Attacks on Remote Face Classifiers

Slides:

Advertisements

Similar presentations

Foreground Focus: Finding Meaningful Features in Unlabeled Images Yong Jae Lee and Kristen Grauman University of Texas at Austin.

Advertisements

A Comprehensive Study on Third Order Statistical Features for Image Splicing Detection Xudong Zhao, Shilin Wang, Shenghong Li and Jianhua Li Shanghai Jiao.

São Paulo Advanced School of Computing (SP-ASC’10). São Paulo, Brazil, July 12-17, 2010 Looking at People Using Partial Least Squares William Robson Schwartz.

Neural Network-based Face Recognition, using ARENA Algorithm. Gregory Tambasis Supervisor: Dr T. Windeatt.

CONTENT BASED FACE RECOGNITION Ankur Jain 01D05007 Pranshu Sharma Prashant Baronia 01D05005 Swapnil Zarekar 01D05001 Under the guidance of Prof.

Face detection and recognition Many slides adapted from K. Grauman and D. Lowe.

Dept. of Computer Science & Engineering, CUHK Pseudo Relevance Feedback with Biased Support Vector Machine in Multimedia Retrieval Steven C.H. Hoi 14-Oct,

Presented by Zeehasham Rasheed

Student: Kylie Gorman Mentor: Yang Zhang COLOR-ATTRIBUTES- RELATED IMAGE RETRIEVAL.

Biometrics & Security Tutorial 6. 1 (a) Understand why use face (P7: 3-4) and face recognition system (P7: 5-10)

Wang, Z., et al. Presented by: Kayla Henneman October 27, 2014 WHO IS HERE: LOCATION AWARE FACE RECOGNITION.

BDPCA Plus LDA: A Novel Fast Feature Extraction Technique for Face Recognition 授課教授 : 連震杰老師組員 : 黃彥綸何域禎 W. Zuo, D. Zhang, J. Yang, K. Wang, “BBPCA plus.

Cost-Sensitive Bayesian Network algorithm Introduction: Machine learning algorithms are becoming an increasingly important area for research and application.

Hurieh Khalajzadeh Mohammad Mansouri Mohammad Teshnehlab

KYLE PATTERSON Automatic Age Estimation and Interactive Museum Exhibits Advisors: Prof. Cass and Prof. Lawson.

Curtis Kelsey University of Missouri A FINGERPRINTING SYSTEM MOBILE MODEL FOR VIDEO COPY PROTECTION.

EVALUATING TRANSFER LEARNING APPROACHES FOR IMAGE INFORMATION MINING APPLICATIONS Surya Durbha*, Roger King, Nicolas Younan, *Indian Institute of Technology(IIT),

Recognizing Deformable Shapes Salvador Ruiz Correa UW Ph.D. Graduate Researcher at Children’s Hospital.

80 million tiny images: a large dataset for non-parametric object and scene recognition CS 4763 Multimedia Systems Spring 2008.

A NOVEL METHOD FOR COLOR FACE RECOGNITION USING KNN CLASSIFIER

Face recognition via sparse representation. Breakdown Problem Classical techniques New method based on sparsity Results.

3D Face Recognition Using Range Images

Interface Development using SQL and Visual Basic for an Amazonian Soil, Vegetation, and Spectral Database Supported by Oracle The development of networking.

Dense Color Moment: A New Discriminative Color Descriptor Kylie Gorman, Mentor: Yang Zhang University of Central Florida I.Problem:  Create Robust Discriminative.

COMP24111: Machine Learning Ensemble Models Gavin Brown

Color-Attributes-Related Image Retrieval Student: Kylie Gorman Mentor: Yang Zhang.

WEEK4 RESEARCH Amari Lewis Aidean Sharghi. PREPARING THE DATASET  Cars – 83 samples  3 images for each sample when x=0  7 images for each sample when.

Application of Facial Recognition in Biometric Security Kyle Ferris.

Learning Photographic Global Tonal Adjustment with a Database of Input / Output Image Pairs.

3D Face Recognition Using Range Images Literature Survey Joonsoo Lee 3/10/05.

Face detection and recognition Many slides adapted from K. Grauman and D. Lowe.

Martina Uray Heinz Mayer Joanneum Research Graz Institute of Digital Image Processing Horst Bischof Graz University of Technology Institute for Computer.

1 Bilinear Classifiers for Visual Recognition Computational Vision Lab. University of California Irvine To be presented in NIPS 2009 Hamed Pirsiavash Deva.

Date of download: 9/18/2016 Copyright © 2016 SPIE. All rights reserved. Key observation of geometric analysis of two different time series construction.

2. Skin - color filtering.

An Image Database Retrieval Scheme Based Upon Multivariate Analysis and Data Mining Presented by C.C. Chang Dept. of Computer Science and Information.

Guillaume-Alexandre Bilodeau

Convolutional Neural Fabrics by Shreyas Saxena, Jakob Verbeek

Data Driven Attributes for Action Detection

PRESENTED BY Yang Jiao Timo Ahonen, Matti Pietikainen

Face Recognition and Feature Subspaces

ABSTRACT FACE RECOGNITION RESULTS

Hybrid Features based Gender Classification

Recovery from Occlusion in Deep Feature Space for Face Recognition

Project Implementation for ITCS4122

Using Tensorflow to Detect Objects in an Image

Accounting for the relative importance of objects in image retrieval

Historic Document Image De-Noising using Principal Component Analysis (PCA) and Local Pixel Grouping (LPG) Han-Yang Tang1, Azah Kamilah Muda1, Yun-Huoy.

Bilinear Classifiers for Visual Recognition

Bolun Wang*, Yuanshun Yao, Bimal Viswanath§ Haitao Zheng, Ben Y. Zhao

Face Components detection

Eigenfaces for recognition (Turk & Pentland)

Adaptive object recognition in RGBz images

Stealing DNN models: Attacks and Defenses

Artifacts of Adversarial Examples

Attack and defense on learning-based security system

Midterm Report “Makeup” Against Face Detection

Face Detection Gender Recognition 1 1 (19) 1 (1)

Presentation By: Eryk Helenowski PURE Mentor: Vincent Bindschaedler

Adversarial Learning for Security System

Research Institute for Future Media Computing

TPGAN overview.

Adversarial Machine Learning in Image Recognition

Application of Facial Recognition in Biometric Security

(a) A band table where the y axis data represent individual OTUs and the x axis data represent samples. (a) A band table where the y axis data represent.

Image Processing and Multi-domain Translation

Exploiting Unintended Feature Leakage in Collaborative Learning

Laso: Label-Set Operations Networks for Multi-label Few-shot Learning

Unsupervised principal-component analysis (PCA) of 129 seroreactive antigens for adults and children from different geographical locations. Unsupervised.

Do Better ImageNet Models Transfer Better?

Presentation transcript:

Attacks on Remote Face Classifiers Mentee: Timothy Klem Tianying Zhou Mentor: Vincent Bindschaedler Adversarial Image Crafting Tree Model Motivation Variable Importance Table Many cloud providers host facial recognition services that identify faces in a client’s set of images. However, attackers can manipulate these services to help construct images of faces that cannot be detected by the remote model. Attack Process Attacker deploys adversarial images to defeat the remote model Attacker constructs adversarial images that defeat the local model Attacker builds locally-hosted model to mimic the remote model Attacker labels own training data by querying the remote cloud service Different Sizes of Blocks Alter Block Colors: Black/While Attack Various Locations Forehead Cheek Chin Improving Local Models Future Work We evaluate Jacobian-based dataset augmentation presented by Papernot et al. (2016) as a technique to increase the size of a face dataset to improve facial recognition. Explore more features to modify in adversarial image crafting Apply sample crafting techniques to more novel machine learning classifiers Expand size of training dataset for faces Use GPUs or other accelerators to reduce time to create machine learning models Parameters Tested Number of augmentations conducted on dataset to double its size Application of Principal Component Analysis (PCA) to reduce complexity of training data for classifier References Papernot, N., McDaniel, P., & Goodfellow, I. (2016). Transferability in Machine Learning: from Phenomena to Black-Box Attacks using Adversarial Samples. Transferability in Machine Learning: from Phenomena to Black-Box Attacks using Adversarial Samples. Retrieved February 1, 2017. Iterations Accuracy Accuracy with PCA 92.2% 68.9% 1 88.9% 70% 2 3 87.8% 4 86.7% 72%