However, tradeoffs exist when applying these defences in the real world. While high attack prevention rates lessen the threat to DTs, it could lead to increased network latency and resource usage. These effects if significant can negatively impact the functionality of DTs, and harm the digital twining experience. As such, we argue that it is equally important to consider the tradeoffs when applying defences in the real world. This will ensure the real-time support required by DTs in the Metaverse. In this paper, we begin by discussing adversarial attacks and defences. Then, we show how the entire DNN-enabled digital twinning pipeline is susceptible to attacks, and suggest defences to defend against them. Following this, we introduce a framework that uses deep reinforcement learning as an optimiser to alleviate the tradeoffs that arise from implementing the defence mechanisms. This will improve the feasibility of defences for DNNs supporting the digital twinning process. Experiments demonstrate that our solution can alleviate the tradeoffs incurred. Bachelor of Engineering (Computer Science) 2023-11-07T07:05:34Z 2023-11-07T07:05:34Z 2023 Final Year Project (FYP) Lee, M. Y. C. (2023). Towards optimal defences on adversarial examples for DNN-driven digital twinning. Final Year Project (FYP), Nanyang Technological University, Singapore. https://hdl.handle.net/10356/171756 https://hdl.handle.net/10356/171756 en SCSE22-0829 application/pdf Nanyang Technological University |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
Engineering::Computer science and engineering::Computing methodologies::Artificial intelligence |
| spellingShingle |
Engineering::Computer science and engineering::Computing methodologies::Artificial intelligence Lee, Michael Yew Chuan Towards optimal defences on adversarial examples for DNN-driven digital twinning |
| description |
Digital twinning is one of the main enablers of the Metaverse. It involves the creation of a
digital twin (DT), a virtual model that accurately reflects a physical entity (PE) in real time.
Integral to digital twinning are DNNs, which play a pivotal role in enhancing the digital
twinning process. Not only are DNNs used to fulfil the functional requirements of DTs, but
they also facilitate essential underlying processes supporting DTs. This includes enabling
seamless information communication and optimising the allocation of resources among the
devices that support DTs. Thus, DNNs are crucial to the optimal and smooth execution of
DTs. However, DNNs are vulnerable to a type of attack known as adversarial examples. Such
attacks threaten the functionality of DTs when DNNs supporting the digital twinning process
are attacked. While defences for DNNs exist, works typically only focus on high attack
prevention rates. However, tradeoffs exist when applying these defences in the real world.
While high attack prevention rates lessen the threat to DTs, it could lead to increased network
latency and resource usage. These effects if significant can negatively impact the
functionality of DTs, and harm the digital twining experience. As such, we argue that it is
equally important to consider the tradeoffs when applying defences in the real world. This
will ensure the real-time support required by DTs in the Metaverse. In this paper, we begin by
discussing adversarial attacks and defences. Then, we show how the entire DNN-enabled
digital twinning pipeline is susceptible to attacks, and suggest defences to defend against
them. Following this, we introduce a framework that uses deep reinforcement learning as an
optimiser to alleviate the tradeoffs that arise from implementing the defence mechanisms.
This will improve the feasibility of defences for DNNs supporting the digital twinning
process. Experiments demonstrate that our solution can alleviate the tradeoffs incurred. |
| author2 |
Jun Zhao |
| author_facet |
Jun Zhao Lee, Michael Yew Chuan |
| format |
Final Year Project |
| author |
Lee, Michael Yew Chuan |
| author_sort |
Lee, Michael Yew Chuan |
| title |
Towards optimal defences on adversarial examples for DNN-driven digital twinning |
| title_short |
Towards optimal defences on adversarial examples for DNN-driven digital twinning |
| title_full |
Towards optimal defences on adversarial examples for DNN-driven digital twinning |
| title_fullStr |
Towards optimal defences on adversarial examples for DNN-driven digital twinning |
| title_full_unstemmed |
Towards optimal defences on adversarial examples for DNN-driven digital twinning |
| title_sort |
towards optimal defences on adversarial examples for dnn-driven digital twinning |
| publisher |
Nanyang Technological University |
| publishDate |
2023 |
| url |
https://hdl.handle.net/10356/171756 |
| _version_ |
1783955536874569728 |