NOMARO: Defending against Adversarial Attacks by NOMA-Inspired Reconstruction Operation
| dc.contributor.author | Sinha A.; Dash S.P.; Puhan N.B. | en_US |
| dc.date.accessioned | 2025-02-17T10:21:15Z | |
| dc.date.issued | 2022 | |
| dc.description.abstract | In this work, a non-orthogonal multiple access (NOMA)-inspired defense method is proposed to mitigate the effect of adversarial attacks, which pose a major challenge toward deep neural networks (DNNs) in multimedia networks. The novel defense method, namely NOMA-inspired reconstruction operation (NOMARO), incorporates a copy of the input image generated by applying the untargeted adversarial attack. The copy and input images are superposed with a power allocation factor inversely proportional to the correlation between the considered images. To the best of our knowledge, this is the first communication theory based approach to design an adversarial defense method to be useful in multimedia applications. A comparative study with the existing defense techniques shows the superior performance of the proposed NOMARO defense against the state-of-the-art Carlini & Wargner (C&W) and Square attacks in white-box and black-box settings, respectively, on popular DNN models. � 2017 IEEE. | en_US |
| dc.identifier.citation | 4 | en_US |
| dc.identifier.uri | http://dx.doi.org/10.1109/LSENS.2021.3135433 | |
| dc.identifier.uri | https://idr.iitbbs.ac.in/handle/2008/4391 | |
| dc.language.iso | en | en_US |
| dc.subject | adversarial attack; adversarial defense; deep neural network (DNN); image reconstruction; multimedia networks; non-orthogonal multiple access (NOMA); Sensor signal processing | en_US |
| dc.title | NOMARO: Defending against Adversarial Attacks by NOMA-Inspired Reconstruction Operation | en_US |
| dc.type | Article | en_US |