• 中国精品科技期刊
  • CCF推荐A类中文期刊
  • 计算领域高质量科技期刊T1类
Advanced Search
Li Zituo, Sun Jianbin, Yang Kewei, Xiong Dehui. A Review of Adversarial Robustness Evaluation for Image Classification[J]. Journal of Computer Research and Development, 2022, 59(10): 2164-2189. DOI: 10.7544/issn1000-1239.20220507
Citation: Li Zituo, Sun Jianbin, Yang Kewei, Xiong Dehui. A Review of Adversarial Robustness Evaluation for Image Classification[J]. Journal of Computer Research and Development, 2022, 59(10): 2164-2189. DOI: 10.7544/issn1000-1239.20220507
shu

A Review of Adversarial Robustness Evaluation for Image Classification

  • (College of Systems Engineering, National University of Defense Technology, Changsha 410073)

Funds: This work was supported by the National Natural Science Foundation of China (72071206, 71901212) and the Science and Technology Innovation Program of Hunan Province (2020RC4046).
More Information
  • Published Date: September 30, 2022
    Graphical Abstract
    • Abstract
  • In recent years, artificial intelligence algorithms represented by deep learning have been successfully used in the fields such as financial security, automatic driving, medical diagnosis. However, the emergence of adversarial attacks has brought huge security risks to the application of image classification, which is a basic visual task in the above fields. Improving the ability of deep learning model to resist adversarial attacks (i.e., the adversarial robustness) has become a feasible technique to effectively alleviate this problem. In order to evaluate the adversarial robustness of deep learning model scientifically and comprehensively, many scholars have carried out in-depth research on adversarial robustness evaluation from the perspectives of benchmark evaluation and index evaluation. This paper reviews the adversarial robustness mainly from the perspective of index evaluation. Firstly, we introduce the concepts related to adversarial examples and the reasons for their existence, and summarize the evaluation criteria that should be followed in the evaluation of adversarial robustness. Secondly, we focus on sorting out existing adversarial robustness evaluation indicators from two aspects of attacked model and test data. Then, the mainstream image classification datasets and the adversarial attack-defense integration tools are analyzed and summarized to lay a foundation for the follow-up relative research. Finally, the advantages and disadvantages of the current research and the potential future research direction are discussed. This paper aims to provide practitioners or learners in related fields with a comprehensive, systematic and objective overview of adversarial robustness evaluation index for image categorization.
    • FullText(HTML)
    • References (0)
    • Related Articles

  • Related Articles

    [1]Zhang Hao, Ma Jiayi, Fan Fan, Huang Jun, Ma Yong. Infrared and Visible Image Fusion Based on Multiclassification Adversarial Mechanism in Feature Space[J]. Journal of Computer Research and Development, 2023, 60(3): 690-704. DOI: 10.7544/issn1000-1239.202110639
    [2]Zhang Tian, Yang Kuiwu, Wei Jianghong, Liu Yang, Ning Yuanlong. Survey on Detecting and Defending Adversarial Examples for Image Data[J]. Journal of Computer Research and Development, 2022, 59(6): 1315-1328. DOI: 10.7544/issn1000-1239.20200777
    [3]Li Minghui, Jiang Peipei, Wang Qian, Shen Chao, Li Qi. Adversarial Attacks and Defenses for Deep Learning Models[J]. Journal of Computer Research and Development, 2021, 58(5): 909-926. DOI: 10.7544/issn1000-1239.2021.20200920
    [4]Fu Zhangjie, Li Enlu, Cheng Xu, Huang Yongfeng, Hu Yuting. Recent Advances in Image Steganography Based on Deep Learning[J]. Journal of Computer Research and Development, 2021, 58(3): 548-568. DOI: 10.7544/issn1000-1239.2021.20200360
    [5]Chen Jinyin, Chen Yipeng, Chen Yiming, Zheng Haibin, Ji Shouling, Shi Jie, Cheng Yao. Fairness Research on Deep Learning[J]. Journal of Computer Research and Development, 2021, 58(2): 264-280. DOI: 10.7544/issn1000-1239.2021.20200758
    [6]Ren Jie, Hou Bojian, Jiang Yuan. Deep Forest for Multiple Instance Learning[J]. Journal of Computer Research and Development, 2019, 56(8): 1670-1676. DOI: 10.7544/issn1000-1239.2019.20190332
    [7]Zhou Ye, Zhang Junping. Multi-Scale Deep Learning for Product Image Search[J]. Journal of Computer Research and Development, 2017, 54(8): 1824-1832. DOI: 10.7544/issn1000-1239.2017.20170197
    [8]Zhu Jun, Zhao Jieyu, Dong Zhenyu. Image Classification Using Hierarchical Feature Learning Method Combined with Image Saliency[J]. Journal of Computer Research and Development, 2014, 51(9): 1919-1928. DOI: 10.7544/issn1000-1239.2014.20140138
    [9]Lü Qi, Dou Yong, Niu Xin, Xu Jiaqing, Xia Fei. Remote Sensing Image Classification Based on DBN Model[J]. Journal of Computer Research and Development, 2014, 51(9): 1911-1918. DOI: 10.7544/issn1000-1239.2014.20140199
    [10]Yu Kai, Jia Lei, Chen Yuqiang, and Xu Wei. Deep Learning: Yesterday, Today, and Tomorrow[J]. Journal of Computer Research and Development, 2013, 50(9): 1799-1804.

  • Cited by

    Periodical cited type(4)

    1. 孙书魁,范菁,孙中强,曲金帅,代婷婷. 基于深度学习的图像数据增强研究综述. 计算机科学. 2024(01): 150-167 .
    2. 钱华,祁枢杰,顾涔,陶然,吴宏杰. 基于近邻卷积神经网络的油画分类方法研究. 苏州科技大学学报(自然科学版). 2024(01): 69-75 .
    3. 董彦松,刘月浩,董旭乾,赵亮,田聪,于斌,段振华. 基于误差分治的神经网络验证. 软件学报. 2024(05): 2307-2324 .
    4. 吴涛,曹新汶,先兴平,袁霖,张殊,崔灿一星,田侃. 图神经网络对抗攻击与鲁棒性评测前沿进展. 计算机科学与探索. 2024(08): 1935-1959 .

    Other cited types(16)

Catalog

    Get Citation
    PDF
    XML
    Article views (461) PDF downloads (269) Cited by(20)
    Turn off MathJax
    Article Contents
    Abstract
    Related Articles
    Email Alert RSS
    微信订阅号<br/>(实时资讯)

    微信订阅号
    (实时资讯)

    微信服务号<br/>(同步网站)

    微信服务号
    (同步网站)

    微信视频号<br/>(视频分享)

    微信视频号
    (视频分享)

    CCF<br/>(扫码入会)

    CCF
    (扫码入会)

    Copyright © Editorial Department of Computer Research and Development

    Supported by: Beijing Renhe Information Technology Co., Ltd. Baidu Analytics

    /

    DownLoad:  Full-Size Img  PowerPoint
    Return
    Return