{"title":"Abnormal sample detection based on robust Mahalanobis distance estimation in adversarial machine learning","authors":"Wan Tian, Lingyue Zhang, Hengjian Cui","doi":"10.4310/23-sii818","DOIUrl":null,"url":null,"abstract":"This paper addresses the problem of abnormal sample detection in deep learning-based computer vision, focusing on two types of abnormal samples: outlier samples and adversarial samples. The presence of these abnormal samples can significantly degrade the performance and robustness of deep learning models, posing security risks in critical areas. To address this, we propose a method that combines robust Mahalanobis distance (RMD) estimation with a pretrained convolutional neural networks (CNNs) model. The RMD estimation involves using minimum covariance matrix determinant (MCD), $T$-type, and $S$ estimators. Furthermore, we theoretically analyze the breakdown point and influence function of the $T$-type estimator. To evaluate the effectiveness and robustness of our method, we utilize public datasets, CNN models, and adversarial sample generation algorithms commonly employed in the field. The experimental results demonstrate the effectiveness of our algorithm in detecting abnormal samples.","PeriodicalId":0,"journal":{"name":"","volume":null,"pages":null},"PeriodicalIF":0.0,"publicationDate":"2023-11-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"","FirstCategoryId":"100","ListUrlMain":"https://doi.org/10.4310/23-sii818","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
This paper addresses the problem of abnormal sample detection in deep learning-based computer vision, focusing on two types of abnormal samples: outlier samples and adversarial samples. The presence of these abnormal samples can significantly degrade the performance and robustness of deep learning models, posing security risks in critical areas. To address this, we propose a method that combines robust Mahalanobis distance (RMD) estimation with a pretrained convolutional neural networks (CNNs) model. The RMD estimation involves using minimum covariance matrix determinant (MCD), $T$-type, and $S$ estimators. Furthermore, we theoretically analyze the breakdown point and influence function of the $T$-type estimator. To evaluate the effectiveness and robustness of our method, we utilize public datasets, CNN models, and adversarial sample generation algorithms commonly employed in the field. The experimental results demonstrate the effectiveness of our algorithm in detecting abnormal samples.
分享
京公网安备 11010802042870号
京ICP备2023020795号-1
求助内容:
应助结果提醒方式:
扫码关注我们
