Generating Self-Adaptive One-Pixel Attacks Against MedMNIST and COVIDx CXR-2
2023-05
Loading...
View/Download File
Persistent link to this item
Statistics
View StatisticsJournal Title
Journal ISSN
Volume Title
Title
Generating Self-Adaptive One-Pixel Attacks Against MedMNIST and COVIDx CXR-2
Authors
Published Date
2023-05
Publisher
Type
Thesis or Dissertation
Abstract
One-pixel attacks can exploit vulnerabilities in convolutional neural networks to cause targeted misclassifications. However, most attacks, like the one-pixel, do not use an adaptive approach. This research compares the effectiveness of generating one-pixel attacks with and without self-adaptation. Several datasets were attacked to compare the two methods, including CIFAR-10, MedMNIST datasets such as PathMNIST, OCTMNIST, PneumoniaMNIST, BreastMNIST, and BloodMNIST, as well as COVIDx CXR-2. This research shows that self-adaptive differential evolution did not generate better solutions against the MedMNIST and COVIDx CXR-2 datasets compared to the non-adaptive algorithm. However, we show that PathMNIST, OCTMNIST, BreastMNIST, and BloodMNIST are vulnerable to the one-pixel attacks we produce, while PneumoniaMNIST and COVIDx CXR-2 are not.
Keywords
Description
University of Minnesota M.S. thesis. May 2023. Major: Computer Science. Advisor: Richard Maclin. 1 computer file (PDF); xi, 57 pages.
Related to
Replaces
License
Series/Report Number
Funding information
Isbn identifier
Doi identifier
Previously Published Citation
Other identifiers
Suggested citation
Hnatek, Joseph. (2023). Generating Self-Adaptive One-Pixel Attacks Against MedMNIST and COVIDx CXR-2. Retrieved from the University Digital Conservancy, https://hdl.handle.net/11299/256963.
Content distributed via the University Digital Conservancy may be subject to additional license and use restrictions applied by the depositor. By using these files, users agree to the Terms of Use. Materials in the UDC may contain content that is disturbing and/or harmful. For more information, please see our statement on harmful content in digital repositories.