Abstract

To investigate the adversarial perturbations to twin support vector machines (TWSVMs) and hence increase the deviation of separating hyperplanes, we establish an optimization framework for adversarial perturbations of linear TWSVMs by taking the minimal perturbation that may cause the original label changes into account. By transforming the problem into a distance problem from point to intersecting hyperplane, we respectively obtain the explicit solutions to the model for the sample-adversarial perturbations case and for the class-universal adversarial perturbations case. The explicit solution obtained, it increases the interpretability of the conclusion and provides great convenience for calculation. Some numerical experiments are conducted on datasets MNIST and CIFAR-10 with Gaussian noise and trained SVM perturbations, which shows the efficiency of our proposed adversarial perturbations model.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Ensemble of classification models with weighted functional link network
M Tanveer ... P.N Suganthan
Applied Soft Computing Journal | VOL. 107
M Tanveer, et. al.M Tanveer ... P.N Suganthan
30 Mar 2021
Least squares twin support vector machine with Universum data for classification
Yitian Xu ... Guohui Li
International journal of systems science | VOL. 47
Yitian Xu, et. al.Yitian Xu ... Guohui Li
17 Nov 2015
Wavelet twin support vector machines based on glowworm swarm optimization
Shifei Ding ... Yu Xue
Neurocomputing | VOL. 225
Shifei Ding, et. al.Shifei Ding ... Yu Xue
16 Nov 2016
Structure Estimation of Adversarial Distributions for Enhancing Model Robustness: A Clustering-Based Approach
Bader Rasheed ... Asad Masood Khattak
Applied sciences | VOL. 13
Bader Rasheed, et. al.Bader Rasheed ... Asad Masood Khattak
05 Oct 2023
View more papers

More From: Computers & Security

Paper Title
Journal
Date
Author
A method for recovering adversarial samples with both adversarial attack forensics and recognition accuracy
Zigang Chen ... Haihua Zhu
Computers & Security | VOL. 144
Zigang Chen, et. al.Zigang Chen ... Haihua Zhu
06 Jul 2024
Adopting security practices in software development process: Security testing framework for sustainable smart cities
Yusuf Mothanna ... Mhd Saeed Sharif
Computers & Security | VOL. 144
Yusuf Mothanna, et. al.Yusuf Mothanna ... Mhd Saeed Sharif
06 Jul 2024
Combating temporal composition inference by high-order camouflaged network topology obfuscation
Xiaohui Li ... Yue Chen
Computers & Security | VOL. 144
Xiaohui Li, et. al.Xiaohui Li ... Yue Chen
05 Jul 2024
TFAN: A Task-adaptive Feature Alignment Network for few-shot website fingerprinting attacks on Tor
Qiuyun Lyu ... Zhen Wang
Computers & Security | VOL. 144
Qiuyun Lyu, et. al.Qiuyun Lyu ... Zhen Wang
04 Jul 2024
View more papers