English
Related papers

Related papers: PatchZero: Defending against Adversarial Patch Att…

200 papers

The adversarial patch attack against image classification models aims to inject adversarially crafted pixels within a restricted image region (i.e., a patch) for inducing model misclassification. This attack can be realized in the physical…

Computer Vision and Pattern Recognition · Computer Science 2022-04-12 Chong Xiang , Saeed Mahloujifar , Prateek Mittal

Localized adversarial patches aim to induce misclassification in machine learning models by arbitrarily modifying pixels within a restricted region of an image. Such attacks can be realized in the physical world by attaching the adversarial…

Computer Vision and Pattern Recognition · Computer Science 2021-04-01 Chong Xiang , Arjun Nitin Bhagoji , Vikash Sehwag , Prateek Mittal

Object detection plays a key role in many security-critical systems. Adversarial patch attacks, which are easy to implement in the physical world, pose a serious threat to state-of-the-art object detectors. Developing reliable defenses for…

Computer Vision and Pattern Recognition · Computer Science 2022-05-03 Jiang Liu , Alexander Levine , Chun Pong Lau , Rama Chellappa , Soheil Feizi

Adversarial patch attacks are among one of the most practical threat models against real-world computer vision systems. This paper studies certified and empirical defenses against patch attacks. We begin with a set of experiments showing…

Cryptography and Security · Computer Science 2020-09-28 Ping-Yeh Chiang , Renkun Ni , Ahmed Abdelkader , Chen Zhu , Christoph Studer , Tom Goldstein

Adversarial patch-based attacks aim to fool a neural network with an intentionally generated noise, which is concentrated in a particular region of an input image. In this work, we perform an in-depth analysis of different patch generation…

Computer Vision and Pattern Recognition · Computer Science 2022-12-23 Svetlana Pavlitskaya , Jonas Hendl , Sebastian Kleim , Leopold Müller , Fabian Wylczoch , J. Marius Zöllner

Adversarial patch attacks that craft the pixels in a confined region of the input images show their powerful attack effectiveness in physical environments even with noises or deformations. Existing certified defenses towards adversarial…

Computer Vision and Pattern Recognition · Computer Science 2021-11-05 Husheng Han , Kaidi Xu , Xing Hu , Xiaobing Chen , Ling Liang , Zidong Du , Qi Guo , Yanzhi Wang , Yunji Chen

Adversarial patch attacks pose a practical threat to deep learning models by forcing targeted misclassifications through localized perturbations, often realized in the physical world. Existing defenses typically assume prior knowledge of…

Computer Vision and Pattern Recognition · Computer Science 2025-10-07 Ayushi Mehrotra , Derek Peng , Dipkamal Bhusal , Nidhi Rastogi

Deep neural networks are successfully used in various applications, but show their vulnerability to adversarial examples. With the development of adversarial patches, the feasibility of attacks in physical scenes increases, and the defenses…

Computer Vision and Pattern Recognition · Computer Science 2023-07-27 Junwen Chen , Xingxing Wei

Physical adversarial attacks threaten to fool object detection systems, but reproducible research on the real-world effectiveness of physical patches and how to defend against them requires a publicly available benchmark dataset. We present…

Computer Vision and Pattern Recognition · Computer Science 2023-07-21 Anneliese Braunegg , Amartya Chakraborty , Michael Krumdick , Nicole Lape , Sara Leary , Keith Manville , Elizabeth Merkhofer , Laura Strickhart , Matthew Walmer

Adversarial attacks pose a significant threat to the robustness and reliability of machine learning systems, particularly in computer vision applications. This study investigates the performance of adversarial patches for the YOLO object…

Computer Vision and Pattern Recognition · Computer Science 2024-11-27 Jakob Shack , Katarina Petrovic , Olga Saukh

An adversarial patch can arbitrarily manipulate image pixels within a restricted region to induce model misclassification. The threat of this localized attack has gained significant attention because the adversary can mount a…

Computer Vision and Pattern Recognition · Computer Science 2021-04-27 Chong Xiang , Prateek Mittal

Adversarial attacks pose a significant challenge to the reliable deployment of machine learning models in EdgeAI applications, such as autonomous driving and surveillance, which rely on resource-constrained devices for real-time inference.…

Cryptography and Security · Computer Science 2026-01-05 Nandish Chattopadhyay , Abdul Basit , Amira Guesmi , Muhammad Abdullah Hanif , Bassem Ouni , Muhammad Shafique

In this paper, we demonstrate a physical adversarial patch attack against object detectors, notably the YOLOv3 detector. Unlike previous work on physical object detection attacks, which required the patch to overlap with the objects being…

Computer Vision and Pattern Recognition · Computer Science 2019-07-01 Mark Lee , Zico Kolter

The security of object detection systems has attracted increasing attention, especially when facing adversarial patch attacks. Since patch attacks change the pixels in a restricted area on objects, they are easy to implement in the physical…

Computer Vision and Pattern Recognition · Computer Science 2021-03-17 Nan Ji , YanFei Feng , Haidong Xie , Xueshuang Xiang , Naijin Liu

The widespread adoption of computer vision systems has underscored their susceptibility to adversarial attacks, particularly adversarial patch attacks on object detectors. This study evaluates defense mechanisms for the YOLOv5 model against…

Computer Vision and Pattern Recognition · Computer Science 2025-06-30 Roie Kazoom , Raz Birman , Ofer Hadar

Person detection has attracted great attention in the computer vision area and is an imperative element in human-centric computer vision. Although the predictive performances of person detection networks have been improved dramatically,…

Computer Vision and Pattern Recognition · Computer Science 2022-11-30 Youngjoon Yu , Hong Joo Lee , Hakmin Lee , Yong Man Ro

Defending against physical adversarial attacks is a rapidly growing topic in deep learning and computer vision. Prominent forms of physical adversarial attacks, such as overlaid adversarial patches and objects, share similarities with…

Cryptography and Security · Computer Science 2020-11-13 Perry Deng , Mohammad Saidur Rahman , Matthew Wright

Adversarial patches are images designed to fool otherwise well-performing neural network-based computer vision models. Although these attacks were initially conceived of and studied digitally, in that the raw pixel values of the image were…

Computer Vision and Pattern Recognition · Computer Science 2022-06-28 Gavin S. Hartnett , Li Ang Zhang , Caolionn O'Connell , Andrew J. Lohn , Jair Aguirre

We consider universal adversarial patches for faces -- small visual elements whose addition to a face image reliably destroys the performance of face detectors. Unlike previous work that mostly focused on the algorithmic design of…

Computer Vision and Pattern Recognition · Computer Science 2020-07-20 Xiao Yang , Fangyun Wei , Hongyang Zhang , Jun Zhu

Developing reliable defenses against patch attacks on object detectors has attracted increasing interest. However, we identify that existing defense evaluations lack a unified and comprehensive framework, resulting in inconsistent and…

Computer Vision and Pattern Recognition · Computer Science 2025-08-08 Junhao Zheng , Jiahao Sun , Chenhao Lin , Zhengyu Zhao , Chen Ma , Chong Zhang , Cong Wang , Qian Wang , Chao Shen
‹ Prev 1 2 3 10 Next ›