Physical world assistive signals for deep neural network classifiers -- neither defense nor attack

no code implementations3 May 2021 Camilo Pestana, Wei Liu, David Glance, Robyn Owens, Ajmal Mian

We discuss how we can exploit these insights to re-think, or avoid, some patterns that might contribute to, or degrade, the detectability of objects in the real-world.

Defense-friendly Images in Adversarial Attacks: Dataset and Metrics for Perturbation Difficulty

1 code implementation5 Nov 2020 Camilo Pestana, Wei Liu, David Glance, Ajmal Mian

We propose three metrics to determine the proportion of robust images in a dataset and provide scoring to determine the dataset bias.

Adversarial Attack Benchmarking

Adversarial Perturbations Prevail in the Y-Channel of the YCbCr Color Space

1 code implementation25 Feb 2020 Camilo Pestana, Naveed Akhtar, Wei Liu, David Glance, Ajmal Mian

Our results show that our approach achieves the best balance between defence against adversarial attacks such as FGSM, PGD and DDN and maintaining the original accuracies of VGG-16, ResNet50 and DenseNet121 on clean images.

