Evasion Attack STeganography: Turning Vulnerability Of Machine Learning ToAdversarial Attacks Into A Real-world Application

Ghamizi, Salah; Cordy, Maxime; Papadakis, Mike; Le Traon, Yves

Référence : Evasion Attack STeganography: Turning Vulnerability Of Machine Learning ToAdversarial...


	Type de document :	Périodiques scientifiques : Article
	Discipline(s) :	Ingénierie, informatique & technologie : Sciences informatiques
	Priorité de recherche :	Security, Reliability and Trust
	Pour citer cette référence :	http://hdl.handle.net/10993/47832

Titre :	Evasion Attack STeganography: Turning Vulnerability Of Machine Learning ToAdversarial Attacks Into A Real-world Application
Langue du document :	anglais
Auteur, co-auteur :	Ghamizi, Salah [University of Luxembourg > Faculty of Science, Technology and Medicine (FSTM) > Department of Computer Science (DCS) >]
	Cordy, Maxime [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > SerVal >]
	Papadakis, Mike [University of Luxembourg > Faculty of Science, Technology and Medicine (FSTM) > Department of Computer Science (DCS) >]
	Le Traon, Yves [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > SerVal >]
Date de publication :	11-oct-2021
Titre du périodique :	Proceedings of International Conference on Computer Vision 2021
Peer reviewed :	Oui
Manifestation/périodique à portée :	Internationale
Mots-clés :	[en] Adversarial Attacks ; Steganography ; Watermarking
Résumé :	[en] Evasion Attacks have been commonly seen as a weakness of Deep Neural Networks. In this paper, we flip the paradigm and envision this vulnerability as a useful application. We propose EAST, a new steganography and watermarking technique based on multi-label targeted evasion attacks. Our results confirm that our embedding is elusive; it not only passes unnoticed by humans, steganalysis methods, and machine-learning detectors. In addition, our embedding is resilient to soft and aggressive image tampering (87% recovery rate under jpeg compression). EAST outperforms existing deep-learning-based steganography approaches with images that are 70% denser and 73% more robust and supports multiple datasets and architectures.
Public cible :	Chercheurs
URL permanente :	http://hdl.handle.net/10993/47832

Document(s) associé(s) à cette référence :

Document(s) en texte intégral :

	Fichier	Commentaire	Version	Taille	Accès
Accès limité	EAST_ICCV_CameraReady.pdf		Postprint auteur	1.45 MB	Demander un tiré à part

Tous les documents dans ORBi^lu sont protégés par une licence d'utilisation.

Bibliothèque de l'Université du Luxembourg | Contact | Mentions légales