| Presentation | 2021-10-07 Block-wise Transformation with Secret Key for Adversary Robust Defence of SVM model Ryota Iijima, MaungMaung AprilPyone, Hitoshi Kiya, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | In this paper, we propose a method for implementing support vector machine (SVM) models that are robust against adversarial examples, in which a transformation method using a secret key is applied to training and test images. Block-wise transformation methods with a secret key have been developed for adversarially robust defense, but their applications are limited to deep neural network (DNN) models Accordingly, in this paper, the conventional transformations are demonstrated to be ineffective for SVM models, so we propose a novel transformation method with a key for SVM models.In a face image classification experiment, the proposed transformation is verified to be effective in constructing adversarially robust SVM models against adversarial examples. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Support Vector Machine / Adversarial Examples / Image Transformation |
| Paper # | SIS2021-13 |
| Date of Issue | 2021-09-30 (SIS) |
| Conference Information | |
| Committee | SIS / ITE-BCT |
|---|---|
| Conference Date | 2021/10/7(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Online |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | System Implementation Technology, Short Range Wireless Systems, Smart Multimedia Systems, Broadcasting Technology, etc. |
| Chair | Noriaki Suetake(Yamaguchi Univ.) / Kyoichi Saito(NHK) |
| Vice Chair | Tomoaki Kimura(Kanagawa Inst. of Tech.) / Naoto Sasaoka(Tottori Univ.) / Hidekazu Murata(Kyoto Univ.) / Hajime Saito(TV Tokyo) |
| Secretary | Tomoaki Kimura(National Inst. of Tech., Ube College) / Naoto Sasaoka(NTT) / Hidekazu Murata(NHK) / Hajime Saito(TV Asahi) |
| Assistant | Soh Yoshida(Kansai Univ.) / Yoshiaki Makabe(Kanagawa Inst. of Tech.) / Hiroshi Tsutsui(Hokkaido Univ.) / Akihiro Tanabe(NTT) / Toshimitsu Kobayashi(NBN) |
| Paper Information | |
| Registration To | Technical Committee on Smart Info-Media Systems / Technical Group on Broadcasting and Communication Technologies |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Block-wise Transformation with Secret Key for Adversary Robust Defence of SVM model |
| Sub Title (in English) | |
| Keyword(1) | Support Vector Machine |
| Keyword(2) | Adversarial Examples |
| Keyword(3) | Image Transformation |
| 1st Author's Name | Ryota Iijima |
| 1st Author's Affiliation | Tokyo Metropolitan University(TMU) |
| 2nd Author's Name | MaungMaung AprilPyone |
| 2nd Author's Affiliation | Tokyo Metropolitan University(TMU) |
| 3rd Author's Name | Hitoshi Kiya |
| 3rd Author's Affiliation | Tokyo Metropolitan University(TMU) |
| Date | 2021-10-07 |
| Paper # | SIS2021-13 |
| Volume (vol) | vol.121 |
| Number (no) | SIS-190 |
| Page | pp.pp.17-22(SIS), |
| #Pages | 6 |
| Date of Issue | 2021-09-30 (SIS) |