检索结果-内蒙古大学图书馆

Certified defense against patch attacks via mask-guided randomized smoothing

science China(Information sciences) 2022年第7期65卷 86-97页

作者： Kui ZHANG Hang ZHOU Huanyu BIAN Weiming ZHANG Nenghai YU School of Cyber Science and Technology University of Science and Technology of China School of Computer Science Simon Fraser University

The adversarial patch is a practical and effective method that modifies a small region on an image, making DNNs fail to classify. Existing empirical defenses against adversarial patch attacks lack theoretical analysis and are vulnerable to adaptive attacks. To overcome such shortcomings, certified defenses that provide a guaranteed classification performance in the face of strong unknown adversarial attacks are proposed. However, on the one hand, existing certified defenses either have low clean accuracy or need specified architecture, which is not robust enough. On the other hand, they can only provide provable accuracy but ignore the relationship to the number of perturbations. In this paper, we propose a certified defense against patch attacks that provides both the provable radius and high classification accuracy. By adding Gaussian noises only on the patch region with a mask, we prove that a stronger certificate with high confidence can be achieved by randomized smoothing. Furthermore, we design a practical scheme based on joint voting to find the patch with a high probability and certify it effectively. Our defense achieves 86.4%clean accuracy and 71.8% certified accuracy on CIFAR-10 exceeding the maximum 60% certified accuracy of existing methods. The clean accuracy of 67.8% and the certified accuracy of 53.6% on ImageNet are better than the state-of-the-art method, whose certified accuracy is 26%.

关键词： certified defense adversarial patch patch localization randomized smoothing joint voting

来源：评论

学校读者我要写书评

暂无评论

A Study of Federated Learning with Internet of Things for Data Privacy and Security using Privacy Preserving Techniques

引用

Recent Patents on Engineering 2024年第1期18卷 1-17页

作者： Shakeer, Shaik Mahamad Rajasekhara Babu, M. School of Computer Science and Engineering Vellore Institute of Technology Tamilnadu Vellore India

To address the privacy concerns that arise from centralizing model training on a large number of IoT devices, a revolutionary new distributed learning framework called federated learning has been developed. This setup of devices works together to train models without compromising the security of individual data streams. To solve machine learning problems, a federated learning architecture relies on many clients working together through a central aggregator. To protect each device's privacy, we only access the training data at random. Because of its focus on decentralized processing and model transmission, federated learning considerably reduces systemic privacy risks and costs in comparison to conventional centralized machine learning systems. All client data is encrypted before being stored in a local database. Each user's device collects data locally for training during a federated learning session, and then uploads the final model to a centralized server. To provide a comprehensive assessment and inspire more research, this paper explores into the inner workings of federated learning from five different vantage points: data partitioning, privacy approaches, machine learning models, communication architectures, and system heterogeneity. Then, suggestions for further research are given, and a list is compiled of the most recent problems in federated learning. We conclude with an examination of the present applications of federated Learning knowledge. © 2024 Bentham science Publishers.

关键词： Privacy-preserving techniques

来源：评论

学校读者我要写书评

暂无评论

Multi-view stereo algorithms based on deep learning: a survey

引用

Multimedia Tools and Applications 2025年第6期84卷 2877-2908页

作者： Huang, Hongbo Yan, Xiaoxu Zheng, Yaolin He, Jiayu Xu, Longfei Qin, Dechun Computer School Beijing Information Science & Technology University Beijing China Institute of Computing Intelligence Beijing Information Science & Technology University Beijing China Foreign Languages School Beijing Information Science & Technology University Beijing China

Multi-View Stereo (MVS) is a long-standing and fundamental task in computer vision, which aims to reconstruct the 3D geometry of a scene from a set of overlapping images. With known camera parameters, MVS matches pixels across images to compute dense correspondences and recover 3D points. Traditional MVS methods often encounter difficulties in addressing complex scenes due to limitations in robustness. However, recent advancements in deep-learning-based MVS have demonstrated remarkable performance gains, attributed to their enhanced feature extraction and cost volume processing capabilities. This comprehensive survey delves into deep-learning-based MVS algorithms, highlighting key challenges and avenues for future exploration. Our focus is on studies aimed at mitigating algorithmic memory requirements and elevating processing speeds. To better understand the developments in this field, we propose a new taxonomy. The deep-learning-based MVS algorithms are categorized into two categories: scene-oriented and view-oriented methods. Scene-oriented methods typically employ voxels or neural implicit representations as the representative form of the scene and infer the complete scene directly. View-oriented methods focus on estimating the depth map of a single view. Detailed classifications and reviews have been conducted for each category. Furthermore, we introduce several widely used datasets and metrics and empirical evaluation of representative algorithms across three popular datasets. This article concludes by discussing prevalent challenges in the MVS domain and promising research directions for the future. © The Author(s), under exclusive licence to Springer science+Business Media, LLC, part of Springer Nature 2024.

关键词： Stereo image processing

来源：评论

学校读者我要写书评

暂无评论

Adversarial attacks against dynamic graph neural networks via node injection

引用

High-Confidence Computing 2024年第1期4卷 43-51页

作者： Yanan Jiang Hui Xia School of Computer Science and Technology Ocean University of ChinaQingdao 266100China

Dynamic graph neural networks(DGNNs)have demonstrated their extraordinary value in many practical ***,the vulnerability of DNNs is a serious hidden danger as a small disturbance added to the model can markedly reduce its *** the same time,current adversarial attack schemes are implemented on static graphs,and the variability of attack models prevents these schemes from transferring to dynamic *** this paper,we use the diffused attack of node injection to attack the DGNNs,and first propose the node injection attack based on structural fragility against DGNNs,named Structural Fragility-based Dynamic Graph Node Injection Attack(SFIA).SFIA firstly determines the target time based on the period ***,it introduces a structural fragile edge selection strategy to establish the target nodes set and link them with the malicious node using serial ***,an optimization function is designed to generate adversarial features for malicious *** on datasets from four different fields show that SFIA is significantly superior to many comparative *** the graph is injected with 1%of the original total number of nodes through SFIA,the link prediction Recall and MRR of the target DGNN link decrease by 17.4%and 14.3%respectively,and the accuracy of node classification decreases by 8.7%.

关键词： Dynamic graph neural network Adversarial attack Malicious node Vulnerability

来源：评论

学校读者我要写书评

暂无评论

YOLO-LFD: A Lightweight and Fast Model for Forest Fire Detection

引用

computers, Materials & Continua 2025年第2期82卷 3399-3417页

作者： Honglin Wang Yangyang Zhang Cheng Zhu School of Artificial Intelligence Nanjing University of Information Science and TechnologyNanjing210044China School of Computer Science Nanjing University of Information Science and TechnologyNanjing210044China Electrical&Computer Engineering University of Illinois at Urbana-ChampaignUrbanaIL 61801USA

Forest fires pose a serious threat to ecological balance, air quality, and the safety of both humans and wildlife. This paper presents an improved model based on You Only Look Once version 5 (YOLOv5), named YOLO Lightweight Fire Detector (YOLO-LFD), to address the limitations of traditional sensor-based fire detection methods in terms of real-time performance and accuracy. The proposed model is designed to enhance inference speed while maintaining high detection accuracy on resource-constrained devices such as drones and embedded systems. Firstly, we introduce Depthwise Separable Convolutions (DSConv) to reduce the complexity of the feature extraction network. Secondly, we design and implement the Lightweight Faster Implementation of Cross Stage Partial (CSP) Bottleneck with 2 Convolutions (C2f-Light) and the CSP Structure with 3 Compact Inverted Blocks (C3CIB) modules to replace the traditional C3 modules. This optimization enhances deep feature extraction and semantic information processing, thereby significantly increasing inference speed. To enhance the detection capability for small fires, the model employs a Normalized Wasserstein Distance (NWD) loss function, which effectively reduces the missed detection rate and improves the accuracy of detecting small fire sources. Experimental results demonstrate that compared to the baseline YOLOv5s model, the YOLO-LFD model not only increases inference speed by 19.3% but also significantly improves the detection accuracy for small fire targets, with only a 1.6% reduction in overall mean average precision (mAP)@0.5. Through these innovative improvements to YOLOv5s, the YOLO-LFD model achieves a balance between speed and accuracy, making it particularly suitable for real-time detection tasks on mobile and embedded devices.

关键词： Forest fire detection YOLOv5 lightweight small object detection

来源：评论

学校读者我要写书评

暂无评论

Knowledge Probabilization in Ensemble Distillation: Improving Accuracy and Uncertainty Quantification for Object Detectors

IEEE Transactions on Artificial Intelligence

引用

IEEE Transactions on Artificial Intelligence 2025年第1期6卷 221-233页

作者： Yang, Yang Wang, Chao Gong, Lei Wu, Min Chen, Zhenghua Li, Xiang Chen, Xianglan Zhou, Xuehai University of Science and Technology of China School of Computer Science and Technology Hefei230026 China 138632 Singapore East China Normal University School of Data Science and Engineering Shanghai200062 China

Ensemble object detectors have demonstrated remarkable effectiveness in enhancing prediction accuracy and uncertainty quantification. However, their widespread adoption is hindered by significant computational and storage demands, limiting their feasibility in resource-constrained settings. To overcome this, researchers have focused on distilling the knowledge from ensemble object detectors into a single model. In this article, we introduce probabilization based ensemble distillation (ProbED), an innovative ensemble distillation framework that consolidates knowledge from multiple object detectors into a single, resource-efficient model. Unlike traditional ensemble distillation methods that average the outputs of subteachers, ProbED captures comprehensive outcome distributions from all subteachers, providing a more nuanced approach to knowledge transfer. ProbED employs knowledge probabilization to achieve a sophisticated and refined aggregation of teacher knowledge, including feature knowledge, semantic knowledge, and localization knowledge, resulting in dual improvements in prediction accuracy and uncertainty quantification for the student model. In particular, ProED's novel knowledge probabilization-based approach to aggregating teacher knowledge is inspired by our empirical observations, which demonstrate that knowledge probabilization excels in effectively representing uncertainty, improving prediction, and facilitating robust knowledge transfer. Furthermore, we introduce a random smoothing perturbation technique to modify inputs within ProbED, further enhancing the distillation process. Extensive experiments highlight ProbED's ability to significantly enhance the prediction accuracy and uncertainty quantification of various object detectors, demonstrating its superior performance compared to other state-of-the-art techniques. © 2024 IEEE.

关键词： Teaching

来源：评论

学校读者我要写书评

暂无评论

Optimizing SDN Controller to Switch Latency for Controller Placement Problem

引用

Informatica (Slovenia) 2024年第8期48卷 165-176页

作者： Zobary, Firas School of Computer Science and Artificial Intelligence Wuhan University of Technology Wuhan China

Software-Defined Networking (SDN) updates network flexibility by decoupling the data plane from control planes, employing a logically centralized yet physically distributed multi-controller architecture. The optimal placement of controllers and their quantity presents a significant challenge known as the Controller Placement Problem (CPP). This study addresses the optimization of average propagation delay between controllers and switches, introducing an enhancement version of well-known K-Means algorithm for network partitioning and controller placement, called an Advanced K-Means algorithm. The proposed algorithm strategically minimizes the average propagation delay by situating controllers in optimal nodes within each sub-network. Evaluation through simulations on the Internet OS3E topology demonstrates the algorithm's efficacy, showcasing a 22%, 11%, 7%, and 3% reduction in average propagation delay compared to DBCP, POCO, CNPA, and HDIDS, respectively. These results establish the proposed algorithm as a competitive solution, emphasizing its capacity to achieve comparable or superior performance in mitigating latency between controllers and switches when compared to existing algorithms. © 2024 Slovene Society Informatika. All rights reserved.

关键词： Controllers

来源：评论

学校读者我要写书评

暂无评论

Blockchain-based collaborative business process data sharing and access control

引用

Journal of Reliable Intelligent Environments 2024年第1期10卷 3-17页

作者： Sun, Xiaoxiao Wei, Yijie Shen, Hujun School of Computer Science and Technology Hangzhou Dianzi University Hangzhou310018 China

To solve the problems of large-scale data storage and reliable access control in blockchain-based collaborative business process executions with multiple participants and internet of things (IoT) devices, an innovative framework is proposed. It introduces inter-planetary file system (i.e., IPFS) to achieve off-chain storage to alleviate the cost of data storage on the chain. Meanwhile, it combines task-attribute-based access control models with smart contract technology (i.e., TABAC-SC) to support traceable, fine-grained, and dynamic data access control. A real case from hearing aid company verifies the feasibility and effectiveness of the framework in data sharing and access control during the execution of collaborative business processes. © The Author(s), under exclusive licence to Springer Nature Switzerland AG 2023.

关键词： Smart contract

来源：评论

学校读者我要写书评

暂无评论

A CSMA/CA based MAC protocol for hybrid Power-line/Visible-light communication networks:Design and analysis

引用

Digital Communications and Networks 2024年第2期10卷 481-497页

作者： Sheng Hao Huyin Zhang Fei Yang Chenghao Li Jing Wang School of Computer Science Central China Normal UniversityWuhan430079PR China Hubei Key Laboratory of intelligent Robot(Wuhan Institute of Technology) Wuhan430079PR China School of Computer Science Wuhan UniversityWuhan430079China School of Information Science and Engineering Shandong Normal UniversityJinan250000China School of Computer Science Hubei University of TechnologyWuhan430079China

Hybrid Power-line/Visible-light Communication(HPVC)network has been one of the most promising Cooperative Communication(CC)technologies for constructing Smart Home due to its superior communication reliability and hardware *** research on HPVC networks focuses on the performance analysis and optimization of the Physical(PHY)layer,where the Power Line Communication(PLC)component only serves as the backbone to provide power to light Emitting Diode(LED)*** designing a Media Access Control(MAC)protocol remains a great challenge because it allows both PLC and Visible Light Communication(VLC)components to operate data transmission,i.e.,to achieve a true HPVC network *** solve this problem,we propose a new HPC network MAC protocol(HPVC MAC)based on Carrier Sense Multiple Access/Collision Avoidance(CSMA/CA)by combining IEEE 802.15.7 and IEEE 1901 ***,we add an Additional Assistance(AA)layer to provide the channel selection strategies for sensor stations,so that they can complete data transmission on the selected channel via the specified CSMA/CA mechanism,*** on this,we give a detailed working principle of the HPVC MAC,followed by the construction of a joint analytical model for mathematicalmathematical validation of the HPVC *** the modeling process,the impacts of PHY layer settings(including channel fading types and additive noise feature),CSMA/CA mechanisms of 802.15.7 and 1901,and practical configurations(such as traffic rate,transit buffer size)are comprehensively taken into ***,we prove the proposed analytical model has the ***,through extensive simulations,we characterize the HPVC MAC performance under different system parameters and verify the correctness of the corresponding analytical model with an average error rate of 4.62%between the simulation and analytical results.

关键词： Hybrid power-line/Visible light communication (HPVC)networks MAC protocol CSMA/CA IEEE 802.15.7 IEEE 1901 Performance analysis

来源：评论

学校读者我要写书评

暂无评论

Malware Evasion Attacks Against IoT and Other Devices: An Empirical Study

引用

Tsinghua science and technology 2024年第1期29卷 127-142页

作者： Yan Xu Deqiang Li Qianmu Li Shouhuai Xu School of Computer Science and Engineering Nanjing University of Science and TechnologyNanjing 210094China School of Computer Science Nanjing University of Posts and TelecommunicationsNanjing 210023China Department of Computer Science University of Colorado Colorado SpringsColorado SpringsCO 80918USA

The Internet of Things(loT)has grown rapidly due to artificial intelligence driven edge *** enabling many new functions,edge computing devices expand the vulnerability surface and have become the target of malware ***,attackers have used advanced techniques to evade defenses by transforming their malware into functionality-preserving *** systematically analyze such evasion attacks and conduct a large-scale empirical study in this paper to evaluate their impact on *** specifically,we focus on two forms of evasion attacks:obfuscation and adversarial *** the best of our knowledge,this paper is the first to investigate and contrast the two families of evasion attacks *** apply 10 obfuscation attacks and 9 adversarial attacks to 2870 malware *** obtained findings are as follows.(1)Commercial Off-The-Shelf(COTS)malware detectors are vulnerable to evasion attacks.(2)Adversarial attacks affect COTS malware detectors slightly more effectively than obfuscated malware examples.(3)Code similarity detection approaches can be affected by obfuscated examples and are barely affected by adversarial attacks.(4)These attacks can preserve the functionality of original malware examples.

关键词： Android malware obfuscation adversarial examples

来源：评论

学校读者我要写书评

暂无评论

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案：

请选择收藏分类：

通借通还

建议与咨询 留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

时间限定

文献类型

馆藏选择

核心期刊

语言

文献类型

帮助

文字说明：

检索规则说明：

检索范例：

分类表

所选分类

限定检索结果

文献类型

馆藏范围

日期分布

学科分类号

主题

机构

作者

语言

请选择保存的检索档案： 新增检索档案 确定 取消

请选择收藏分类： 新增自定义分类 确定 取消

通借通还

建议与咨询留下您的常用邮箱和电话号码，以便我们向您反馈解决方案和替代方法

请选择保存的检索档案：

请选择收藏分类：