Abstract
Once the classification neural network is attacked by adversarial attack, the classification accuracy will drop significantly. Therefore, the combination of wavelet transform and ResNet18 network model, and then linear interpolation adversarial training is used to train the defense model to improve its classification accuracy. Before training the network, the samples are linearly interpolated to obtain the interpolated samples and interpolation labels, and after the image features are convolved and normalized layers, the wavelet transform is applied to downsample to help filter out the high-frequency information, and finally the interpolation loss is obtained to update the network parameters. The trained model is tested using multiple adversarial attack methods on the CIFAR-10 and SVHN datasets, and the experimental results show that the proposed method can show excellent defense performance under strong attacks, and improve robustness and training time.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
