Centrala begrepp
Enhancing visual quality and transferability of adversarial face examples through Adversarial Restoration.
Sammanfattning
The content discusses a novel approach, Adversarial Restoration (AdvRestore), to improve the visual quality and transferability of adversarial face examples. It introduces a Restoration Latent Diffusion Model (RLDM) for face restoration, enhancing both properties simultaneously. The methodology involves training RLDM, generating adversarial perturbations, and improving transferability through sibling tasks. Experimental results validate the effectiveness of AdvRestore in enhancing crafted adversarial face examples.
-
Introduction
- Face recognition models' susceptibility to adversarial attacks.
- Need to enhance performance of adversarial face examples.
-
Methodology
- Crafting adversarial face examples using surrogate models.
- Importance of transferability and visual quality in attacks.
-
Experiments
- Evaluation metrics: SSIM, PSNR, LPIPS, VQS.
- Visual quality improvement with AdvRestore.
-
Relation to Prior Work
- Building upon Sibling-Attack concept for improved transferability.
-
Conclusion
- Introduction of AdvRestore for enhancing visual quality and transferability simultaneously.
Statistik
"Our experimental results validate the effectiveness of the proposed attack method."
"The loss function for crafting the adversarial face examples using the surrogate model F can be expressed as..."
Citat
"To address this issue, we propose a novel adversarial attack technique known as Adversarial Restoration (AdvRestore)."
"Our proposed method aims to enhance both the visual quality and transferability of crafted adversarial face examples."