Targeted Adversarial Examples for Black Box Audio Systems

May 20, 2018 ยท Declared Dead ยท ๐Ÿ› 2019 IEEE Security and Privacy Workshops (SPW)

๐Ÿ‘ป CAUSE OF DEATH: Ghosted
No code link whatsoever

"No code URL or promise found in abstract"

Evidence collected by the PWNC Scanner

Authors Rohan Taori, Amog Kamsetty, Brenton Chu, Nikita Vemuri arXiv ID 1805.07820 Category cs.LG: Machine Learning Cross-listed cs.CR, cs.SD, eess.AS, stat.ML Citations 198 Venue 2019 IEEE Security and Privacy Workshops (SPW) Last Checked 4 months ago
Abstract
The application of deep recurrent networks to audio transcription has led to impressive gains in automatic speech recognition (ASR) systems. Many have demonstrated that small adversarial perturbations can fool deep neural networks into incorrectly predicting a specified target with high confidence. Current work on fooling ASR systems have focused on white-box attacks, in which the model architecture and parameters are known. In this paper, we adopt a black-box approach to adversarial generation, combining the approaches of both genetic algorithms and gradient estimation to solve the task. We achieve a 89.25% targeted attack similarity after 3000 generations while maintaining 94.6% audio file similarity.
Community shame:
Not yet rated
๐Ÿ“„ View on arXiv ๐ŸŒ View on ar5iv ๐Ÿ“‘ PDF ๐ŸŽ‰ Report Code Found
Community Contributions

Found the code? Know the venue? Think something is wrong? Let us know!

๐Ÿ“œ Similar Papers

In the same crypt โ€” Machine Learning

Died the same way โ€” ๐Ÿ‘ป Ghosted