@inproceedings{e4f4ee3c50ad45db91a831105a350414,
title = "Multi-Label Adversarial Attack Based on Label Correlation",
abstract = "The vulnerabilities of multi-label models concerning adversarial attacks have been paid much attention. In the multi-label model, the labels are not independent of each other. However, the existing multi-label adversarial attack works do not adequately consider label correlations, thus unable to cost the most minor disturbance while ensuring the attack success rate. To address this issue, we develop a method that uses the label correlation. For targeted attacks, we build a label correlation matrix using cosine distance and select the label with the highest correlation score with the attacked label as the target label. For untargeted attacks, we choose the attacked label with the lowest confidence because of the label correlation. The proposed method can achieve low attack costs with high success rates, as demonstrated in experimental results.",
keywords = "Multi-label, adversarial example, label correlation, neural network",
author = "Mingzhi Ma and Weijie Zheng and Wanli Lv and Lu Ren and Hang Su and Zhaoxia Yin",
note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 30th IEEE International Conference on Image Processing, ICIP 2023 ; Conference date: 08-10-2023 Through 11-10-2023",
year = "2023",
doi = "10.1109/ICIP49359.2023.10222512",
language = "英语",
series = "Proceedings - International Conference on Image Processing, ICIP",
publisher = "IEEE Computer Society",
pages = "2050--2054",
booktitle = "2023 IEEE International Conference on Image Processing, ICIP 2023 - Proceedings",
address = "美国",
}