{"id":"https://openalex.org/W2899025187","doi":"https://doi.org/10.1109/iolts.2019.8854377","title":"QuSecNets: Quantization-based Defense Mechanism for Securing Deep Neural Network against Adversarial Attacks","display_name":"QuSecNets: Quantization-based Defense Mechanism for Securing Deep Neural Network against Adversarial Attacks","publication_year":2019,"publication_date":"2019-07-01","ids":{"openalex":"https://openalex.org/W2899025187","doi":"https://doi.org/10.1109/iolts.2019.8854377","mag":"2899025187"},"language":"en","primary_location":{"id":"doi:10.1109/iolts.2019.8854377","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iolts.2019.8854377","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE 25th International Symposium on On-Line Testing and Robust System Design (IOLTS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["arxiv","crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/1811.01437","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":null,"display_name":"Faiq Khalid","orcid":null},"institutions":[{"id":"https://openalex.org/I145847075","display_name":"TU Wien","ror":"https://ror.org/04d836q62","country_code":"AT","type":"education","lineage":["https://openalex.org/I145847075"]}],"countries":["AT"],"is_corresponding":true,"raw_author_name":"Faiq Khalid","raw_affiliation_strings":["Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria","institution_ids":["https://openalex.org/I145847075"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Hassan Ali","orcid":null},"institutions":[{"id":"https://openalex.org/I929597975","display_name":"National University of Sciences and Technology","ror":"https://ror.org/03w2j5y17","country_code":"PK","type":"education","lineage":["https://openalex.org/I929597975"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Hassan Ali","raw_affiliation_strings":["National University of Sciences and Technology (NUST), Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National University of Sciences and Technology (NUST), Islamabad, Pakistan","institution_ids":["https://openalex.org/I929597975"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Hammad Tariq","orcid":null},"institutions":[{"id":"https://openalex.org/I929597975","display_name":"National University of Sciences and Technology","ror":"https://ror.org/03w2j5y17","country_code":"PK","type":"education","lineage":["https://openalex.org/I929597975"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Hammad Tariq","raw_affiliation_strings":["National University of Sciences and Technology (NUST), Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National University of Sciences and Technology (NUST), Islamabad, Pakistan","institution_ids":["https://openalex.org/I929597975"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Muhammad Abdullah Hanif","orcid":null},"institutions":[{"id":"https://openalex.org/I145847075","display_name":"TU Wien","ror":"https://ror.org/04d836q62","country_code":"AT","type":"education","lineage":["https://openalex.org/I145847075"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Muhammad Abdullah Hanif","raw_affiliation_strings":["Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria","institution_ids":["https://openalex.org/I145847075"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Semeen Rehman","orcid":null},"institutions":[{"id":"https://openalex.org/I145847075","display_name":"TU Wien","ror":"https://ror.org/04d836q62","country_code":"AT","type":"education","lineage":["https://openalex.org/I145847075"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Semeen Rehman","raw_affiliation_strings":["Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria","institution_ids":["https://openalex.org/I145847075"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Rehan Ahmed","orcid":null},"institutions":[{"id":"https://openalex.org/I929597975","display_name":"National University of Sciences and Technology","ror":"https://ror.org/03w2j5y17","country_code":"PK","type":"education","lineage":["https://openalex.org/I929597975"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Rehan Ahmed","raw_affiliation_strings":["National University of Sciences and Technology (NUST), Islamabad, Pakistan"],"affiliations":[{"raw_affiliation_string":"National University of Sciences and Technology (NUST), Islamabad, Pakistan","institution_ids":["https://openalex.org/I929597975"]}]},{"author_position":"last","author":{"id":null,"display_name":"Muhammad Shafique","orcid":null},"institutions":[{"id":"https://openalex.org/I145847075","display_name":"TU Wien","ror":"https://ror.org/04d836q62","country_code":"AT","type":"education","lineage":["https://openalex.org/I145847075"]}],"countries":["AT"],"is_corresponding":false,"raw_author_name":"Muhammad Shafique","raw_affiliation_strings":["Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria"],"affiliations":[{"raw_affiliation_string":"Technische Universit\u00e4t Wien (TU Wien), Vienna, Austria","institution_ids":["https://openalex.org/I145847075"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":7,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I145847075"],"apc_list":null,"apc_paid":null,"fwci":1.7359,"has_fulltext":false,"cited_by_count":29,"citation_normalized_percentile":{"value":0.88313564,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"182","last_page":"187"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.826200008392334},{"id":"https://openalex.org/keywords/quantization","display_name":"Quantization (signal processing)","score":0.7703999876976013},{"id":"https://openalex.org/keywords/mnist-database","display_name":"MNIST database","score":0.6678000092506409},{"id":"https://openalex.org/keywords/convolutional-neural-network","display_name":"Convolutional neural network","score":0.6276000142097473},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.5975000262260437},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.4846000075340271},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.45590001344680786}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.826200008392334},{"id":"https://openalex.org/C28855332","wikidata":"https://www.wikidata.org/wiki/Q198099","display_name":"Quantization (signal processing)","level":2,"score":0.7703999876976013},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6715999841690063},{"id":"https://openalex.org/C190502265","wikidata":"https://www.wikidata.org/wiki/Q17069496","display_name":"MNIST database","level":3,"score":0.6678000092506409},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6449000239372253},{"id":"https://openalex.org/C81363708","wikidata":"https://www.wikidata.org/wiki/Q17084460","display_name":"Convolutional neural network","level":2,"score":0.6276000142097473},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.5975000262260437},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.4846000075340271},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.45590001344680786},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.43799999356269836},{"id":"https://openalex.org/C160633673","wikidata":"https://www.wikidata.org/wiki/Q355198","display_name":"Pixel","level":2,"score":0.4074000120162964},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.3393999934196472},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3330000042915344},{"id":"https://openalex.org/C51632099","wikidata":"https://www.wikidata.org/wiki/Q3985153","display_name":"Training set","level":2,"score":0.28600001335144043},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.27459999918937683},{"id":"https://openalex.org/C52622490","wikidata":"https://www.wikidata.org/wiki/Q1026626","display_name":"Feature extraction","level":2,"score":0.2531000077724457},{"id":"https://openalex.org/C75294576","wikidata":"https://www.wikidata.org/wiki/Q5165192","display_name":"Contextual image classification","level":3,"score":0.25279998779296875}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/iolts.2019.8854377","is_oa":false,"landing_page_url":"https://doi.org/10.1109/iolts.2019.8854377","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2019 IEEE 25th International Symposium on On-Line Testing and Robust System Design (IOLTS)","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:1811.01437","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1811.01437","pdf_url":"https://arxiv.org/pdf/1811.01437","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:1811.01437","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1811.01437","pdf_url":"https://arxiv.org/pdf/1811.01437","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":38,"referenced_works":["https://openalex.org/W2243397390","https://openalex.org/W2461943168","https://openalex.org/W2517229335","https://openalex.org/W2607219512","https://openalex.org/W2607757716","https://openalex.org/W2618043096","https://openalex.org/W2798919674","https://openalex.org/W2798993323","https://openalex.org/W2801550278","https://openalex.org/W2886576643","https://openalex.org/W2897317743","https://openalex.org/W2898009658","https://openalex.org/W2898804478","https://openalex.org/W2899111971","https://openalex.org/W2940718416","https://openalex.org/W2963178695","https://openalex.org/W2963626858","https://openalex.org/W2964082701","https://openalex.org/W6637162671","https://openalex.org/W6640425456","https://openalex.org/W6685736903","https://openalex.org/W6719080892","https://openalex.org/W6726114608","https://openalex.org/W6728004082","https://openalex.org/W6731039222","https://openalex.org/W6740998807","https://openalex.org/W6741512054","https://openalex.org/W6746402973","https://openalex.org/W6747920752","https://openalex.org/W6748204703","https://openalex.org/W6748503757","https://openalex.org/W6748711285","https://openalex.org/W6749609156","https://openalex.org/W6753317536","https://openalex.org/W6758096801","https://openalex.org/W6759158195","https://openalex.org/W6760742777","https://openalex.org/W6761616009"],"related_works":[],"abstract_inverted_index":{"Adversarial":[0],"examples":[1],"have":[2],"emerged":[3],"as":[4],"a":[5,51,72],"significant":[6],"threat":[7],"to":[8,13,35],"machine":[9],"learning":[10],"algorithms,":[11],"especially":[12],"the":[14,37,60,67,78,90,103,107,112,115],"convolutional":[15],"neural":[16],"networks":[17],"(CNNs).":[18],"In":[19],"this":[20],"paper,":[21],"we":[22],"propose":[23],"two":[24],"quantization-based":[25],"defense":[26,74],"mechanisms,":[27],"Constant":[28],"Quantization":[29,33],"(CQ)":[30],"and":[31,99,114],"Trainable":[32],"(TQ),":[34],"increase":[36,101],"robustness":[38],"of":[39,54,106],"CNNs":[40,83],"against":[41,84],"adversarial":[42,87],"examples.":[43],"CQ":[44],"quantizes":[45],"input":[46],"pixel":[47],"intensities":[48],"based":[49],"on":[50,81,119],"\u201cfixed\u201d":[52],"number":[53],"quantization":[55,61],"levels,":[56],"while":[57],"in":[58,102,132],"TQ,":[59],"levels":[62],"are":[63],"\u201citeratively":[64],"learned":[65],"during":[66],"training":[68],"phase\u201d,":[69],"thereby":[70],"providing":[71],"stronger":[73],"mechanism.":[75],"We":[76],"apply":[77],"proposed":[79],"techniques":[80],"undefended":[82],"different":[85],"state-of-the-art":[86],"attacks":[88],"from":[89,111],"open-source":[91],"Cleverhans":[92,133],"library.":[93,134],"The":[94],"experimental":[95],"results":[96],"demonstrate":[97],"50%-96%":[98],"10%-50%":[100],"classification":[104],"accuracy":[105],"perturbed":[108],"images":[109],"generated":[110],"MNIST":[113],"CIFAR-10":[116],"datasets,":[117],"respectively,":[118],"commonly":[120],"used":[121],"CNN":[122],"(Conv2D(64,":[123],"8\u00d78)-Conv2D(128,":[124],"6\u00d76)-Conv2D(128,":[125],"5\u00d75)":[126],"-":[127,129],"Dense(10)":[128],"Softmax())":[130],"available":[131]},"counts_by_year":[{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":11},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":4},{"year":2020,"cited_by_count":5}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2018-11-09T00:00:00"}