Denial-of-Service Attack on Object Detection Model Using Universal Adversarial Perturbation

Add code
May 26, 2022
Avishag Shapira, Alon Zolfi, Luca Demetrio, Battista Biggio, Asaf Shabtai
Figure 1 for Denial-of-Service Attack on Object Detection Model Using Universal Adversarial Perturbation
Figure 2 for Denial-of-Service Attack on Object Detection Model Using Universal Adversarial Perturbation
Figure 3 for Denial-of-Service Attack on Object Detection Model Using Universal Adversarial Perturbation
Figure 4 for Denial-of-Service Attack on Object Detection Model Using Universal Adversarial Perturbation

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon

Adversarial attacks against deep learning-based object detectors have been studied extensively in the past few years. The proposed attacks aimed solely at compromising the models' integrity (i.e., trustworthiness of the model's prediction), while adversarial attacks targeting the models' availability, a critical aspect in safety-critical domains such as autonomous driving, have not been explored by the machine learning research community. In this paper, we propose NMS-Sponge, a novel approach that negatively affects the decision latency of YOLO, a state-of-the-art object detector, and compromises the model's availability by applying a universal adversarial perturbation (UAP). In our experiments, we demonstrate that the proposed UAP is able to increase the processing time of individual frames by adding "phantom" objects while preserving the detection of the original objects.

View paper onarxiv icon

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon