Abstract
Despite remarkable performance across a broad range of tasks, neural networks have been shown to be vulnerable to adversarial attacks. Many works focus on adversarial attacks and defenses on 2D images, but few focus on 3D point clouds. In this paper, our goal is to enhance the adversarial robustness of PointNet, which is one of the most widely used models for 3D point clouds. We apply the fast gradient sign attack method (FGSM) on 3D point clouds and find that FGSM can be used to generate not only adversarial images but also adversarial point clouds. To minimize the vulnerability of PointNet to adversarial attacks, we propose Defense-PointNet. We compare our model with two baseline approaches and show that Defense-PointNet significantly improves the robustness of the network against adversarial samples.
| Original language | English |
|---|---|
| Title of host publication | Proceedings - 2019 IEEE International Conference on Big Data, Big Data 2019 |
| Editors | Chaitanya Baru, Jun Huan, Latifur Khan, Xiaohua Tony Hu, Ronay Ak, Yuanyuan Tian, Roger Barga, Carlo Zaniolo, Kisung Lee, Yanfang Fanny Ye |
| Pages | 5654-5660 |
| Number of pages | 7 |
| ISBN (Electronic) | 9781728108582 |
| DOIs | |
| State | Published - Dec 2019 |
| Event | 2019 IEEE International Conference on Big Data, Big Data 2019 - Los Angeles, United States Duration: Dec 9 2019 → Dec 12 2019 |
Publication series
| Name | Proceedings - 2019 IEEE International Conference on Big Data, Big Data 2019 |
|---|
Conference
| Conference | 2019 IEEE International Conference on Big Data, Big Data 2019 |
|---|---|
| Country/Territory | United States |
| City | Los Angeles |
| Period | 12/9/19 → 12/12/19 |
Bibliographical note
Publisher Copyright:© 2019 IEEE.
Keywords
- adversarial attack
- defensive network
- point cloud
- pointnet
ASJC Scopus subject areas
- Artificial Intelligence
- Computer Networks and Communications
- Information Systems
- Information Systems and Management