English

Attribution of Gradient Based Adversarial Attacks for Reverse Engineering of Deceptions

Cryptography and Security 2021-03-23 v1 Computer Vision and Pattern Recognition

Abstract

Machine Learning (ML) algorithms are susceptible to adversarial attacks and deception both during training and deployment. Automatic reverse engineering of the toolchains behind these adversarial machine learning attacks will aid in recovering the tools and processes used in these attacks. In this paper, we present two techniques that support automated identification and attribution of adversarial ML attack toolchains using Co-occurrence Pixel statistics and Laplacian Residuals. Our experiments show that the proposed techniques can identify parameters used to generate adversarial samples. To the best of our knowledge, this is the first approach to attribute gradient based adversarial attacks and estimate their parameters. Source code and data is available at: https://github.com/michael-goebel/ei_red

Keywords

Cite

@article{arxiv.2103.11002,
  title  = {Attribution of Gradient Based Adversarial Attacks for Reverse Engineering of Deceptions},
  author = {Michael Goebel and Jason Bunk and Srinjoy Chattopadhyay and Lakshmanan Nataraj and Shivkumar Chandrasekaran and B. S. Manjunath},
  journal= {arXiv preprint arXiv:2103.11002},
  year   = {2021}
}
R2 v1 2026-06-24T00:22:04.896Z