Countermeasures Against Adversarial Examples in Radio Signal Classification

被引：22

作者：

Zhang, Lu ^{[1
]}

Lambotharan, Sangarapillai ^{[1
]}

Zheng, Gan ^{[1
]}

AsSadhan, Basil ^{[2
]}

Roli, Fabio ^{[3
]}

机构：

[1] Loughborough Univ, Wolfson Sch Mech Elect & Mfg Engn, Loughborough LE11 3TU, Leics, England

[2] King Saud Univ, Dept Comp Sci, Riyadh 11421, Saudi Arabia

[3] Univ Cagliari, Dept Elect & Elect Engn, I-09123 Cagliari, Italy

来源：

IEEE WIRELESS COMMUNICATIONS LETTERS | 2021年 / 10卷 / 08期

基金：

英国工程与自然科学研究理事会;

关键词：

Modulation; Perturbation methods; Receivers; Training; Smoothing methods; Radio transmitters; Noise measurement; Deep learning; adversarial examples; radio modulation classification; neural rejection; label smoothing;

D O I：

10.1109/LWC.2021.3083099

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Deep learning algorithms have been shown to be powerful in many communication network design problems, including that in automatic modulation classification. However, they are vulnerable to carefully crafted attacks called adversarial examples. Hence, the reliance of wireless networks on deep learning algorithms poses a serious threat to the security and operation of wireless networks. In this letter, we propose for the first time a countermeasure against adversarial examples in modulation classification. Our countermeasure is based on a neural rejection technique, augmented by label smoothing and Gaussian noise injection, that allows to detect and reject adversarial examples with high accuracy. Our results demonstrate that the proposed countermeasure can protect deep-learning based modulation classification systems against adversarial examples.

引用

页码：1830 / 1834

页数：5

共 50 条

[11] Feature Distillation in Deep Attention Network Against Adversarial Examples
Chen, Xin
Weng, Jian
Deng, Xiaoling
Luo, Weiqi
Lan, Yubin
Tian, Qi
IEEE TRANSACTIONS ON NEURAL NETWORKS AND LEARNING SYSTEMS, 2023, 34 (07) : 3691 - 3705
[12] An Empirical Study of Adversarial Examples on Remote Sensing Image Scene Classification
Chen, Li
Xu, Zewei
Li, Qi
Peng, Jian
Wang, Shaowen
Li, Haifeng
IEEE TRANSACTIONS ON GEOSCIENCE AND REMOTE SENSING, 2021, 59 (09): : 7419 - 7433
[13] Adversarial Attacks on Deep-Learning Based Radio Signal Classification
Sadeghi, Meysam
Larsson, Erik G.
IEEE WIRELESS COMMUNICATIONS LETTERS, 2019, 8 (01) : 213 - 216
[14] Stealthy Adversarial Attacks Against Automated Modulation Classification in Cognitive Radio
Fernando, Praveen
Wei-Kocsis, Jin
2023 IEEE COGNITIVE COMMUNICATIONS FOR AEROSPACE APPLICATIONS WORKSHOP, CCAAW, 2023,
[15] Adversarial Minimax Training for Robustness Against Adversarial Examples
Komiyama, Ryota
Hattori, Motonobu
NEURAL INFORMATION PROCESSING (ICONIP 2018), PT II, 2018, 11302 : 690 - 699
[16] Analyzing the Robustness of Deep Learning Against Adversarial Examples
Zhao, Jun
2018 56TH ANNUAL ALLERTON CONFERENCE ON COMMUNICATION, CONTROL, AND COMPUTING (ALLERTON), 2018, : 1060 - 1064
[17] Attention-Based Adversarial Robust Distillation in Radio Signal Classifications for Low-Power IoT Devices
Zhang, Lu
Lambotharan, Sangarapillai
Zheng, Gan
Liao, Guisheng
AsSadhan, Basil
Roli, Fabio
IEEE INTERNET OF THINGS JOURNAL, 2023, 10 (03) : 2646 - 2657
[18] EEJE: Two-Step Input Transformation for Robust DNN Against Adversarial Examples
Choi, Seok-Hwan
Shin, Jinmyeong
Liu, Peng
Choi, Yoon-Ho
IEEE TRANSACTIONS ON NETWORK SCIENCE AND ENGINEERING, 2021, 8 (02): : 908 - 920
[19] Defense against adversarial examples based on wavelet domain analysis
Sarvar, Armaghan
Amirmazlaghani, Maryam
APPLIED INTELLIGENCE, 2023, 53 (01) : 423 - 439
[20] Defense against adversarial examples based on wavelet domain analysis
Armaghan Sarvar
Maryam Amirmazlaghani
Applied Intelligence, 2023, 53 : 423 - 439

← 1 2 3 4 5 →