Process to make machine object detection robust to adversarial attacks

Process to make machine object detection robust to adversarial attacks

Described is a system for object detection that is robust to adversarial attacks. An initial hypothesis of an identity of an object in an input image is generated using a sparse convolutional neural network (CNN) and a distribution aware classifier. A foveated hypothesis verification process is perf...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Payton, David W, Kolouri, Soheil, Hoffmann, Heiko
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Described is a system for object detection that is robust to adversarial attacks. An initial hypothesis of an identity of an object in an input image is generated using a sparse convolutional neural network (CNN) and a distribution aware classifier. A foveated hypothesis verification process is performed for identifying a region of the input image that supports the initial hypothesis. Using a part-based classifier, an identity of a part of the object in the region of the input image is predicted. An attack probability for the predicted identity of the part, and the initial hypothesis is updated based on the predicted identity of the part and the attack probability. The foveated hypothesis verification process and updating of hypotheses is performed until a hypothesis reaches a certainty threshold. The object is labeled based on the hypothesis that reached the certainty threshold.