{"id":"https://openalex.org/W3200950110","doi":"https://doi.org/10.1109/ijcnn52387.2021.9533495","title":"Adversarial Attacks and Defense on Deep Learning Classification Models using YCbCr Color Images","display_name":"Adversarial Attacks and Defense on Deep Learning Classification Models using YCbCr Color Images","publication_year":2021,"publication_date":"2021-07-18","ids":{"openalex":"https://openalex.org/W3200950110","doi":"https://doi.org/10.1109/ijcnn52387.2021.9533495","mag":"3200950110"},"language":"en","primary_location":{"is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn52387.2021.9533495","pdf_url":null,"source":null,"license":null,"version":null,"is_accepted":false,"is_published":false},"type":"article","type_crossref":"proceedings-article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://research-repository.uwa.edu.au/files/148565506/Pestana_et_al._2021_Adversarial_attacks_and_defense.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5014311265","display_name":"Camilo Pestana","orcid":null},"institutions":[{"id":"https://openalex.org/I177877127","display_name":"University of Western Australia","ror":"https://ror.org/047272k79","country_code":"AU","type":"education","lineage":["https://openalex.org/I177877127"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Camilo Pestana","raw_affiliation_string":"The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009","raw_affiliation_strings":["The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009"]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069697936","display_name":"Naveed Akhtar","orcid":"https://orcid.org/0000-0003-3406-673X"},"institutions":[{"id":"https://openalex.org/I177877127","display_name":"University of Western Australia","ror":"https://ror.org/047272k79","country_code":"AU","type":"education","lineage":["https://openalex.org/I177877127"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Naveed Akhtar","raw_affiliation_string":"The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009","raw_affiliation_strings":["The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009"]},{"author_position":"middle","author":{"id":"https://openalex.org/A5020514606","display_name":"Wei Liu","orcid":"https://orcid.org/0000-0002-7409-0948"},"institutions":[{"id":"https://openalex.org/I177877127","display_name":"University of Western Australia","ror":"https://ror.org/047272k79","country_code":"AU","type":"education","lineage":["https://openalex.org/I177877127"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Wei Liu","raw_affiliation_string":"The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009","raw_affiliation_strings":["The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009"]},{"author_position":"middle","author":{"id":"https://openalex.org/A5083177580","display_name":"David Glance","orcid":null},"institutions":[{"id":"https://openalex.org/I177877127","display_name":"University of Western Australia","ror":"https://ror.org/047272k79","country_code":"AU","type":"education","lineage":["https://openalex.org/I177877127"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"David Glance","raw_affiliation_string":"The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009","raw_affiliation_strings":["The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009"]},{"author_position":"last","author":{"id":"https://openalex.org/A5089986388","display_name":"Ajmal Mian","orcid":"https://orcid.org/0000-0002-5206-3842"},"institutions":[{"id":"https://openalex.org/I177877127","display_name":"University of Western Australia","ror":"https://ror.org/047272k79","country_code":"AU","type":"education","lineage":["https://openalex.org/I177877127"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Ajmal Mian","raw_affiliation_string":"The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009","raw_affiliation_strings":["The University of Western Australia,Department of Computer Science,Crawley,WA,Australia,6009"]}],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"has_fulltext":true,"fulltext_origin":"pdf","cited_by_count":3,"cited_by_percentile_year":{"min":78,"max":81},"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Deep Learning Models","score":0.9998,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Deep Learning Models","score":0.9998,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection in High-Dimensional Data","score":0.9697,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14117","display_name":"Failure Analysis of Integrated Circuits","score":0.9666,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"keyword":"deep learning classification models","score":0.5031},{"keyword":"color images","score":0.3157},{"keyword":"defense","score":0.3124}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.71291053},{"id":"https://openalex.org/C82990744","wikidata":"https://www.wikidata.org/wiki/Q166194","display_name":"RGB color model","level":2,"score":0.63678354},{"id":"https://openalex.org/C2780513914","wikidata":"https://www.wikidata.org/wiki/Q18210350","display_name":"Bottleneck","level":2,"score":0.56470084},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.56406355},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.54021454},{"id":"https://openalex.org/C127162648","wikidata":"https://www.wikidata.org/wiki/Q16858953","display_name":"Channel (broadcasting)","level":2,"score":0.51735276},{"id":"https://openalex.org/C177918212","wikidata":"https://www.wikidata.org/wiki/Q803623","display_name":"Perturbation (astronomy)","level":2,"score":0.4383759},{"id":"https://openalex.org/C115961682","wikidata":"https://www.wikidata.org/wiki/Q860623","display_name":"Image (mathematics)","level":2,"score":0.41320243},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.37563086},{"id":"https://openalex.org/C114614502","wikidata":"https://www.wikidata.org/wiki/Q76592","display_name":"Combinatorics","level":1,"score":0.3255993},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.28551108},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.16650435},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.09580693},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"is_oa":false,"landing_page_url":"https://doi.org/10.1109/ijcnn52387.2021.9533495","pdf_url":null,"source":null,"license":null,"version":null,"is_accepted":false,"is_published":false},{"is_oa":true,"landing_page_url":"https://research-repository.uwa.edu.au/en/publications/c10a9935-2ca6-4bcd-8cad-e0bc15a6bcfa","pdf_url":"https://research-repository.uwa.edu.au/files/148565506/Pestana_et_al._2021_Adversarial_attacks_and_defense.pdf","source":{"id":"https://openalex.org/S4306402492","display_name":"UWA Profiles and Research Repository (UWA)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"host_organization":"https://openalex.org/I177877127","host_organization_name":"University of Western Australia","host_organization_lineage":["https://openalex.org/I177877127"],"host_organization_lineage_names":["University of Western Australia"],"type":"repository"},"license":null,"version":"submittedVersion","is_accepted":false,"is_published":false},{"is_oa":true,"landing_page_url":"https://api.research-repository.uwa.edu.au/ws/files/148565506/Pestana_et_al._2021_Adversarial_attacks_and_defense.pdf","pdf_url":"https://api.research-repository.uwa.edu.au/ws/files/148565506/Pestana_et_al._2021_Adversarial_attacks_and_defense.pdf","source":{"id":"https://openalex.org/S4306402492","display_name":"UWA Profiles and Research Repository (UWA)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"host_organization":"https://openalex.org/I177877127","host_organization_name":"University of Western Australia","host_organization_lineage":["https://openalex.org/I177877127"],"host_organization_lineage_names":["University of Western Australia"],"type":"repository"},"license":null,"version":"submittedVersion","is_accepted":false,"is_published":false}],"best_oa_location":{"is_oa":true,"landing_page_url":"https://research-repository.uwa.edu.au/en/publications/c10a9935-2ca6-4bcd-8cad-e0bc15a6bcfa","pdf_url":"https://research-repository.uwa.edu.au/files/148565506/Pestana_et_al._2021_Adversarial_attacks_and_defense.pdf","source":{"id":"https://openalex.org/S4306402492","display_name":"UWA Profiles and Research Repository (UWA)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"host_organization":"https://openalex.org/I177877127","host_organization_name":"University of Western Australia","host_organization_lineage":["https://openalex.org/I177877127"],"host_organization_lineage_names":["University of Western Australia"],"type":"repository"},"license":null,"version":"submittedVersion","is_accepted":false,"is_published":false},"sustainable_development_goals":[],"grants":[],"referenced_works_count":24,"referenced_works":["https://openalex.org/W1950594372","https://openalex.org/W1985806826","https://openalex.org/W2016482162","https://openalex.org/W2067042811","https://openalex.org/W2097073572","https://openalex.org/W2097074225","https://openalex.org/W2108598243","https://openalex.org/W2269778407","https://openalex.org/W2476548250","https://openalex.org/W2603766943","https://openalex.org/W2604505099","https://openalex.org/W2805751152","https://openalex.org/W2887695188","https://openalex.org/W2913318911","https://openalex.org/W2954978443","https://openalex.org/W2962872506","https://openalex.org/W2962933288","https://openalex.org/W2963184668","https://openalex.org/W2963341057","https://openalex.org/W2963501948","https://openalex.org/W2963857521","https://openalex.org/W2964335429","https://openalex.org/W2979450790","https://openalex.org/W2982389494"],"related_works":["https://openalex.org/W2357461155","https://openalex.org/W2361361118","https://openalex.org/W2766721049","https://openalex.org/W2384129116","https://openalex.org/W2354251581","https://openalex.org/W3145924829","https://openalex.org/W2353647904","https://openalex.org/W3152267458","https://openalex.org/W2087937280","https://openalex.org/W2607965789"],"ngrams_url":"https://api.openalex.org/works/W3200950110/ngrams","abstract_inverted_index":{"Deep":[0],"neural":[1],"network":[2],"models":[3],"are":[4,10,19,192],"vulnerable":[5],"to":[6,59,99,107],"adversarial":[7,41,134],"perturbations":[8,18,42,72,149,191],"that":[9,40,117,139],"subtle":[11],"but":[12],"change":[13],"the":[14,31,37,45,48,75,93,101,111,120,125,141,152,171,180,190,196],"model":[15,182],"predictions.":[16],"Adversarial":[17],"generally":[20],"computed":[21],"for":[22,36,140,195],"RGB":[23,32],"images":[24,130],"and":[25,55,115,131,144,176,186],"are,":[26],"hence,":[27],"equally":[28],"distributed":[29],"among":[30],"channels.":[33],"We":[34,104],"show,":[35],"first":[38],"time,":[39],"prevail":[43],"in":[44,81,110,151,155],"Y-channel":[46,76,89,153],"of":[47,174],"$\\mathbf{YC}_{b}\\mathbf{C}_{r}$":[51],">":[52],"color":[53],"space":[54],"exploit":[56],"this":[57],"finding":[58],"propose":[60],"a":[61,82,162],"defense":[62,65,132],"mechanism.":[63],"Our":[64],"ResUpNet,":[66],"which":[67],"is":[68,90],"end-to-end":[69],"trainable,":[70],"removes":[71],"only":[73,150,194],"from":[74],"by":[77,184],"exploiting":[78],"ResNet":[79],"features":[80],"bottleneck":[83],"free":[84],"up-sampling":[85],"framework.":[86],"The":[87],"refined":[88],"combined":[91],"with":[92,161],"untouched":[94],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">$\\mathbf{C}_{b}\\mathbf{C}_{r}$":[97],"-channels":[98],"restore":[100],"clean":[102,129],"image.":[103],"compare":[105],"ResUpNet":[106],"existing":[108],"defenses":[109],"input":[112],"transformation":[113],"category":[114],"show":[116,138],"it":[118],"achieves":[119],"best":[121],"balance":[122],"between":[123],"maintaining":[124],"original":[126],"accuracies":[127],"on":[128,179],"against":[133],"attacks.":[135],"Finally,":[136],"we":[137],"same":[142],"attack":[143],"fixed":[145],"perturbation":[146,165],"magnitude,":[147],"learning":[148],"results":[154],"higher":[156],"fooling":[157,172],"rates.":[158],"For":[159],"example,":[160],"very":[163],"small":[164],"magnitude":[166],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">$\\epsilon=0.002$":[169],")":[170],"rates":[173],"FGSM":[175],"PGD":[177],"attacks":[178],"ResNet50":[181],"increase":[183],"11.1%":[185],"15.6%":[187],"respectively,":[188],"when":[189],"learned":[193],"Y-channel.":[197]},"cited_by_api_url":"https://api.openalex.org/works?filter=cites:W3200950110","counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1}],"updated_date":"2024-03-17T04:14:25.187248","created_date":"2021-09-27"}