File Download
There are no files associated with this item.
Links for fulltext
(May Require Subscription)
- Publisher Website: 10.1145/3400302.3415758
- Scopus: eid_2-s2.0-85097923161
- Find via
Supplementary
-
Citations:
- Scopus: 0
- Appears in Collections:
Conference Paper: Counteracting Adversarial Attacks in Autonomous Driving
| Title | Counteracting Adversarial Attacks in Autonomous Driving |
|---|---|
| Authors | |
| Keywords | Adversarial Defense Autonomous System Local Smoothness Robust Stereo Vision |
| Issue Date | 2020 |
| Citation | IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers, ICCAD, 2020, v. 2020-November, article no. 9256443 How to Cite? |
| Abstract | In this paper, we focus on studying robust deep stereo vision of autonomous driving systems and counteracting adversarial attacks against it. Autonomous system operation requires real-time processing of measurement data which often contain significant uncertainties and noise. Adversarial attacks have been widely studied to simulate these perturbations in recent years. To counteract these attacks in autonomous systems, a novel defense method is proposed in this paper. A stereo-regularizer is proposed to guide the model to learn the implicit relationship between the left and right images of the stereo-vision system. Univariate and multivariate functions are adopted to characterize the relationships between the two input images and the object detection model. The regularizer is then relaxed to its upper bound to improve adversarial robustness. Furthermore, the upper bound is approximated by the remainder of its Taylor expansion to improve the local smoothness of the loss surface. The model parameters are trained via adversarial training with the novel regularization term. Our method exploits basic knowledge from the physical world, i.e., the mutual constraints of the two images in the stereo-based system. As such, outliers can be detected and defended with high accuracy and efficiency. Numerical experiments demonstrate that the proposed method offers superior performance when compared with traditional adversarial training methods in state-of-the-art stereo-based 3D object detection models for autonomous vehicles. |
| Persistent Identifier | http://hdl.handle.net/10722/336259 |
| ISSN | 2020 SCImago Journal Rankings: 0.501 |
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Sun, Qi | - |
| dc.contributor.author | Rao, Arjun Ashok | - |
| dc.contributor.author | Yao, Xufeng | - |
| dc.contributor.author | Yu, Bei | - |
| dc.contributor.author | Hu, Shiyan | - |
| dc.date.accessioned | 2024-01-15T08:24:58Z | - |
| dc.date.available | 2024-01-15T08:24:58Z | - |
| dc.date.issued | 2020 | - |
| dc.identifier.citation | IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers, ICCAD, 2020, v. 2020-November, article no. 9256443 | - |
| dc.identifier.issn | 1092-3152 | - |
| dc.identifier.uri | http://hdl.handle.net/10722/336259 | - |
| dc.description.abstract | In this paper, we focus on studying robust deep stereo vision of autonomous driving systems and counteracting adversarial attacks against it. Autonomous system operation requires real-time processing of measurement data which often contain significant uncertainties and noise. Adversarial attacks have been widely studied to simulate these perturbations in recent years. To counteract these attacks in autonomous systems, a novel defense method is proposed in this paper. A stereo-regularizer is proposed to guide the model to learn the implicit relationship between the left and right images of the stereo-vision system. Univariate and multivariate functions are adopted to characterize the relationships between the two input images and the object detection model. The regularizer is then relaxed to its upper bound to improve adversarial robustness. Furthermore, the upper bound is approximated by the remainder of its Taylor expansion to improve the local smoothness of the loss surface. The model parameters are trained via adversarial training with the novel regularization term. Our method exploits basic knowledge from the physical world, i.e., the mutual constraints of the two images in the stereo-based system. As such, outliers can be detected and defended with high accuracy and efficiency. Numerical experiments demonstrate that the proposed method offers superior performance when compared with traditional adversarial training methods in state-of-the-art stereo-based 3D object detection models for autonomous vehicles. | - |
| dc.language | eng | - |
| dc.relation.ispartof | IEEE/ACM International Conference on Computer-Aided Design, Digest of Technical Papers, ICCAD | - |
| dc.subject | Adversarial Defense | - |
| dc.subject | Autonomous System | - |
| dc.subject | Local Smoothness | - |
| dc.subject | Robust Stereo Vision | - |
| dc.title | Counteracting Adversarial Attacks in Autonomous Driving | - |
| dc.type | Conference_Paper | - |
| dc.description.nature | link_to_subscribed_fulltext | - |
| dc.identifier.doi | 10.1145/3400302.3415758 | - |
| dc.identifier.scopus | eid_2-s2.0-85097923161 | - |
| dc.identifier.volume | 2020-November | - |
| dc.identifier.spage | article no. 9256443 | - |
| dc.identifier.epage | article no. 9256443 | - |