Minimum-Norm Adversarial Examples on KNN and KNN-Based Models

被引:5
|
作者
Sitawarin, Chawin [1 ]
Wagner, David [1 ]
机构
[1] Univ Calif Berkeley, EECS Dept, Berkeley, CA 94720 USA
来源
2020 IEEE SYMPOSIUM ON SECURITY AND PRIVACY WORKSHOPS (SPW 2020) | 2020年
关键词
D O I
10.1109/SPW50608.2020.00023
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
We study the robustness against adversarial examples of kNN classifiers and classifiers that combine kNN with neural networks. The main difficulty lies in the fact that finding an optimal attack on kNN is intractable for typical datasets. In this work, we propose a gradient-based attack on kNN and kNN-based defenses, inspired by the previous work by Sitawarin & Wagner [1]. We demonstrate that our attack outperforms their method on all of the models we tested with only a minimal increase in the computation time. The attack also beats the state-of-the-art attack [2] on kNN when k > 1 using less than 1% of its running time. We hope that this attack can be used as a new baseline for evaluating the robustness of kNN and its variants.
引用
收藏
页码:34 / 40
页数:7
相关论文
共 50 条
  • [1] Effects of CuO on KNN-based ceramics
    Zhang, Yang
    Li, Mingling
    Li, Honglin
    Zhai, Jiwei
    INORGANIC CHEMISTRY COMMUNICATIONS, 2020, 122
  • [2] Dimensional Data KNN-Based Imputation
    Yang, Yuzhao
    Darmont, Jerome
    Ravat, Franck
    Teste, Olivier
    ADVANCES IN DATABASES AND INFORMATION SYSTEMS, ADBIS 2022, 2022, 13389 : 315 - 329
  • [3] CW-kNN: An Efficient kNN-based Model for Imbalanced Dataset Classification
    Xiang, Yi
    Cao, ZhongFeng
    Yao, ShaoWen
    He, Jing
    PROCEEDINGS OF THE 4TH INTERNATIONAL CONFERENCE ON COMMUNICATION AND INFORMATION PROCESSING (ICCIP 2018), 2018, : 7 - 11
  • [4] A new improved KNN-based recommender system
    Payam Bahrani
    Behrouz Minaei-Bidgoli
    Hamid Parvin
    Mitra Mirzarezaee
    Ahmad Keshavarz
    The Journal of Supercomputing, 2024, 80 : 800 - 834
  • [5] A new improved KNN-based recommender system
    Bahrani, Payam
    Minaei-Bidgoli, Behrouz
    Parvin, Hamid
    Mirzarezaee, Mitra
    Keshavarz, Ahmad
    JOURNAL OF SUPERCOMPUTING, 2024, 80 (01): : 800 - 834
  • [6] KNN-based ensemble selection for imbalance learning
    Zheng, Guirong
    Wu, Chang-An
    Guo, Huaping
    International Journal of Computational Systems Engineering, 2019, 5 (02): : 82 - 96
  • [7] Fast Minimum-norm Adversarial Attacks through Adaptive Norm Constraints
    Pintor, Maura
    Roli, Fabio
    Brendel, Wieland
    Biggio, Battista
    ADVANCES IN NEURAL INFORMATION PROCESSING SYSTEMS 34 (NEURIPS 2021), 2021, 34
  • [8] KNN-LC: Classification in Unbalanced Datasets using a KNN-Based Algorithm and Local Centralities
    Jaafor, Omar
    Birregah, Babiga
    DATA-DRIVEN MODELING FOR SUSTAINABLE ENGINEERING, ICEASSM 2017, 2020, 72 : 85 - 97
  • [9] KNN-based mean shift algorithm for image segmentation
    Li, Yanling
    Shen, Yi
    Huazhong Keji Daxue Xuebao (Ziran Kexue Ban)/Journal of Huazhong University of Science and Technology (Natural Science Edition), 2009, 37 (10): : 68 - 71
  • [10] KNN-BASED COLOR LINE MODEL FOR IMAGE MATTING
    Jin, Meiguang
    Kim, Byoung-Kwang
    Song, Woo-Jin
    2013 20TH IEEE INTERNATIONAL CONFERENCE ON IMAGE PROCESSING (ICIP 2013), 2013, : 2480 - 2483
12345