NetFlick: Adversarial Flickering Attacks on Deep Learning Based Video Compression

Add code
Apr 04, 2023
Jung-Woo Chang, Nojan Sheybani, Shehzeen Samarah Hussain, Mojan Javaheripi, Seira Hidano, Farinaz Koushanfar
Figure 1 for NetFlick: Adversarial Flickering Attacks on Deep Learning Based Video Compression
Figure 2 for NetFlick: Adversarial Flickering Attacks on Deep Learning Based Video Compression
Figure 3 for NetFlick: Adversarial Flickering Attacks on Deep Learning Based Video Compression
Figure 4 for NetFlick: Adversarial Flickering Attacks on Deep Learning Based Video Compression

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon

Video compression plays a significant role in IoT devices for the efficient transport of visual data while satisfying all underlying bandwidth constraints. Deep learning-based video compression methods are rapidly replacing traditional algorithms and providing state-of-the-art results on edge devices. However, recently developed adversarial attacks demonstrate that digitally crafted perturbations can break the Rate-Distortion relationship of video compression. In this work, we present a real-world LED attack to target video compression frameworks. Our physically realizable attack, dubbed NetFlick, can degrade the spatio-temporal correlation between successive frames by injecting flickering temporal perturbations. In addition, we propose universal perturbations that can downgrade performance of incoming video without prior knowledge of the contents. Experimental results demonstrate that NetFlick can successfully deteriorate the performance of video compression frameworks in both digital- and physical-settings and can be further extended to attack downstream video classification networks.

* 8 pages; Accepted to ICLR 2023 ML4IoT workshop  
View paper onarxiv icon

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon