Qihe Liu scite author profile

In recent years, artificial intelligence technologies have been widely used in computer vision, natural language processing, automatic driving, and other fields. However, artificial intelligence systems are vulnerable to adversarial attacks, which limit the applications of artificial intelligence (AI) technologies in key security fields. Therefore, improving the robustness of AI systems against adversarial attacks has played an increasingly important role in the further development of AI. This paper aims to comprehensively summarize the latest research progress on adversarial attack and defense technologies in deep learning. According to the target model’s different stages where the adversarial attack occurred, this paper expounds the adversarial attack methods in the training stage and testing stage respectively. Then, we sort out the applications of adversarial attack technologies in computer vision, natural language processing, cyberspace security, and the physical world. Finally, we describe the existing adversarial defense methods respectively in three main categories, i.e., modifying data, modifying models and using auxiliary tools.

show abstract

Fast crowd density estimation with convolutional neural networks

et al. 2015

Engineering Applications of Artificial Intelligence

214

View full text Add to dashboard Cite

Age invariant face recognition and retrieval by coupled auto-encoder networks

Liu

2017

Neurocomputing

104

View full text Add to dashboard Cite

Drift Compensation for Electronic Nose by Semi-Supervised Domain Adaption

Liu

et al. 2014

IEEE Sensors J.

View full text Add to dashboard Cite

A hierarchical model for test-cost-sensitive decision systems

Min

Liu

2009

Information Sciences

View full text Add to dashboard Cite

Gas Recognition under Sensor Drift by Using Deep Learning

Liu

et al. 2015

Int. J. Intell. Syst.

View full text Add to dashboard Cite

Machine olfaction is an intelligent system that combines a cross-sensitivity chemical sensor array and an effective pattern recognition algorithm for the detection, identification, or quantification of various odors. Data collected by the sensor array are the multivariate time series signals with a complex structure, and these signals become more difficult to analyze due to sensor drift. In this work, we focus on improving the classification performance under sensor drift by using the deep learning method, which is popular nowadays. Compared with other methods, our method can effectively tackle sensor drift by automatically extracting features, thus not only removing the complexity of designing the hand-made features but also making it pervasive for a variety of application in machine olfaction. Our experimental results show that the deep learning method can learn the features that are more robust to drift than the original input and achieves high classification accuracy. C 2015 Wiley Periodicals, Inc.

show abstract

Dynamic Background Learning through Deep Auto-encoder Networks

et al. 2014

View full text Add to dashboard Cite

A Spam Filtering Method Based on Multi-Modal Fusion

et al. 2019

View full text Add to dashboard Cite

In recent years, the single-modal spam filtering systems have had a high detection rate for image spamming or text spamming. To avoid detection based on the single-modal spam filtering systems, spammers inject junk information into the multi-modality part of an email and combine them to reduce the recognition rate of the single-modal spam filtering systems, thereby implementing the purpose of evading detection. In view of this situation, a new model called multi-modal architecture based on model fusion (MMA-MF) is proposed, which use a multi-modal fusion method to ensure it could effectively filter spam whether it is hidden in the text or in the image. The model fuses a Convolutional Neural Network (CNN) model and a Long Short-Term Memory (LSTM) model to filter spam. Using the LSTM model and the CNN model to process the text and image parts of an email separately to obtain two classification probability values, then the two classification probability values are incorporated into a fusion model to identify whether the email is spam or not. For the hyperparameters of the MMA-MF model, we use a grid search optimization method to get the most suitable hyperparameters for it, and employ a k-fold cross-validation method to evaluate the performance of this model. Our experimental results show that this model is superior to the traditional spam filtering systems and can achieve accuracies in the range of 92.64–98.48%.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Qihe Liu

Review of Artificial Intelligence Adversarial Attack and Defense Technologies

Fast crowd density estimation with convolutional neural networks

Age invariant face recognition and retrieval by coupled auto-encoder networks

Drift Compensation for Electronic Nose by Semi-Supervised Domain Adaption

A hierarchical model for test-cost-sensitive decision systems

Gas Recognition under Sensor Drift by Using Deep Learning

Dynamic Background Learning through Deep Auto-encoder Networks

A Spam Filtering Method Based on Multi-Modal Fusion

Contact Info

Product

Resources

About