通过模块噪声攻克端到端自动驾驶技术

arXiv - CS - Machine Learning Pub Date : 2024-09-12 DOI:arxiv-2409.07706

Lu Wang, Tianyuan Zhang, Yikai Han, Muyang Fang, Ting Jin, Jiaqi Kang

{"title":"通过模块噪声攻克端到端自动驾驶技术","authors":"Lu Wang, Tianyuan Zhang, Yikai Han, Muyang Fang, Ting Jin, Jiaqi Kang","doi":"arxiv-2409.07706","DOIUrl":null,"url":null,"abstract":"With recent breakthroughs in deep neural networks, numerous tasks within\nautonomous driving have exhibited remarkable performance. However, deep\nlearning models are susceptible to adversarial attacks, presenting significant\nsecurity risks to autonomous driving systems. Presently, end-to-end\narchitectures have emerged as the predominant solution for autonomous driving,\nowing to their collaborative nature across different tasks. Yet, the\nimplications of adversarial attacks on such models remain relatively\nunexplored. In this paper, we conduct comprehensive adversarial security\nresearch on the modular end-to-end autonomous driving model for the first time.\nWe thoroughly consider the potential vulnerabilities in the model inference\nprocess and design a universal attack scheme through module-wise noise\ninjection. We conduct large-scale experiments on the full-stack autonomous\ndriving model and demonstrate that our attack method outperforms previous\nattack methods. We trust that our research will offer fresh insights into\nensuring the safety and reliability of autonomous driving systems.","PeriodicalId":501301,"journal":{"name":"arXiv - CS - Machine Learning","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2024-09-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Attack End-to-End Autonomous Driving through Module-Wise Noise\",\"authors\":\"Lu Wang, Tianyuan Zhang, Yikai Han, Muyang Fang, Ting Jin, Jiaqi Kang\",\"doi\":\"arxiv-2409.07706\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With recent breakthroughs in deep neural networks, numerous tasks within\\nautonomous driving have exhibited remarkable performance. However, deep\\nlearning models are susceptible to adversarial attacks, presenting significant\\nsecurity risks to autonomous driving systems. Presently, end-to-end\\narchitectures have emerged as the predominant solution for autonomous driving,\\nowing to their collaborative nature across different tasks. Yet, the\\nimplications of adversarial attacks on such models remain relatively\\nunexplored. In this paper, we conduct comprehensive adversarial security\\nresearch on the modular end-to-end autonomous driving model for the first time.\\nWe thoroughly consider the potential vulnerabilities in the model inference\\nprocess and design a universal attack scheme through module-wise noise\\ninjection. We conduct large-scale experiments on the full-stack autonomous\\ndriving model and demonstrate that our attack method outperforms previous\\nattack methods. We trust that our research will offer fresh insights into\\nensuring the safety and reliability of autonomous driving systems.\",\"PeriodicalId\":501301,\"journal\":{\"name\":\"arXiv - CS - Machine Learning\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-09-12\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"arXiv - CS - Machine Learning\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/arxiv-2409.07706\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Machine Learning","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.07706","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

随着最近深度神经网络的突破，许多自动驾驶任务都表现出了不俗的性能。然而，深度学习模型容易受到对抗性攻击，给自动驾驶系统带来了巨大的安全风险。目前，端到端体系结构已成为自动驾驶的主要解决方案，因为它们具有跨不同任务的协作性质。然而，对抗性攻击对此类模型的影响仍然相对较少。本文首次对模块化端到端自动驾驶模型进行了全面的对抗性安全研究。我们深入考虑了模型推理过程中的潜在漏洞，并设计了一种通过模块噪声注入的通用攻击方案。我们在全栈自动驾驶模型上进行了大规模实验，证明我们的攻击方法优于之前的攻击方法。我们相信，我们的研究将为确保自动驾驶系统的安全性和可靠性提供新的见解。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Attack End-to-End Autonomous Driving through Module-Wise Noise

With recent breakthroughs in deep neural networks, numerous tasks within autonomous driving have exhibited remarkable performance. However, deep learning models are susceptible to adversarial attacks, presenting significant security risks to autonomous driving systems. Presently, end-to-end architectures have emerged as the predominant solution for autonomous driving, owing to their collaborative nature across different tasks. Yet, the implications of adversarial attacks on such models remain relatively unexplored. In this paper, we conduct comprehensive adversarial security research on the modular end-to-end autonomous driving model for the first time. We thoroughly consider the potential vulnerabilities in the model inference process and design a universal attack scheme through module-wise noise injection. We conduct large-scale experiments on the full-stack autonomous driving model and demonstrate that our attack method outperforms previous attack methods. We trust that our research will offer fresh insights into ensuring the safety and reliability of autonomous driving systems.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

arXiv - CS - Machine Learning

自引率

0.00%

发文量