Adversarial Robustness of Distilled and Pruned Deep Learning-based Wireless Classifiers

IEEE Access

A survey of deep learning: Platforms, applications and emerging research trends

W. G. Hatcher, W. Yu

Published: 2018

Proc. GNU Radio Conf.

Radio machine learning dataset generation with GNU Radio

T. O’Shea, N. West

Published: 2016

Proc. IEEE Int. Symp. Dyn. Spectr. Access Netw. (DySPAN)

Deep architectures for modulation recognition

N. E. West, T. O’shea

Published: 2017

IEEE Wireless Commun. Letts.

Sensing and classification using massive MIMO: A tensor decomposition-based approach

B. R. Manoj, G. Tian, S. Gunnarsson, F. Tufvesson, E. G. Larsson

Published: 2021

Proc. Asilomar Conf. on Signals, Systs., and Computers

Deep learning power allocation in massive MIMO

L. Sanguinetti, A. Zappone, M. Debbah

Published: 2018

IEEE Network

Integrating sensing and communications for ubiquitous IoT: Applications, trends, and challenges

Y. Cui, F. Liu, X. Jing, J. Mu

Published: 2021

A survey on deep neural network compression: Challenges, overview, and solutions

R. Mishra, H. P. Gupta, T. Dutta

Published: 2020

Proc. of ACM Workshop on Wireless Security and Machine Learning

Threat is in the air: Machine learning for wireless network applications

L. Pajola, L. Pasa, M. Conti

Published: 2019

IEEE Trans. Neural Netw. Learn. Syst.

Adversarial examples: Attacks and defenses for deep learning

X. Yuan, P. He, Q. Zhu, X. Li

Published: 2019

IEEE Wireless Commun. Letts.

Adversarial attacks on deep-learning based radio signal classification

M. Sadeghi, E. G. Larsson

Published: 2018

IET communications

Survey of automatic modulation classification techniques: Classical approaches and new trends

O. A. Dobre, A. Abdi, Y. Bar-Ness, W. Su

Published: 2007

IEEE Trans. Veh. Technol.

Automatic modulation classification using CNN-LSTM based dual-stream structure

Z. Zhang

Published: 2020

Proc. IEEE Global Communications Conference (GLOBECOM)

Mcformer: A transformer based deep neural network for automatic modulation classification

S. Hamidi-Rad, S. Jain

Published: 2021

Proc. ACM SIGSAC Conf. Comput. Commun. Secur.

Robust adversarial attacks against DNN-based wireless communication systems

A. Bahramali, M. Nasr, A. Houmansadr, D. Goeckel, D. Towsley

Published: 2021

Proc. IEEE 23rd Int. Workshop Signal Process. Adv. Wireless Commun.

Toward robust networks against adversarial attacks for radio signal modulation classification

B. R. Manoj, P. M. Santos, M. Sadeghi, E. G. Larsson

Published: 2022

SafeAMC: Adversarial training for robust modulation recognition models

J. Maroto, G. Bovet, P. Frossard

Published: 2021

IEEE Commun. Letts.

GAN against adversarial attacks in radio signal classification

Z. Wang, W. Liu, H.-M. Wang

Published: 2022

arxiv

Cited by 1

IEEE/CVF Conference on Computer Vision and Pattern Recognition (CVPR)

Boosting Adversarial Attacks with Momentum

Yinpeng Dong, Fangzhou Liao, Tianyu Pang, Hang Su, Jun Zhu, Xiaolin Hu, Jianguo Li

Published: 10.17.2017

Deep neural networks are vulnerable to adversarial examples, which poses security concerns on these algorithms due to the potentially severe consequences. Adversarial attacks serve as an important surrogate to evaluate the robustness of deep learning models before they are deployed. However, most of existing adversarial attacks can only fool a black-box model with a low success rate. To address this issue, we propose a broad class of momentum-based iterative algorithms to boost adversarial attacks. By integrating the momentum term into the iterative process for attacks, our methods can stabilize update directions and escape from poor local maxima during the iterations, resulting in more transferable adversarial examples. To further improve the success rates for black-box attacks, we apply momentum iterative algorithms to an ensemble of models, and show that the adversarially trained models with a strong defense ability are also vulnerable to our black-box attacks. We hope that the proposed methods will serve as a benchmark for evaluating the robustness of various deep models and defense methods. With this method, we won the first places in NIPS 2017 Non-targeted Adversarial Attack and Targeted Adversarial Attack competitions.

Certified Robustness Robustness Improvement Method Adversarial Example Detection

Computer Science

Distilling the knowledge in a neural network

G. Hinton, O. Vinyals, J. Dean

Published: 2015

Proc. IEEE Conf. on Comp. Vis. and Patt. Recog. (CVPR)

Knowledge distillation: A good teacher is patient and consistent

L. Beyer

Published: 2022

Proc. Adv. Neural. Inf. Process. Syst. (NIPS)

Net-trim: Convex pruning of deep neural networks with performance guarantee

A. Aghasi

Published: 2017