Resilience of GANs against Adversarial Attacks
Kyrylo Rudavskyy, Ali Miri
2022
Abstract
The goal of this paper is to explore the resilience of Generative Adversarial Networks(GANs) against adversarial attacks. Specifically, we evaluated the threat potential of an adversarial attack against the discriminator part of the system. Such an attack aims to distort the output by injecting maliciously modified input during training. The attack was empirically evaluated against four types of GANs, injections of 10% and 20% malicious data, and two datasets. The targets were CGAN, ACGAN, WGAN, and WGAN-GP. The datasets were MNIST and F-MNIST. The attack was created by improving an existing attack on GANs. The lower bound for the injection size turned out to be 10% for the improvement and 10-20% for the baseline attack. It was shown that the attack on WGAN-GP can overcome a filtering defence for F-MNIST.
DownloadPaper Citation
in Harvard Style
Rudavskyy K. and Miri A. (2022). Resilience of GANs against Adversarial Attacks. In Proceedings of the 19th International Conference on Security and Cryptography - Volume 1: SECRYPT, ISBN 978-989-758-590-6, pages 390-397. DOI: 10.5220/0011307200003283
in Bibtex Style
@conference{secrypt22,
author={Kyrylo Rudavskyy and Ali Miri},
title={Resilience of GANs against Adversarial Attacks},
booktitle={Proceedings of the 19th International Conference on Security and Cryptography - Volume 1: SECRYPT,},
year={2022},
pages={390-397},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011307200003283},
isbn={978-989-758-590-6},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 19th International Conference on Security and Cryptography - Volume 1: SECRYPT,
TI - Resilience of GANs against Adversarial Attacks
SN - 978-989-758-590-6
AU - Rudavskyy K.
AU - Miri A.
PY - 2022
SP - 390
EP - 397
DO - 10.5220/0011307200003283