Daffodil International University, Dhaka, Bangladesh
DOI
10.1063/5.0127810
Abstract
Neural networks have flourished in heterogeneous industries to automate tasks that evince it being an utmost priority for the adopters. The adversarial attack poses a threat for Deep Neural Networks and their variants. This attack is designed such that it adds adversarial noise to an image. Several such techniques can be found in contemporary research capable of corrupting neural networks leading to misclassification. Various defense mechanisms have been purported and built with Deep Neural Networks to defend and increase the robustness of the primary classifier neural network model. However, models accommodating high-resolution image data and pre-trained neural network classifiers are sparse. This research develops a model that can be integrated with any existing trained neural network, establishing a generic line of defense against adversarial attacks. The proposed model detects highly distorted images, repudiating to avoid misclassification. Additionally, this work is intended to work with high-resolution adversarial image samples. The ADDA-Adv. tool restores the adversarial samples and provides better accuracy as compared to recent works.
