A New Black Box Attack Generating Adversarial Examples Based on Reinforcement Learning

被引:0
|
作者
Xiao, Wenli [1 ]
Jiang, Hao [1 ]
Xia, Song [1 ]
机构
[1] Wuhan Univ, Coll Elect & Informat, Wuhan, Hubei, Peoples R China
来源
2020 INFORMATION COMMUNICATION TECHNOLOGIES CONFERENCE (ICTC) | 2020年
关键词
adversarial examples; black box attack; adver-sarial reinforcement learning; deep neural network;
D O I
10.1109/ictc49638.2020.9123270
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Machine learning can be misled by adversarial examples, which is formed by making small changes to the original data. Nowadays, there are kinds of methods to produce adversarial examples. However, they can not apply non-differentiable models, reduce the amount of calculations, and shorten the sample generation time at the same time. In this paper, we propose a new black box attack generating adversarial examples based on reinforcement learning. By using deep Q-learning network, we can train the substitute model and generate adversarial examples at the same time. Experimental results show that this method only needs 7.7ms to produce an adversarial example, which solves the problems of low efficiency, large amount of calculation and inapplicable to non-differentiable model.
引用
收藏
页码:141 / 146
页数:6
相关论文
共 50 条
  • [1] Natural Black-Box Adversarial Examples against Deep Reinforcement Learning
    Yu, Mengran
    Sun, Shiliang
    THIRTY-SIXTH AAAI CONFERENCE ON ARTIFICIAL INTELLIGENCE / THIRTY-FOURTH CONFERENCE ON INNOVATIVE APPLICATIONS OF ARTIFICIAL INTELLIGENCE / TWELVETH SYMPOSIUM ON EDUCATIONAL ADVANCES IN ARTIFICIAL INTELLIGENCE, 2022, : 8936 - 8944
  • [2] Reinforcement Learning Based Sparse Black-box Adversarial Attack on Video Recognition Models
    Wang, Zeyuan
    Sha, Chaofeng
    Yang, Su
    PROCEEDINGS OF THE THIRTIETH INTERNATIONAL JOINT CONFERENCE ON ARTIFICIAL INTELLIGENCE, IJCAI 2021, 2021, : 3162 - 3168
  • [3] SSQLi: A Black-Box Adversarial Attack Method for SQL Injection Based on Reinforcement Learning
    Guan, Yuting
    He, Junjiang
    Li, Tao
    Zhao, Hui
    Ma, Baoqiang
    FUTURE INTERNET, 2023, 15 (04):
  • [4] Targeted Adversarial Examples Generating Method Based on cVAE in Black Box Settings
    YU Tingyue
    WANG Shen
    ZHANG Chunrui
    WANG Zhenbang
    LI Yetian
    YU Xiangzhan
    Chinese Journal of Electronics, 2021, 30 (05) : 866 - 875
  • [5] Targeted Adversarial Examples Generating Method Based on cVAE in Black Box Settings
    YU Tingyue
    WANG Shen
    ZHANG Chunrui
    WANG Zhenbang
    LI Yetian
    YU Xiangzhan
    CHINESE JOURNAL OF ELECTRONICS, 2021, 30 (05) : 866 - 875
  • [6] Generating Black-Box Adversarial Examples in Sparse Domain
    Zanddizari, Hadi
    Zeinali, Behnam
    Chang, J. Morris
    IEEE TRANSACTIONS ON EMERGING TOPICS IN COMPUTATIONAL INTELLIGENCE, 2022, 6 (04): : 795 - 804
  • [7] A Black-Box Adversarial Attack via Deep Reinforcement Learning on the Feature Space
    Li, Lyue
    Rezapour, Amir
    Tzeng, Wen-Guey
    2021 IEEE CONFERENCE ON DEPENDABLE AND SECURE COMPUTING (DSC), 2021,
  • [8] Evolutionary Multilabel Adversarial Examples: An Effective Black-Box Attack
    Kong L.
    Luo W.
    Zhang H.
    Liu Y.
    Shi Y.
    IEEE Transactions on Artificial Intelligence, 2023, 4 (03): : 562 - 572
  • [9] RLVS: A Reinforcement Learning-Based Sparse Adversarial Attack Method for Black-Box Video Recognition
    Song, Jianxin
    Yu, Dan
    Teng, Hongfei
    Chen, Yongle
    ELECTRONICS, 2025, 14 (02):
  • [10] Generating Adversarial Examples for Static PE Malware Detector Based on Deep Reinforcement Learning
    Chen, Jun
    Jiang, Jingfei
    Li, Rongchun
    Dou, Yong
    5TH ANNUAL INTERNATIONAL CONFERENCE ON INFORMATION SYSTEM AND ARTIFICIAL INTELLIGENCE (ISAI2020), 2020, 1575
12345