FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W3208456648> ?p ?o ?g. }

• W3208456648 abstract "This paper investigates an adversary's ease of attack in generating adversarial examples for real-world scenarios. We address three key requirements for practical attacks for the real-world: 1) automatically constraining the size and shape of the attack so it can be applied with stickers, 2) transform-robustness, i.e., robustness of a attack to environmental physical variations such as viewpoint and lighting changes, and 3) supporting attacks in both white-box and black-box hard-label scenarios, so that the adversary can attack proprietary models. In particular, the art of automatically picking which areas to perturb remains largely unexplored -- an efficient solution would remove the need to search over possible locations, shapes, and sizes as in current patch attacks. In this work, we propose GRAPHITE, an efficient and general framework for generating attacks that satisfy the above three key requirements. GRAPHITE takes advantage of transform-robustness, a metric based on expectation over transforms (EoT), to automatically generate small masks and optimize with gradient-free optimization. GRAPHITE is also flexible as it can easily trade-off transform-robustness, perturbation size, and query count in black-box settings. On a GTSRB model in a hard-label black-box setting, we are able to find attacks on all possible 1,806 victim-target class pairs with averages of 77.8% transform-robustness, perturbation size of 16.63% of the victim images, and 126K queries per pair. For digital-only attacks where achieving transform-robustness is not a requirement, GRAPHITE is able to find successful small-patch attacks with an average of only 566 queries for 92.2% of victim-target pairs. GRAPHITE is also able to find successful attacks using perturbations that modify small areas of the input image against PatchGuard, a recently proposed defense against patch-based attacks." @default.
• W3208456648 created "2021-11-08" @default.
• W3208456648 creator A5007824710 @default.
• W3208456648 creator A5012396970 @default.
• W3208456648 creator A5019723791 @default.
• W3208456648 creator A5051506534 @default.
• W3208456648 creator A5060924315 @default.
• W3208456648 creator A5088826068 @default.
• W3208456648 date "2020-02-17" @default.
• W3208456648 modified "2023-10-16" @default.
• W3208456648 title "GRAPHITE: A Practical Framework for Generating Automatic Physical Adversarial Machine Learning Attacks" @default.
• W3208456648 cites W1686810756 @default.
• W3208456648 cites W1901129140 @default.
• W3208456648 cites W2067713319 @default.
• W3208456648 cites W2121615981 @default.
• W3208456648 cites W2126628495 @default.
• W3208456648 cites W2149479912 @default.
• W3208456648 cites W2150066425 @default.
• W3208456648 cites W2159379766 @default.
• W3208456648 cites W2163605009 @default.
• W3208456648 cites W2173248099 @default.
• W3208456648 cites W2180612164 @default.
• W3208456648 cites W2183341477 @default.
• W3208456648 cites W2194775991 @default.
• W3208456648 cites W2408141691 @default.
• W3208456648 cites W2460937040 @default.
• W3208456648 cites W2530184277 @default.
• W3208456648 cites W2535873859 @default.
• W3208456648 cites W2570685808 @default.
• W3208456648 cites W2745565856 @default.
• W3208456648 cites W2796347433 @default.
• W3208456648 cites W2798302089 @default.
• W3208456648 cites W2874797877 @default.
• W3208456648 cites W2953610242 @default.
• W3208456648 cites W2962748759 @default.
• W3208456648 cites W2963062382 @default.
• W3208456648 cites W2963070315 @default.
• W3208456648 cites W2963070423 @default.
• W3208456648 cites W2963207607 @default.
• W3208456648 cites W2963470657 @default.
• W3208456648 cites W2963557656 @default.
• W3208456648 cites W2963857521 @default.
• W3208456648 cites W2964153729 @default.
• W3208456648 cites W2964253222 @default.
• W3208456648 cites W2996629283 @default.
• W3208456648 cites W3015625436 @default.
• W3208456648 cites W3108072218 @default.
• W3208456648 cites W3157207381 @default.
• W3208456648 hasPublicationYear "2020" @default.
• W3208456648 type Work @default.
• W3208456648 sameAs 3208456648 @default.
• W3208456648 citedByCount "0" @default.
• W3208456648 crossrefType "posted-content" @default.
• W3208456648 hasAuthorship W3208456648A5007824710 @default.
• W3208456648 hasAuthorship W3208456648A5012396970 @default.
• W3208456648 hasAuthorship W3208456648A5019723791 @default.
• W3208456648 hasAuthorship W3208456648A5051506534 @default.
• W3208456648 hasAuthorship W3208456648A5060924315 @default.
• W3208456648 hasAuthorship W3208456648A5088826068 @default.
• W3208456648 hasConcept C104317684 @default.
• W3208456648 hasConcept C113775141 @default.
• W3208456648 hasConcept C119857082 @default.
• W3208456648 hasConcept C120314980 @default.
• W3208456648 hasConcept C154945302 @default.
• W3208456648 hasConcept C173608175 @default.
• W3208456648 hasConcept C180932941 @default.
• W3208456648 hasConcept C185592680 @default.
• W3208456648 hasConcept C37736160 @default.
• W3208456648 hasConcept C38652104 @default.
• W3208456648 hasConcept C41008148 @default.
• W3208456648 hasConcept C41065033 @default.
• W3208456648 hasConcept C55493867 @default.
• W3208456648 hasConcept C63479239 @default.
• W3208456648 hasConcept C68339613 @default.
• W3208456648 hasConcept C80444323 @default.
• W3208456648 hasConcept C94966114 @default.
• W3208456648 hasConceptScore W3208456648C104317684 @default.
• W3208456648 hasConceptScore W3208456648C113775141 @default.
• W3208456648 hasConceptScore W3208456648C119857082 @default.
• W3208456648 hasConceptScore W3208456648C120314980 @default.
• W3208456648 hasConceptScore W3208456648C154945302 @default.
• W3208456648 hasConceptScore W3208456648C173608175 @default.
• W3208456648 hasConceptScore W3208456648C180932941 @default.
• W3208456648 hasConceptScore W3208456648C185592680 @default.
• W3208456648 hasConceptScore W3208456648C37736160 @default.
• W3208456648 hasConceptScore W3208456648C38652104 @default.
• W3208456648 hasConceptScore W3208456648C41008148 @default.
• W3208456648 hasConceptScore W3208456648C41065033 @default.
• W3208456648 hasConceptScore W3208456648C55493867 @default.
• W3208456648 hasConceptScore W3208456648C63479239 @default.
• W3208456648 hasConceptScore W3208456648C68339613 @default.
• W3208456648 hasConceptScore W3208456648C80444323 @default.
• W3208456648 hasConceptScore W3208456648C94966114 @default.
• W3208456648 hasLocation W32084566481 @default.
• W3208456648 hasOpenAccess W3208456648 @default.
• W3208456648 hasPrimaryLocation W32084566481 @default.
• W3208456648 hasRelatedWork W2890324916 @default.
• W3208456648 hasRelatedWork W2906208681 @default.
• W3208456648 hasRelatedWork W2914433962 @default.
• W3208456648 hasRelatedWork W2981798567 @default.

• next