Cited 0 time in
Towards Certifiably Robust Face Recognition
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Paik, Seunghun | - |
| dc.contributor.author | Kim, Dongsoo | - |
| dc.contributor.author | Hwang, Chanwoo | - |
| dc.contributor.author | Kim, Sunpill | - |
| dc.contributor.author | Seo, Jae Hong | - |
| dc.date.accessioned | 2024-12-18T02:30:19Z | - |
| dc.date.available | 2024-12-18T02:30:19Z | - |
| dc.date.issued | 2024-11 | - |
| dc.identifier.issn | 0302-9743 | - |
| dc.identifier.issn | 1611-3349 | - |
| dc.identifier.uri | https://scholarworks.bwise.kr/hanyang/handle/2021.sw.hanyang/202202 | - |
| dc.description.abstract | Adversarial perturbation is a severe threat to deep learning-based systems such as classification and recognition because it makes the system output wrong answers. Designing robust systems against adversarial perturbation in a certifiable manner is important, especially for security-related systems such as face recognition. However, most studies for certifiable robustness are about classifiers, which have quite different characteristics from recognition systems for verification; the former is used in the closed-set scenario, whereas the latter is used in the open-set scenario. In this study, we show that, similar to the image classifications, 1-Lipschitz condition is sufficient for certifiable robustness of the face recognition system. Furthermore, for the given pair of facial images, we derive the upper bound of adversarial perturbation where 1-Lipschitz face recognition system remains robust. At last, we find that this theoretical result should be carefully applied in practice; Applying a training method to typical face recognition systems results in a very small upper bound for adversarial perturbation. We address this by proposing an alternative training method to attain a certifiably robust face recognition system with large upper bounds. All these theoretical results are supported by experiments on proof-of-concept implementation. We released our source code to facilitate further study, which is available at github. | - |
| dc.format.extent | 19 | - |
| dc.language | 영어 | - |
| dc.language.iso | ENG | - |
| dc.publisher | Springer Verlag | - |
| dc.title | Towards Certifiably Robust Face Recognition | - |
| dc.type | Article | - |
| dc.publisher.location | 미국 | - |
| dc.identifier.doi | 10.1007/978-3-031-73013-9_9 | - |
| dc.identifier.scopusid | 2-s2.0-85211212356 | - |
| dc.identifier.wosid | 001416939500009 | - |
| dc.identifier.bibliographicCitation | Lecture Notes in Computer Science, v.15143, pp 143 - 161 | - |
| dc.citation.title | Lecture Notes in Computer Science | - |
| dc.citation.volume | 15143 | - |
| dc.citation.startPage | 143 | - |
| dc.citation.endPage | 161 | - |
| dc.type.docType | Proceedings Paper | - |
| dc.description.isOpenAccess | N | - |
| dc.description.journalRegisteredClass | scopus | - |
| dc.relation.journalResearchArea | Computer Science | - |
| dc.relation.journalWebOfScienceCategory | Computer Science, Artificial Intelligence | - |
| dc.relation.journalWebOfScienceCategory | Computer Science, Interdisciplinary Applications | - |
| dc.relation.journalWebOfScienceCategory | Computer Science, Theory & Methods | - |
| dc.subject.keywordPlus | Deep learning | - |
| dc.subject.keywordPlus | Face recognition | - |
| dc.subject.keywordPlus | Robustness (control systems) | - |
| dc.subject.keywordAuthor | Certifiable Robustness | - |
| dc.subject.keywordAuthor | Face Recognition | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
222, Wangsimni-ro, Seongdong-gu, Seoul, 04763, Korea+82-2-2220-1366
COPYRIGHT © 2024 HANYANG UNIVERSITY.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.
