Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers

Mohammad Javad Askarizadeh; Jorge Castro-Godinez; Ebrahim Farahmand; Ali Mahani; Laura Cabrera-Quiros; Carlos Salazar-Garcia

doi:10.1109/CONCAPAN63470.2024.10933879

Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers

Mohammad Javad Askarizadeh
, Jorge Castro-Godinez
, Ebrahim Farahmand
, Ali Mahani
, Laura Cabrera-Quiros
, Carlos Salazar-Garcia

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Deep Neural Networks (DNNs) play an important role in advancing today's technology by performing machine learning tasks such as image, video, speech, and text analysis, significantly improving real-world applications such as healthcare and autonomous driving. However, their high computational complexity and vulnerability to adversarial attacks are ongoing challenges. In this work, approximate multipliers are introduced in DNN computations, instead of accurate ones, to explore its robustness improvement against adversarial attacks. By uniformly replacing accurate multipliers for state-of-the-art approximate ones in DNN layer models, we explore the DNNs' robustness against various adversarial attacks in a feasible time. Results show up 10% robust accuracy improvement for up to to 7% accuracy drop due to approximations when no attack is present.

Original language	English
Title of host publication	2024 IEEE 42nd Central America and Panama Convention, CONCAPAN 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
Edition	2024
ISBN (Electronic)	9798350366723
DOIs	https://doi.org/10.1109/CONCAPAN63470.2024.10933879
State	Published - 2024
Event	42nd IEEE Central America and Panama Convention, CONCAPAN 2024 - San Jose, Costa Rica Duration: 27 Nov 2024 → 29 Nov 2024

Conference

Conference	42nd IEEE Central America and Panama Convention, CONCAPAN 2024
Country/Territory	Costa Rica
City	San Jose
Period	27/11/24 → 29/11/24

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 7 Affordable and Clean Energy

Keywords

Approximate computing
adversarial machine learning
deep learning
robustness

Access to Document

10.1109/CONCAPAN63470.2024.10933879

Cite this

Askarizadeh, M. J., Castro-Godinez, J., Farahmand, E., Mahani, A., Cabrera-Quiros, L., & Salazar-Garcia, C. (2024). Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers. In 2024 IEEE 42nd Central America and Panama Convention, CONCAPAN 2024 (2024 ed.). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CONCAPAN63470.2024.10933879

@inproceedings{7efd2ef0f9b44c098c08e9b9a10e4966,

title = "Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers",

abstract = "Deep Neural Networks (DNNs) play an important role in advancing today's technology by performing machine learning tasks such as image, video, speech, and text analysis, significantly improving real-world applications such as healthcare and autonomous driving. However, their high computational complexity and vulnerability to adversarial attacks are ongoing challenges. In this work, approximate multipliers are introduced in DNN computations, instead of accurate ones, to explore its robustness improvement against adversarial attacks. By uniformly replacing accurate multipliers for state-of-the-art approximate ones in DNN layer models, we explore the DNNs' robustness against various adversarial attacks in a feasible time. Results show up 10\% robust accuracy improvement for up to to 7\% accuracy drop due to approximations when no attack is present.",

keywords = "Approximate computing, adversarial machine learning, deep learning, robustness",

author = "Askarizadeh, \{Mohammad Javad\} and Jorge Castro-Godinez and Ebrahim Farahmand and Ali Mahani and Laura Cabrera-Quiros and Carlos Salazar-Garcia",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 42nd IEEE Central America and Panama Convention, CONCAPAN 2024 ; Conference date: 27-11-2024 Through 29-11-2024",

year = "2024",

doi = "10.1109/CONCAPAN63470.2024.10933879",

language = "Ingl{\'e}s",

booktitle = "2024 IEEE 42nd Central America and Panama Convention, CONCAPAN 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

edition = "2024",

}

Askarizadeh, MJ, Castro-Godinez, J, Farahmand, E, Mahani, A, Cabrera-Quiros, L & Salazar-Garcia, C 2024, Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers. in 2024 IEEE 42nd Central America and Panama Convention, CONCAPAN 2024. 2024 edn, Institute of Electrical and Electronics Engineers Inc., 42nd IEEE Central America and Panama Convention, CONCAPAN 2024, San Jose, Costa Rica, 27/11/24. https://doi.org/10.1109/CONCAPAN63470.2024.10933879

Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers. / Askarizadeh, Mohammad Javad; Castro-Godinez, Jorge; Farahmand, Ebrahim et al.
2024 IEEE 42nd Central America and Panama Convention, CONCAPAN 2024. 2024. ed. Institute of Electrical and Electronics Engineers Inc., 2024.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers

AU - Askarizadeh, Mohammad Javad

AU - Castro-Godinez, Jorge

AU - Farahmand, Ebrahim

AU - Mahani, Ali

AU - Cabrera-Quiros, Laura

AU - Salazar-Garcia, Carlos

PY - 2024

Y1 - 2024

N2 - Deep Neural Networks (DNNs) play an important role in advancing today's technology by performing machine learning tasks such as image, video, speech, and text analysis, significantly improving real-world applications such as healthcare and autonomous driving. However, their high computational complexity and vulnerability to adversarial attacks are ongoing challenges. In this work, approximate multipliers are introduced in DNN computations, instead of accurate ones, to explore its robustness improvement against adversarial attacks. By uniformly replacing accurate multipliers for state-of-the-art approximate ones in DNN layer models, we explore the DNNs' robustness against various adversarial attacks in a feasible time. Results show up 10% robust accuracy improvement for up to to 7% accuracy drop due to approximations when no attack is present.

AB - Deep Neural Networks (DNNs) play an important role in advancing today's technology by performing machine learning tasks such as image, video, speech, and text analysis, significantly improving real-world applications such as healthcare and autonomous driving. However, their high computational complexity and vulnerability to adversarial attacks are ongoing challenges. In this work, approximate multipliers are introduced in DNN computations, instead of accurate ones, to explore its robustness improvement against adversarial attacks. By uniformly replacing accurate multipliers for state-of-the-art approximate ones in DNN layer models, we explore the DNNs' robustness against various adversarial attacks in a feasible time. Results show up 10% robust accuracy improvement for up to to 7% accuracy drop due to approximations when no attack is present.

KW - Approximate computing

KW - adversarial machine learning

KW - deep learning

KW - robustness

UR - https://www.scopus.com/pages/publications/105005870452

U2 - 10.1109/CONCAPAN63470.2024.10933879

DO - 10.1109/CONCAPAN63470.2024.10933879

M3 - Contribución a la conferencia

AN - SCOPUS:105005870452

BT - 2024 IEEE 42nd Central America and Panama Convention, CONCAPAN 2024

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 42nd IEEE Central America and Panama Convention, CONCAPAN 2024

Y2 - 27 November 2024 through 29 November 2024

ER -

Exploring DNN Robustness Against Adversarial Attacks Using Approximate Multipliers

Abstract

Conference

UN SDGs

Keywords

Access to Document

Other files and links

Fingerprint

Cite this