{"id":"https://openalex.org/W4390872228","doi":"https://doi.org/10.1109/access.2024.3354699","title":"A Framework for Robust Deep Learning Models Against Adversarial Attacks Based on a Protection Layer Approach","display_name":"A Framework for Robust Deep Learning Models Against Adversarial Attacks Based on a Protection Layer Approach","publication_year":2024,"publication_date":"2024-01-01","ids":{"openalex":"https://openalex.org/W4390872228","doi":"https://doi.org/10.1109/access.2024.3354699"},"language":"en","primary_location":{"id":"doi:10.1109/access.2024.3354699","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2024.3354699","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10400453.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10400453.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5076275091","display_name":"Mohammed Nasser Al-Andoli","orcid":"https://orcid.org/0000-0001-6491-9938"},"institutions":[{"id":"https://openalex.org/I32589535","display_name":"Technical University of Malaysia Malacca","ror":"https://ror.org/01xb6rs26","country_code":"MY","type":"education","lineage":["https://openalex.org/I32589535"]}],"countries":["MY"],"is_corresponding":true,"raw_author_name":"Mohammed Nasser Al-Andoli","raw_affiliation_strings":["Faculty of Information and Communication Technology, Universiti Teknikal Malaysia Melaka, Durian Tunggal, Malaysia"],"affiliations":[{"raw_affiliation_string":"Faculty of Information and Communication Technology, Universiti Teknikal Malaysia Melaka, Durian Tunggal, Malaysia","institution_ids":["https://openalex.org/I32589535"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5053906728","display_name":"Shing Chiang Tan","orcid":"https://orcid.org/0000-0002-1267-1894"},"institutions":[{"id":"https://openalex.org/I173029219","display_name":"Multimedia University","ror":"https://ror.org/04zrbnc33","country_code":"MY","type":"education","lineage":["https://openalex.org/I173029219"]}],"countries":["MY"],"is_corresponding":false,"raw_author_name":"Shing Chiang Tan","raw_affiliation_strings":["Faculty of Information Science and Technology, Multimedia University, Melaka, Malaysia"],"affiliations":[{"raw_affiliation_string":"Faculty of Information Science and Technology, Multimedia University, Melaka, Malaysia","institution_ids":["https://openalex.org/I173029219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010387108","display_name":"Kok Swee Sim","orcid":"https://orcid.org/0000-0003-2976-8825"},"institutions":[{"id":"https://openalex.org/I173029219","display_name":"Multimedia University","ror":"https://ror.org/04zrbnc33","country_code":"MY","type":"education","lineage":["https://openalex.org/I173029219"]}],"countries":["MY"],"is_corresponding":false,"raw_author_name":"Kok Swee Sim","raw_affiliation_strings":["Faculty of Engineering and Technology, Multimedia University, Melaka, Malaysia"],"affiliations":[{"raw_affiliation_string":"Faculty of Engineering and Technology, Multimedia University, Melaka, Malaysia","institution_ids":["https://openalex.org/I173029219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5015350300","display_name":"Pey Yun Goh","orcid":"https://orcid.org/0000-0003-2060-3223"},"institutions":[{"id":"https://openalex.org/I173029219","display_name":"Multimedia University","ror":"https://ror.org/04zrbnc33","country_code":"MY","type":"education","lineage":["https://openalex.org/I173029219"]}],"countries":["MY"],"is_corresponding":false,"raw_author_name":"Pey Yun Goh","raw_affiliation_strings":["Faculty of Information Science and Technology, Multimedia University, Melaka, Malaysia"],"affiliations":[{"raw_affiliation_string":"Faculty of Information Science and Technology, Multimedia University, Melaka, Malaysia","institution_ids":["https://openalex.org/I173029219"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5072923302","display_name":"Chee Peng Lim","orcid":"https://orcid.org/0000-0003-4191-9083"},"institutions":[{"id":"https://openalex.org/I149704539","display_name":"Deakin University","ror":"https://ror.org/02czsnj07","country_code":"AU","type":"education","lineage":["https://openalex.org/I149704539"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Chee Peng Lim","raw_affiliation_strings":["Institute for Intelligent Systems Research and Innovation, Deakin University, Waurn Ponds, VIC, Australia","Institute for Intelligent Systems Research and Innovation, Deakin University, Geelong Waurn Ponds, VIC, Australia"],"affiliations":[{"raw_affiliation_string":"Institute for Intelligent Systems Research and Innovation, Deakin University, Waurn Ponds, VIC, Australia","institution_ids":["https://openalex.org/I149704539"]},{"raw_affiliation_string":"Institute for Intelligent Systems Research and Innovation, Deakin University, Geelong Waurn Ponds, VIC, Australia","institution_ids":["https://openalex.org/I149704539"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5076275091"],"corresponding_institution_ids":["https://openalex.org/I32589535"],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":5.1627,"has_fulltext":true,"cited_by_count":15,"citation_normalized_percentile":{"value":0.95767474,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":97,"max":100},"biblio":{"volume":"12","issue":null,"first_page":"17522","last_page":"17540"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9811000227928162,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9728000164031982,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/mnist-database","display_name":"MNIST database","score":0.8446057438850403},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8241317272186279},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.7552357912063599},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.6429468989372253},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.581264317035675},{"id":"https://openalex.org/keywords/convolutional-neural-network","display_name":"Convolutional neural network","score":0.5649725198745728},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.5371118187904358},{"id":"https://openalex.org/keywords/gradient-descent","display_name":"Gradient descent","score":0.533305823802948},{"id":"https://openalex.org/keywords/softmax-function","display_name":"Softmax function","score":0.5258006453514099},{"id":"https://openalex.org/keywords/stochastic-gradient-descent","display_name":"Stochastic gradient descent","score":0.5188497304916382},{"id":"https://openalex.org/keywords/deep-neural-networks","display_name":"Deep neural networks","score":0.5054318904876709},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.49571025371551514},{"id":"https://openalex.org/keywords/classifier","display_name":"Classifier (UML)","score":0.4600493907928467},{"id":"https://openalex.org/keywords/adversarial-machine-learning","display_name":"Adversarial machine learning","score":0.45847561955451965},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.43836909532546997},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.3580119013786316}],"concepts":[{"id":"https://openalex.org/C190502265","wikidata":"https://www.wikidata.org/wiki/Q17069496","display_name":"MNIST database","level":3,"score":0.8446057438850403},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8241317272186279},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.7552357912063599},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.6429468989372253},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.581264317035675},{"id":"https://openalex.org/C81363708","wikidata":"https://www.wikidata.org/wiki/Q17084460","display_name":"Convolutional neural network","level":2,"score":0.5649725198745728},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.5371118187904358},{"id":"https://openalex.org/C153258448","wikidata":"https://www.wikidata.org/wiki/Q1199743","display_name":"Gradient descent","level":3,"score":0.533305823802948},{"id":"https://openalex.org/C188441871","wikidata":"https://www.wikidata.org/wiki/Q7554146","display_name":"Softmax function","level":3,"score":0.5258006453514099},{"id":"https://openalex.org/C206688291","wikidata":"https://www.wikidata.org/wiki/Q7617819","display_name":"Stochastic gradient descent","level":3,"score":0.5188497304916382},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.5054318904876709},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.49571025371551514},{"id":"https://openalex.org/C95623464","wikidata":"https://www.wikidata.org/wiki/Q1096149","display_name":"Classifier (UML)","level":2,"score":0.4600493907928467},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.45847561955451965},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.43836909532546997},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.3580119013786316},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1109/access.2024.3354699","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2024.3354699","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10400453.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:shdl.mmu.edu.my:12051","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":{"id":"https://openalex.org/S4377196753","display_name":"Siti Hasmah Digital Library-MMU Institutiona Repository (Multimedia University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I173029219","host_organization_name":"Multimedia University","host_organization_lineage":["https://openalex.org/I173029219"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"acceptedVersion","is_accepted":true,"is_published":false,"raw_source_name":null,"raw_type":"NonPeerReviewed"},{"id":"pmh:oai:doaj.org/article:b5e4057a3373471aa42f4cdc86757586","is_oa":true,"landing_page_url":"https://doaj.org/article/b5e4057a3373471aa42f4cdc86757586","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 12, Pp 17522-17540 (2024)","raw_type":"article"},{"id":"pmh:oai:figshare.com:article/25149455","is_oa":true,"landing_page_url":"https://figshare.com/articles/journal_contribution/A_Framework_for_Robust_Deep_Learning_Models_Against_Adversarial_Attacks_Based_on_a_Protection_Layer_Approach/25149455","pdf_url":null,"source":{"id":"https://openalex.org/S4377196282","display_name":"Figshare","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210132348","host_organization_name":"Figshare (United Kingdom)","host_organization_lineage":["https://openalex.org/I4210132348"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Text"}],"best_oa_location":{"id":"doi:10.1109/access.2024.3354699","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2024.3354699","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10400453.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G4332876562","display_name":null,"funder_award_id":"MMUI/220154","funder_id":"https://openalex.org/F4320313202","funder_display_name":"Multimedia University"}],"funders":[{"id":"https://openalex.org/F4320313202","display_name":"Multimedia University","ror":"https://ror.org/04zrbnc33"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4390872228.pdf","grobid_xml":"https://content.openalex.org/works/W4390872228.grobid-xml"},"referenced_works_count":55,"referenced_works":["https://openalex.org/W1945616565","https://openalex.org/W2112796928","https://openalex.org/W2158698691","https://openalex.org/W2243397390","https://openalex.org/W2335728318","https://openalex.org/W2531327146","https://openalex.org/W2607219512","https://openalex.org/W2618492571","https://openalex.org/W2750384547","https://openalex.org/W2903584651","https://openalex.org/W2940483533","https://openalex.org/W2950468330","https://openalex.org/W2952388520","https://openalex.org/W2963158386","https://openalex.org/W2963542245","https://openalex.org/W2964164993","https://openalex.org/W2981446616","https://openalex.org/W3013520104","https://openalex.org/W3022151098","https://openalex.org/W3097157638","https://openalex.org/W3105009650","https://openalex.org/W3107235539","https://openalex.org/W3118608800","https://openalex.org/W3174969113","https://openalex.org/W3181637867","https://openalex.org/W3200113267","https://openalex.org/W4220851512","https://openalex.org/W4226021007","https://openalex.org/W4281998283","https://openalex.org/W4293584023","https://openalex.org/W4293846201","https://openalex.org/W4298149125","https://openalex.org/W4307725013","https://openalex.org/W4312056195","https://openalex.org/W4313572030","https://openalex.org/W4319302797","https://openalex.org/W4362563530","https://openalex.org/W4364361160","https://openalex.org/W4365505047","https://openalex.org/W4365801574","https://openalex.org/W4375958699","https://openalex.org/W6640425456","https://openalex.org/W6728622933","https://openalex.org/W6734483310","https://openalex.org/W6734787559","https://openalex.org/W6736207377","https://openalex.org/W6739868092","https://openalex.org/W6743688258","https://openalex.org/W6747481501","https://openalex.org/W6747819456","https://openalex.org/W6756290993","https://openalex.org/W6761184158","https://openalex.org/W6761839128","https://openalex.org/W6787972765","https://openalex.org/W6852706301"],"related_works":["https://openalex.org/W4283819496","https://openalex.org/W4315785049","https://openalex.org/W3015792155","https://openalex.org/W3021529903","https://openalex.org/W4300326282","https://openalex.org/W3118286710","https://openalex.org/W2937906318","https://openalex.org/W2742395793","https://openalex.org/W4225929918","https://openalex.org/W3095450733"],"abstract_inverted_index":{"Deep":[0,77],"learning":[1,166],"(DL)":[2],"has":[3],"demonstrated":[4],"remarkable":[5],"achievements":[6],"in":[7,16,232],"various":[8],"fields.":[9],"Nevertheless,":[10],"DL":[11,39,47,62,116],"models":[12,63,117],"encounter":[13],"significant":[14],"challenges":[15],"detecting":[17],"and":[18,85,91,103,120,137,157,194,215],"defending":[19],"against":[20,64,236],"adversarial":[21,65],"samples":[22,110],"(AEs).":[23],"These":[24],"AEs":[25,42,100,218],"are":[26,96,187],"meticulously":[27],"crafted":[28],"by":[29,107,220],"adversaries,":[30],"introducing":[31],"imperceptible":[32],"perturbations":[33],"to":[34,37,46,89,98,101,155,198,213],"clean":[35],"data":[36,196],"deceive":[38],"models.":[40],"Consequently,":[41],"pose":[43],"potential":[44,227],"risks":[45],"applications.":[48],"In":[49],"this":[50],"paper,":[51],"we":[52],"propose":[53],"an":[54],"effective":[55],"framework":[56,68,231],"for":[57,74,83],"enhancing":[58,233],"the":[59,105,112,123,152,172,190,200,203,210,226],"robustness":[60,235],"of":[61,115,171,202,228],"attacks.":[66],"The":[67,160,206],"leverages":[69],"convolutional":[70],"neural":[71],"networks":[72],"(CNNs)":[73],"feature":[75],"learning,":[76],"Neural":[78],"Networks":[79],"(DNNs)":[80],"with":[81],"softmax":[82],"classification,":[84],"a":[86,147,164],"defense":[87],"mechanism":[88,149,162],"identify":[90,156],"exclude":[92,158],"AEs.":[93,159,237],"Evasion":[94],"attacks":[95],"employed":[97],"create":[99],"evade":[102],"mislead":[104],"classifier":[106,154],"generating":[108],"malicious":[109],"during":[111],"test":[113],"phase":[114],"i.e.,":[118],"CNN":[119],"DNN,":[121],"using":[122],"Fast":[124],"Gradient":[125,134,182],"Sign":[126],"Method":[127,131],"(FGSM),":[128],"Basic":[129],"Iterative":[130],"(BIM),":[132],"Projected":[133],"Descent":[135],"(PGD),":[136],"Square":[138],"Attack":[139],"(SA).":[140],"A":[141],"protection":[142],"layer":[143],"is":[144],"developed":[145,230],"as":[146],"detection":[148,161],"placed":[150],"before":[151],"DNN":[153],"incorporates":[163],"machine":[165],"model,":[167],"which":[168],"includes":[169],"one":[170],"following:":[173],"Fuzzy":[174],"ARTMAP,":[175],"Random":[176],"Forest,":[177],"K-Nearest":[178],"Neighbors,":[179],"XGBoost,":[180],"or":[181],"Boosting":[183],"Machine.":[184],"Extensive":[185],"evaluations":[186],"conducted":[188],"on":[189],"MNIST,":[191],"CIFAR-10,":[192],"SVHN,":[193],"Fashion-MNIST":[195],"sets":[197],"assess":[199],"effectiveness":[201],"proposed":[204],"framework.":[205],"experimental":[207],"results":[208],"indicate":[209],"framework\u2019s":[211],"ability":[212],"effectively":[214],"accurately":[216],"detect":[217],"generated":[219],"four":[221],"popular":[222],"attacking":[223],"methods,":[224],"highlighting":[225],"our":[229],"its":[234]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":4}],"updated_date":"2026-04-04T16:13:02.066488","created_date":"2025-10-10T00:00:00"}