DEVICE AND METHOD FOR DETERMINING ADVERSARIAL PATCHES FOR A MACHINE LEARNING SYSTEM

DEVICE AND METHOD FOR DETERMINING ADVERSARIAL PATCHES FOR A MACHINE LEARNING SYSTEM

A computer-implemented method for determining an adversarial patch for a machine learning system. The machine learning system is configured for image analysis and determines an output signal based on an input image. The output signal is determined based on an output of an attention layer of the mach...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Munoz Delgado, Andres Mauricio, Lovisotto, Giulio, Finnie, Nicole Ying, Mummadi, Chaithanya Kumar, Metzen, Jan Hendrik
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A computer-implemented method for determining an adversarial patch for a machine learning system. The machine learning system is configured for image analysis and determines an output signal based on an input image. The output signal is determined based on an output of an attention layer of the machine learning system. The adversarial patch is determined by optimizing the adversarial patch with respect to a loss function, wherein the loss function comprises a term that characterizes a sum of attention weights of the attention layer with respect to a position of the adversarial patch in the input image and the method comprises a step of maximizing the term.