Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk)

William Aiken; Hyoungshick Kim

doi:10.1109/ICSSA45270.2018.00028

Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk)

William Aiken
, Hyoungshick Kim

Sungkyunkwan University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Reinforcement learning (RL) algorithms learn and explore nearly any state any number of times in their environment, but minute adversarial attacks cripple these agents. In this work, we define our threat model against RL agents as such: Adversarial agents introduce small permutations to the input data via black-box models with the goal of reducing the optimality of the agent. We focus on pre-processing adversarial images before they enter the network to reconstruct the ground-truth images.

Original language	English
Title of host publication	Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	81
Number of pages	1
ISBN (Electronic)	9781538692103
DOIs	https://doi.org/10.1109/ICSSA45270.2018.00028
State	Published - Jul 2018
Externally published	Yes
Event	4th International Conference on Software Security and Assurance, ICSSA 2018 - Seoul, Korea, Republic of Duration: 26 Jul 2018 → 27 Jul 2018

Publication series

Name	Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018

Conference

Conference	4th International Conference on Software Security and Assurance, ICSSA 2018
Country/Territory	Korea, Republic of
City	Seoul
Period	26/07/18 → 27/07/18

Keywords

Adversarial examples
Autoencoders
Reinforcement learning

Access to Document

10.1109/ICSSA45270.2018.00028

Cite this

Aiken, W., & Kim, H. (2018). Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk). In Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018 (pp. 81). Article 9092100 (Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICSSA45270.2018.00028

Aiken, William ; Kim, Hyoungshick. / Ignore the noise : Using autoencoders against adversarial attacks in reinforcement learning (lightning talk). Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018. Institute of Electrical and Electronics Engineers Inc., 2018. pp. 81 (Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018).

@inproceedings{c4b3ae68bd224a76851a0c4ea3e7f23c,

title = "Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk)",

abstract = "Reinforcement learning (RL) algorithms learn and explore nearly any state any number of times in their environment, but minute adversarial attacks cripple these agents. In this work, we define our threat model against RL agents as such: Adversarial agents introduce small permutations to the input data via black-box models with the goal of reducing the optimality of the agent. We focus on pre-processing adversarial images before they enter the network to reconstruct the ground-truth images.",

keywords = "Adversarial examples, Autoencoders, Reinforcement learning",

author = "William Aiken and Hyoungshick Kim",

note = "Publisher Copyright: {\textcopyright} 2018 IEEE.; 4th International Conference on Software Security and Assurance, ICSSA 2018 ; Conference date: 26-07-2018 Through 27-07-2018",

year = "2018",

month = jul,

doi = "10.1109/ICSSA45270.2018.00028",

language = "English",

series = "Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "81",

booktitle = "Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018",

}

Aiken, W & Kim, H 2018, Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk). in Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018., 9092100, Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018, Institute of Electrical and Electronics Engineers Inc., pp. 81, 4th International Conference on Software Security and Assurance, ICSSA 2018, Seoul, Korea, Republic of, 26/07/18. https://doi.org/10.1109/ICSSA45270.2018.00028

Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk). / Aiken, William; Kim, Hyoungshick.
Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018. Institute of Electrical and Electronics Engineers Inc., 2018. p. 81 9092100 (Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Ignore the noise

T2 - 4th International Conference on Software Security and Assurance, ICSSA 2018

AU - Aiken, William

AU - Kim, Hyoungshick

PY - 2018/7

Y1 - 2018/7

N2 - Reinforcement learning (RL) algorithms learn and explore nearly any state any number of times in their environment, but minute adversarial attacks cripple these agents. In this work, we define our threat model against RL agents as such: Adversarial agents introduce small permutations to the input data via black-box models with the goal of reducing the optimality of the agent. We focus on pre-processing adversarial images before they enter the network to reconstruct the ground-truth images.

AB - Reinforcement learning (RL) algorithms learn and explore nearly any state any number of times in their environment, but minute adversarial attacks cripple these agents. In this work, we define our threat model against RL agents as such: Adversarial agents introduce small permutations to the input data via black-box models with the goal of reducing the optimality of the agent. We focus on pre-processing adversarial images before they enter the network to reconstruct the ground-truth images.

KW - Adversarial examples

KW - Autoencoders

KW - Reinforcement learning

UR - https://www.scopus.com/pages/publications/85085602652

U2 - 10.1109/ICSSA45270.2018.00028

DO - 10.1109/ICSSA45270.2018.00028

M3 - Conference contribution

AN - SCOPUS:85085602652

T3 - Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018

SP - 81

BT - Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 26 July 2018 through 27 July 2018

ER -

Aiken W, Kim H. Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk). In Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018. Institute of Electrical and Electronics Engineers Inc. 2018. p. 81. 9092100. (Proceedings - 2018 4th International Conference on Software Security and Assurance, ICSSA 2018). doi: 10.1109/ICSSA45270.2018.00028

Ignore the noise: Using autoencoders against adversarial attacks in reinforcement learning (lightning talk)

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this