Nour El-Houda Sayah Ben Aissa, C. A. Kerrache, Ahmed Korichi, Abderrahmane Lakas, Abdelkader Nasreddine Belkacem
{"title":"利用生成式对抗网络方法增强脑电信号分类器的鲁棒性,抵御对抗性攻击","authors":"Nour El-Houda Sayah Ben Aissa, C. A. Kerrache, Ahmed Korichi, Abderrahmane Lakas, Abdelkader Nasreddine Belkacem","doi":"10.1109/IOTM.001.2300262","DOIUrl":null,"url":null,"abstract":"Electroencephalogram (EEG) based brain computer interfaces (BCIs) have particularly benefited from deep learning models thanks to their remarkable performance for classification purposes. Despite their success, these models have shown to be vulnerable to adversarial attacks, which are attacks that manipulate EEG signals to cause misclassification. Adversarial training, where models are trained on both normal and adversarial examples, has been proposed to address this issue. However, overfitting on adversarial examples can lead to reduced performance. To overcome this challenge, we present a new approach of adversarial training based on a generative adversarial network (GAN). In particular, we first generate real adversarial examples using fast gradient sign method, Then, Our GAN generates new adversarial EEG signals using real adversarial examples as a validation set. By incorporating both real and generated adversarial examples during training, we enhance the EEG model performance. Finally, we evaluate our approach on BCI competition 2a dataset showing that it achieves a statistically significant performance improvement and enhances the robustness to adversarial attacks.","PeriodicalId":235472,"journal":{"name":"IEEE Internet of Things Magazine","volume":"20 23","pages":"44-49"},"PeriodicalIF":0.0000,"publicationDate":"2024-05-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Enhancing EEG Signal Classifier Robustness Against Adversarial Attacks Using a Generative Adversarial Network Approach\",\"authors\":\"Nour El-Houda Sayah Ben Aissa, C. A. Kerrache, Ahmed Korichi, Abderrahmane Lakas, Abdelkader Nasreddine Belkacem\",\"doi\":\"10.1109/IOTM.001.2300262\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Electroencephalogram (EEG) based brain computer interfaces (BCIs) have particularly benefited from deep learning models thanks to their remarkable performance for classification purposes. Despite their success, these models have shown to be vulnerable to adversarial attacks, which are attacks that manipulate EEG signals to cause misclassification. Adversarial training, where models are trained on both normal and adversarial examples, has been proposed to address this issue. However, overfitting on adversarial examples can lead to reduced performance. To overcome this challenge, we present a new approach of adversarial training based on a generative adversarial network (GAN). In particular, we first generate real adversarial examples using fast gradient sign method, Then, Our GAN generates new adversarial EEG signals using real adversarial examples as a validation set. By incorporating both real and generated adversarial examples during training, we enhance the EEG model performance. Finally, we evaluate our approach on BCI competition 2a dataset showing that it achieves a statistically significant performance improvement and enhances the robustness to adversarial attacks.\",\"PeriodicalId\":235472,\"journal\":{\"name\":\"IEEE Internet of Things Magazine\",\"volume\":\"20 23\",\"pages\":\"44-49\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-05-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Internet of Things Magazine\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IOTM.001.2300262\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet of Things Magazine","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IOTM.001.2300262","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Enhancing EEG Signal Classifier Robustness Against Adversarial Attacks Using a Generative Adversarial Network Approach
Electroencephalogram (EEG) based brain computer interfaces (BCIs) have particularly benefited from deep learning models thanks to their remarkable performance for classification purposes. Despite their success, these models have shown to be vulnerable to adversarial attacks, which are attacks that manipulate EEG signals to cause misclassification. Adversarial training, where models are trained on both normal and adversarial examples, has been proposed to address this issue. However, overfitting on adversarial examples can lead to reduced performance. To overcome this challenge, we present a new approach of adversarial training based on a generative adversarial network (GAN). In particular, we first generate real adversarial examples using fast gradient sign method, Then, Our GAN generates new adversarial EEG signals using real adversarial examples as a validation set. By incorporating both real and generated adversarial examples during training, we enhance the EEG model performance. Finally, we evaluate our approach on BCI competition 2a dataset showing that it achieves a statistically significant performance improvement and enhances the robustness to adversarial attacks.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
