APF: An Adversarial Privacy-preserving Filter to Protect Portrait Information

被引：0

作者：

Zhao, Xian ^{[1
,2
]}

Zhang, Jiaming ^{[1
,2
]}

Huang, Xiaowen ^{[1
,2
]}

机构：

[1] Beijing Jiaotong Univ, Sch Comp & Informat Technol, Beijing, Peoples R China

[2] Beijing Jiaotong Univ, Beijing Key Lab Traff Data Anal & Min, Beijing, Peoples R China

来源：

PROCEEDINGS OF THE 29TH ACM INTERNATIONAL CONFERENCE ON MULTIMEDIA, MM 2021 | 2021年

基金：

中国国家自然科学基金; 北京市自然科学基金;

关键词：

privacy-preserving; face recognition; adversarial examples;

D O I：

10.1145/3474085.3478568

中图分类号：

TP18 [人工智能理论];

学科分类号：

081104 ; 0812 ; 0835 ; 1405 ;

摘要：

While widely adopted in practical applications, face recognition has been disputed on the malicious use of face images and potential privacy issues. Online photo sharing services accidentally act as the main approach for the malicious crawlers to exploit face recognition to access portrait privacy. In this demo, we propose an adversarial privacy-preserving filter, which can preserve face image from malicious face recognition algorithms. This filter is generated by an end-cloud collaborated adversarial attack framework consisting of three modules: (1) Image-specific gradient generation module, to extract image-specific gradient in the user end; (2) Adversarial gradient transfer module, to fine-tune the image-specific gradient in the server; and (3) Universal adversarial perturbation enhancement module, to append image-independent perturbation to derive the final adversarial perturbation. A short video about our system is available at here.

引用

页码：2813 / 2815

页数：3

共 8 条

[1]

Chen S, 2018, CHIN CONT DECIS CONF, P428, DOI 10.1109/CCDC.2018.8407171

[2] ArcFace: Additive Angular Margin Loss for Deep Face Recognition [J].

Deng, Jiankang ;

Guo, Jia ;

Xue, Niannan ;

Zafeiriou, Stefanos .

2019 IEEE/CVF CONFERENCE ON COMPUTER VISION AND PATTERN RECOGNITION (CVPR 2019), 2019, :4685-4694

[3]

EFF JOHN ROBERTS, 2019, AIRPORT PAYMENT FACI

[4]

Goodfellow I. J., 2014, INT C LEARNING REPRE

[5] MS-Celeb-1M: A Dataset and Benchmark for Large-Scale Face Recognition [J].

Guo, Yandong ;

Zhang, Lei ;

Hu, Yuxiao ;

He, Xiaodong ;

Gao, Jianfeng .

COMPUTER VISION - ECCV 2016, PT III, 2016, 9907 :87-102

[6] Universal adversarial perturbations [J].

Moosavi-Dezfooli, Seyed-Mohsen ;

Fawzi, Alhussein ;

Fawzi, Omar ;

Frossard, Pascal .

30TH IEEE CONFERENCE ON COMPUTER VISION AND PATTERN RECOGNITION (CVPR 2017), 2017, :86-94

[7] U-Net: Convolutional Networks for Biomedical Image Segmentation [J].

Ronneberger, Olaf ;

Fischer, Philipp ;

Brox, Thomas .

MEDICAL IMAGE COMPUTING AND COMPUTER-ASSISTED INTERVENTION, PT III, 2015, 9351 :234-241

[8] Adversarial Privacy-preserving Filter [J].

Zhang, Jiaming ;

Sang, Jitao ;

Zhao, Xian ;

Huang, Xiaowen ;

Sun, Yanfeng ;

Hu, Yongli .

MM '20: PROCEEDINGS OF THE 28TH ACM INTERNATIONAL CONFERENCE ON MULTIMEDIA, 2020, :1423-1431

← 1 →