Current browse context:
stat
Change to browse by:
References & Citations
Computer Science > Computer Vision and Pattern Recognition
Title: Generative Adversarial Perturbations
(Submitted on 6 Dec 2017 (v1), last revised 6 Jul 2018 (this version, v3))
Abstract: In this paper, we propose novel generative models for creating adversarial examples, slightly perturbed images resembling natural images but maliciously crafted to fool pre-trained models. We present trainable deep neural networks for transforming images to adversarial perturbations. Our proposed models can produce image-agnostic and image-dependent perturbations for both targeted and non-targeted attacks. We also demonstrate that similar architectures can achieve impressive results in fooling classification and semantic segmentation models, obviating the need for hand-crafting attack methods for each task. Using extensive experiments on challenging high-resolution datasets such as ImageNet and Cityscapes, we show that our perturbations achieve high fooling rates with small perturbation norms. Moreover, our attacks are considerably faster than current iterative methods at inference time.
Submission history
From: Omid Poursaeed [view email][v1] Wed, 6 Dec 2017 18:52:12 GMT (5639kb,D)
[v2] Wed, 4 Apr 2018 01:18:08 GMT (5696kb,D)
[v3] Fri, 6 Jul 2018 06:50:03 GMT (5704kb,D)
Link back to: arXiv, form interface, contact.