Jianhai Su scite author profile

Adversarial examples (AEs) are crafted by adding human-imperceptible perturbations to inputs such that a machine-learning based classifier incorrectly labels them. They have become a severe threat to the trustworthiness of machine learning. While AEs in the image domain have been well studied, audio AEs are less investigated. Recently, multiple techniques are proposed to generate audio AEs, which makes countermeasures against them urgent. Our experiments show that, given an audio AE, the transcription results by Automatic Speech Recognition (ASR) systems differ significantly (that is, poor transferability), as different ASR systems use different architectures, parameters, and training datasets. Based on this fact and inspired by Multiversion Programming, we propose a novel audio AE detection approach MVP-EARS, which utilizes the diverse off-the-shelf ASRs to determine whether an audio is an AE. We build the largest audio AE dataset to our knowledge, and the evaluation shows that the detection accuracy reaches 99.88%.While transferable audio AEs are difficult to generate at this moment, they may become a reality in future. We further adapt the idea above to proactively train the detection system for coping with transferable audio AEs. Thus, the proactive detection system is one giant step ahead of attackers working on transferable AEs.

show abstract

A Multiversion Programming Inspired Approach to Detecting Audio Adversarial Examples

Zeng¹,

Su²,

Fu³

et al. 2018

Preprint

View full text Add to dashboard Cite

A Generalized Fuzzy T-norm Formulation of Fuzzy Modularity for Community Detection in Social Networks

Havens

2014

View full text Add to dashboard Cite

FlexiBO: A Decoupled Cost-Aware Multi-Objective Optimization Approach for Deep Neural Networks

Shahriar¹,

Su²,

Kotthoff³

et al. 2020

Preprint

View full text Add to dashboard Cite

One of the key challenges in designing machine learning systems is to determine the right balance amongst several objectives, which also oftentimes are incommensurable and conflicting. For example, when designing deep neural networks (DNNs), one often has to trade-off between multiple objectives, such as accuracy, energy consumption, and inference time. Typically, there is no single configuration that performs equally well for all objectives. Consequently, one is interested in identifying Pareto-optimal designs. Although different multi-objective optimization algorithms have been developed to identify Pareto-optimal configurations, state-of-the-art multi-objective optimization methods do not consider the different evaluation costs attending the objectives under consideration. This is particularly important for optimizing DNNs: the cost arising on account of assessing the accuracy of DNNs is orders of magnitude higher than that of measuring the energy consumption of pre-trained DNNs. We propose FlexiBO, a flexible Bayesian optimization method, to address this issue. We formulate a new acquisition function based on the improvement of the Pareto hyper-volume weighted by the measurement cost of each objective. Our acquisition function selects the next sample and objective that provides maximum information gain per unit of cost. We evaluated FlexiBO on 7 state-of-theart DNNs for object detection, natural language processing, and speech recognition. Our results indicate that, when compared to other state-of-theart methods across the 7 architectures we tested, the Pareto front obtained using FlexiBO has, on average, a 28.44% higher contribution to the true Pareto front and achieves 25.64% better diversity.

show abstract

ATHENA: A Framework based on Diverse Weak Defenses for Building Adversarial Defense

Meng¹,

Su²,

O’Kane³

et al. 2020

Preprint

View full text Add to dashboard Cite

Modularity Based Fuzzy Community Detection in Social Networks

Su¹

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Jianhai Su

Quadratic Program-Based Modularity Maximization for Fuzzy Community Detection in Social Networks

Fuzzy community detection in social networks using a genetic algortihm

A Multiversion Programming Inspired Approach to Detecting Audio Adversarial Examples

A Multiversion Programming Inspired Approach to Detecting Audio Adversarial Examples

A Generalized Fuzzy T-norm Formulation of Fuzzy Modularity for Community Detection in Social Networks

FlexiBO: A Decoupled Cost-Aware Multi-Objective Optimization Approach for Deep Neural Networks

ATHENA: A Framework based on Diverse Weak Defenses for Building Adversarial Defense

Modularity Based Fuzzy Community Detection in Social Networks

Contact Info

Product

Resources

About