A Minimal-Distance-Based Framework for Assessing Adversarial Attack Transferability

doi:10.12060/j.issn.1000-7202.2024.06.05

Journal of Astronautic Metrology and Measurement ›› 2024, Vol. 44 ›› Issue (6): 42-55.doi: 10.12060/j.issn.1000-7202.2024.06.05

Previous Articles Next Articles

A Minimal-Distance-Based Framework for Assessing Adversarial Attack Transferability

WU Jiaping，DANG Chen，LUO Zhicong，KANG Jian，JIANG Xiaoyue，XIA Zhaoqiang，FENG Xiaoyi

Northwestern Polytechnical University,Xi’an 710068,China

Online:2024-12-15 Published:2025-01-21

Abstract

Abstract: Adversarial robustness is a crucial component of evaluating the security of intelligent models.Currently,research on transfer attacks is primarily limited to fixed-budget attacks,with a lack of studies focusing on minimal-norm attacks.Furthermore,there is no unified and comprehensive evaluation framework for assessing transfer attacks or measuring attack transferability,which poses significant challenges to the security assessment of intelligent models.To address these issues,a minimal-distance-based framework for assessing adversarial attack transferability is proposed.By the framework，a search method is used to identify the minimum budget for successful transfer of attacks firstly.Then,the transferability of different attacks are compared using an overall score that combines perturbation size and attack success rate,as well as an optimality measure.The overall score reflects the varying degrees of transferability among different attacks and allows for comparison of target models' robustness against transfer attacks.The optimality measure quantifies the proximity of an attack to an optimal solution.Texting results demonstrate that our method outperforms existing state-of-the-art approaches and yields several empirical conclusions.

Key words: Intelligent model security, Adversarial examples, Transferability, Robustness

CLC Number:

V19，TP309.2

WU Jiaping, DANG Chen, LUO Zhicong, KANG Jian, JIANG Xiaoyue, XIA Zhaoqiang, FENG Xiaoyi. A Minimal-Distance-Based Framework for Assessing Adversarial Attack Transferability[J]. Journal of Astronautic Metrology and Measurement, 2024, 44(6): 42-55.

A Minimal-Distance-Based Framework for Assessing Adversarial Attack Transferability

PDF (PC)

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 1

Recommended Articles

Metrics

Comments