Invisible encoded backdoor attack on DNNs using conditional GAN
| dc.contributor.author | Arshad, Iram | |
| dc.contributor.author | Qiao, Yuansong | |
| dc.contributor.author | Lee, Brian | |
| dc.contributor.author | Ye, Yuhang | |
| dc.date.accessioned | 2023-02-27T10:29:05Z | |
| dc.date.available | 2023-02-27T10:29:05Z | |
| dc.date.copyright | 2023 | |
| dc.date.issued | 2023-02-17 | |
| dc.identifier.citation | Arshad, I., Qiao, Y., Lee, B., Ye, Y. (2023). Invisible encoded backdoor attack on DNNs using conditional GAN. In 2023 IEEE International Conference on Consumer Electronics (ICCE). 06-08 January Las Vegas, NV. DOI: 10.1109/ICCE56470.2023.10043484 | en_US |
| dc.identifier.uri | https://research.thea.ie/handle/20.500.12065/4393 | |
| dc.description.abstract | Deep Learning (DL) models deliver superior performance and have achieved remarkable results for classification and vision tasks. However, recent research focuses on exploring these Deep Neural Networks (DNNs) weaknesses as these can be vulnerable due to transfer learning and outsourced training data. This paper investigates the feasibility of generating a stealthy invisible backdoor attack during the training phase of deep learning models. For developing the poison dataset, an interpolation technique is used to corrupt the sub-feature space of the conditional generative adversarial network. Then, the generated poison dataset is mixed with the clean dataset to corrupt the training images dataset. The experiment results show that by injecting a 3% poison dataset combined with the clean dataset, the DL models can effectively fool with a high degree of model accuracy. | en_US |
| dc.format | en_US | |
| dc.language.iso | eng | en_US |
| dc.publisher | IEEE | en_US |
| dc.relation.ispartof | 2023 IEEE International Conference on Consumer Electronics (ICCE) | en_US |
| dc.rights | Attribution-NonCommercial-ShareAlike 3.0 United States | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-sa/3.0/us/ | * |
| dc.subject | Backdoor attack | en_US |
| dc.subject | Conditional generative adversarial network | en_US |
| dc.subject | Image synthesis | en_US |
| dc.title | Invisible encoded backdoor attack on DNNs using conditional GAN | en_US |
| dc.conference.date | 2023-01-06 | |
| dc.conference.host | IEEE | en_US |
| dc.conference.location | Las Vegas, NV, USA | en_US |
| dc.contributor.affiliation | Technological University of the Shannon: Midlands Midwest | en_US |
| dc.contributor.sponsor | President Seed Fund, Technological University of the Shannon: Midlands Midwest | en_US |
| dc.description.peerreview | yes | en_US |
| dc.identifier.doi | 10.1109/ICCE56470.2023.10043484 | en_US |
| dc.identifier.orcid | https://orcid.org/0000-0003-0755-5896 | en_US |
| dc.identifier.orcid | https://orcid.org/0000-0002-1543-1589 | en_US |
| dc.identifier.orcid | https://orcid.org/0000-0002-8475-4074 | en_US |
| dc.identifier.orcid | https://orcid.org/0000-0003-4608-1451 | en_US |
| dc.subject.department | Software Research Institute: TUS MIdlands | en_US |
| dc.type.version | info:eu-repo/semantics/acceptedVersion | en_US |
Files in this item
This item appears in the following Collection(s)
Except where otherwise noted, this item's license is described as Attribution-NonCommercial-ShareAlike 3.0 United States