Adversaries.

Slides:

Advertisements

Similar presentations

ImageNet Classification with Deep Convolutional Neural Networks

Advertisements

Beyond bags of features: Adding spatial information Many slides adapted from Fei-Fei Li, Rob Fergus, and Antonio Torralba.

Beyond bags of features: Adding spatial information Many slides adapted from Fei-Fei Li, Rob Fergus, and Antonio Torralba.

Spatial Pyramid Pooling in Deep Convolutional

Hurieh Khalajzadeh Mohammad Mansouri Mohammad Teshnehlab

Detection, Segmentation and Fine-grained Localization

Scale-less Dense Correspondences Tal Hassner The Open University of Israel ICCV’13 Tutorial on Dense Image Correspondences for Computer Vision.

Deformable Part Model Presenter ： Liu Changyu Advisor ： Prof. Alex Hauptmann Interest ： Multimedia Analysis April 11 st, 2013.

Convolutional Neural Network

A Grand Unifying Architecture for Scene Understanding Marc Eder March 23, 2016 Eigen, David, and Rob Fergus. “Predicting depth, surface normals and semantic.

Philipp Gysel ECE Department University of California, Davis

Parsing Natural Scenes and Natural Language with Recursive Neural Networks INTERNATIONAL CONFERENCE ON MACHINE LEARNING (ICML 2011) RICHARD SOCHER CLIFF.

Understanding and Predicting Image Memorability at a Large Scale A. Khosla, A. S. Raju, A. Torralba and A. Oliva International Conference on Computer Vision.

Understanding Convolutional Neural Networks for Object Recognition

Feature selection using Deep Neural Networks March 18, 2016 CSI 991 Kevin Ham.

Convolutional Neural Networks

Recent developments in object detection

Generative Adversarial Nets

Convolutional Neural Network

‘Learning Image Matching by Simply Watching Video’

From Vision to Grasping: Adapting Visual Networks

Convolutional Neural Fabrics by Shreyas Saxena, Jakob Verbeek

Learning Mid-Level Features For Recognition

Perceptual Loss Deep Feature Interpolation for Image Content Changes

References [1] - Y. LeCun, L. Bottou, Y. Bengio and P. Haffner, Gradient-Based Learning Applied to Document Recognition, Proceedings of the IEEE, 86(11): ,

Many slides and slide ideas thanks to Marc'Aurelio Ranzato and Michael Nielson.

Image Recognition. Contents: Motivation Objective Definition Introduction Preprocessing / Edge Detection Neural Networks in Image Recognition Practical.

Combining CNN with RNN for scene labeling (segmentation)

YOLO9000:Better, Faster, Stronger

Deep Neural Networks based Text- Dependent Speaker Verification

Classification of Hand-Written Digits Using Scattering Convolutional Network Dongmian Zou Advisor: Professor Radu Balan.

Sujay Yadawadkar, Virginia Tech

Li Fei-Fei, UIUC Rob Fergus, MIT Antonio Torralba, MIT

Fooling ConvNets and Adversarial Examples

CS6890 Deep Learning Weizhen Cai

Non-linear classifiers Neural networks

Adversarially Tuned Scene Generation

Finding Clusters within a Class to Improve Classification Accuracy

By: Kevin Yu Ph.D. in Computer Engineering

Introduction to Neural Networks

Image Classification.

Outline Y. LeCun, L. Bottou, Y. Bengio, and P. Haffner, “Gradient-based learning applied to document recognition,” Proceedings of the IEEE, vol. 86, no.

Rob Fergus Computer Vision

Convolutional Neural Networks for Visual Tracking

Jia-Bin Huang Virginia Tech ECE 6554 Advanced Computer Vision

Towards Understanding the Invertibility of Convolutional Neural Networks Anna C. Gilbert1, Yi Zhang1, Kibok Lee1, Yuting Zhang1, Honglak Lee1,2 1University.

Presented by Shixing Chen

Image recognition: Defense adversarial attacks

Non-Stationary Texture Synthesis by Adversarial Expansion

A Proposal Defense On Deep Residual Network For Face Recognition Presented By SAGAR MISHRA MECE

Visualizing CNNs and Deeper Deep Architectures

Machine Learning – Neural Networks David Fenyő

Explainable Machine Learning

Convolutional Network by GoogLeNet

Attack and defense on learning-based security system

Adversarial Learning for Security System

Heterogeneous convolutional neural networks for visual recognition

Convolutional Neural Network

Course Recap and What’s Next?

Human-object interaction

3D Point Capsule Networks Lifting Capsule Networks to Raw 3D Data

VERY DEEP CONVOLUTIONAL NETWORKS FOR LARGE-SCALE IMAGE RECOGNITION

Learning Deconvolution Network for Semantic Segmentation

End-to-End Facial Alignment and Recognition

Machine Learning.

Deep learning: Recurrent Neural Networks CV192

What and How Well You Performed

ICLR, 2019 Jiahe Li

Developments in Adversarial Machine Learning

Presentation transcript:

Adversaries

Adversarial examples

Adversarial examples Ostrich!

Adversarial examples Ostrich! Intriguing properties of neural networks. Christian Szegedy, Wojciech Zaremba, Ilya Sutskever, Joan Bruna, Dumitru Erhan, Ian Goodfellow, Rob Fergus. In ICLR, 2014

Why do we care? Security Safety Hint to malfunction?

Adversarial examples

Adversarial examples for linear classifiers

Adversarial examples for convolutional networks

Adversarial examples for convolutional networks Convolutional networks w/ RELUare differentiable almost everywhere Are linear almost everywhere Slope for a given x = gradient at x Can use gradient to generate an adversarial example Explaining and Harnessing Adversarial Examples. Ian Goodfellow, Jonathon Shlens, Christian Szegedy. In ICLR 2015.

Adversarial examples for convolutional networks

Moar fun with adversarial examples Transferable across models Resilient to printing and photographing Adversarial examples in the physical world. Alexey Kurakin, Ian Goodfellow, Samy Bengio. ICLR Workshop (2017)

Adversarial turtle Synthesizing robust adversarial examples. Anish Athalye, Logan Engstrom , Andrew Ilyas , Kevin Kwok.

Adversarial turtle

Kinds of adversarial perturbations “White-box” vs “black-box” Does adversary have access to the model? “Untargeted” vs “Targeted” Should the new output be incorrect in a particular way?

Resilience to adversaries 89.4%  17.9%

Learnt adversaries

Visualizing and understanding neural networks

The gradient of the score Deep Inside Convolutional Networks: Visualising Image Classification Models and Saliency Maps.K. Simonyan, A. Vedaldi, A. Zisserman. ICLR Workshop 2014

The image for a class

Class activation maps global average pooling + score = scoring + global average pooling Learning Deep Features for Discriminative Localization. Bolei Zhou, Aditya Khosla, Agata Lapedriza, Aude Oliva, and Antonio Torralba. In CVPR, 2016

Inverting convolutional networks

Inverting convolutional networks Mahendran, Aravindh, and Andrea Vedaldi. "Understanding deep image representations by inverting them." Proceedings of the IEEE conference on computer vision and pattern recognition. 2015.

Learning to invert convolutional networks Dosovitskiy, Alexey, and Thomas Brox. "Inverting visual representations with convolutional networks." Proceedings of the IEEE Conference on Computer Vision and Pattern Recognition. 2016.

Side-effect - style transfer Content representation: feature map at each layer Style representation: Covariance matrix at each layer Spatially invariant Average second-order statistics Idea: Optimize x to match content of one image and style of another Gatys, Leon A., Alexander S. Ecker, and Matthias Bethge. "A neural algorithm of artistic style." arXiv preprint arXiv:1508.06576 (2015).

Style transfer

Learning to transfer style Perceptual Losses for Real-Time Style Transfer and Super-Resolution Justin Johnson, Alexandre Alahi, Li Fei-Fei ECCV 2016

Learning to transfer style Huang, Xun; Belongie, Serge Arbitrary Style Transfer in Real-time with Adaptive Instance Normalization International Conference on Computer Vision (ICCV), Venice, Italy, 2017, (Oral).