TY - CHAP
T1 - One-Pixel Attack
T2 - Understanding and Improving Deep Neural Networks with Evolutionary Computation
AU - Vargas, Danilo Vasconcellos
N1 - Publisher Copyright:
© 2020, Springer Nature Singapore Pte Ltd.
PY - 2020
Y1 - 2020
N2 - Recently, the one-pixel attack showed that deep neural networks (DNNs) can misclassify by changing only one pixel. Beyond a vulnerability, by demonstrating how easy it is to cause a change in classes, it revealed that DNNs are not learning the expected high-level features but rather less robust ones. In this chapter, recent findings further confirming the affirmations above will be presented together with an overview of current attacks and defenses. Moreover, it will be shown the promises of evolutionary computation as both a way to investigate the robustness of DNNs as well as a way to improve their robustness through hybrid systems, evolution of architectures, among others.
AB - Recently, the one-pixel attack showed that deep neural networks (DNNs) can misclassify by changing only one pixel. Beyond a vulnerability, by demonstrating how easy it is to cause a change in classes, it revealed that DNNs are not learning the expected high-level features but rather less robust ones. In this chapter, recent findings further confirming the affirmations above will be presented together with an overview of current attacks and defenses. Moreover, it will be shown the promises of evolutionary computation as both a way to investigate the robustness of DNNs as well as a way to improve their robustness through hybrid systems, evolution of architectures, among others.
UR - http://www.scopus.com/inward/record.url?scp=85086095080&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85086095080&partnerID=8YFLogxK
U2 - 10.1007/978-981-15-3685-4_15
DO - 10.1007/978-981-15-3685-4_15
M3 - Chapter
AN - SCOPUS:85086095080
T3 - Natural Computing Series
SP - 401
EP - 430
BT - Natural Computing Series
PB - Springer
ER -