基于多变量时序数据的对抗攻击与防御方法

Kun Liu; En Zeng; Bohan Liu; Junda Li; Jiangrong Li

doi:10.11936/bjutxb2022090028

基于多变量时序数据的对抗攻击与防御方法

Translated title of the contribution: Adversarial Attack and Defense Method Based on Multivariable Time Series Data

Kun Liu, En Zeng, Bohan Liu, Junda Li, Jiangrong Li

School of Automation

Research output: Contribution to journal › Article › peer-review

Abstract

To ensure the security of the attack detection model of time series data, an adversarial attack and adversarial defense method based on multivariate time series data was proposed. First, the escape attack implemented in the test phase was designed for the autoencoder-based attack detection model. Second, according to the designed adversarial attack samples, the adversarial defense strategy based on the Jacobian regularization method was proposed. The Jacobian matrix in the calculation model training process was taken as the regular term in the objective function to improve the defense capability of the deep learning model. The attack effects of the proposed attack methods and the defense effect of the proposed adversarial defense method were verified on the BATADAL dataset of industrial water treatment.

Translated title of the contribution	Adversarial Attack and Defense Method Based on Multivariable Time Series Data
Original language	Chinese (Traditional)
Pages (from-to)	415-423
Number of pages	9
Journal	Beijing Gongye Daxue Xuebao / Journal of Beijing University of Technology
Volume	49
Issue number	4
DOIs	https://doi.org/10.11936/bjutxb2022090028
Publication status	Published - Apr 2023

Access to Document

10.11936/bjutxb2022090028

Cite this

@article{3ad2eb870bbc435190d420269a763f3c,

title = "基于多变量时序数据的对抗攻击与防御方法",

abstract = "To ensure the security of the attack detection model of time series data, an adversarial attack and adversarial defense method based on multivariate time series data was proposed. First, the escape attack implemented in the test phase was designed for the autoencoder-based attack detection model. Second, according to the designed adversarial attack samples, the adversarial defense strategy based on the Jacobian regularization method was proposed. The Jacobian matrix in the calculation model training process was taken as the regular term in the objective function to improve the defense capability of the deep learning model. The attack effects of the proposed attack methods and the defense effect of the proposed adversarial defense method were verified on the BATADAL dataset of industrial water treatment.",

keywords = "Jacobian regularization, adversarial attack, adversarial defense, attack detection, autoencoder, multivariate time series",

author = "Kun Liu and En Zeng and Bohan Liu and Junda Li and Jiangrong Li",

year = "2023",

month = apr,

doi = "10.11936/bjutxb2022090028",

language = "繁体中文",

volume = "49",

pages = "415--423",

journal = "Beijing Gongye Daxue Xuebao / Journal of Beijing University of Technology",

issn = "0254-0037",

publisher = "Beijing University of Technology",

number = "4",

}

TY - JOUR

T1 - 基于多变量时序数据的对抗攻击与防御方法

AU - Liu, Kun

AU - Zeng, En

AU - Liu, Bohan

AU - Li, Junda

AU - Li, Jiangrong

PY - 2023/4

Y1 - 2023/4

N2 - To ensure the security of the attack detection model of time series data, an adversarial attack and adversarial defense method based on multivariate time series data was proposed. First, the escape attack implemented in the test phase was designed for the autoencoder-based attack detection model. Second, according to the designed adversarial attack samples, the adversarial defense strategy based on the Jacobian regularization method was proposed. The Jacobian matrix in the calculation model training process was taken as the regular term in the objective function to improve the defense capability of the deep learning model. The attack effects of the proposed attack methods and the defense effect of the proposed adversarial defense method were verified on the BATADAL dataset of industrial water treatment.

AB - To ensure the security of the attack detection model of time series data, an adversarial attack and adversarial defense method based on multivariate time series data was proposed. First, the escape attack implemented in the test phase was designed for the autoencoder-based attack detection model. Second, according to the designed adversarial attack samples, the adversarial defense strategy based on the Jacobian regularization method was proposed. The Jacobian matrix in the calculation model training process was taken as the regular term in the objective function to improve the defense capability of the deep learning model. The attack effects of the proposed attack methods and the defense effect of the proposed adversarial defense method were verified on the BATADAL dataset of industrial water treatment.

KW - Jacobian regularization

KW - adversarial attack

KW - adversarial defense

KW - attack detection

KW - autoencoder

KW - multivariate time series

UR - http://www.scopus.com/inward/record.url?scp=85153099162&partnerID=8YFLogxK

U2 - 10.11936/bjutxb2022090028

DO - 10.11936/bjutxb2022090028

M3 - 文章

AN - SCOPUS:85153099162

SN - 0254-0037

VL - 49

SP - 415

EP - 423

JO - Beijing Gongye Daxue Xuebao / Journal of Beijing University of Technology

JF - Beijing Gongye Daxue Xuebao / Journal of Beijing University of Technology

IS - 4

ER -

基于多变量时序数据的对抗攻击与防御方法

Abstract

Access to Document

Other files and links

Fingerprint

Cite this