Physical Attack

Physical attacks on computer vision systems, particularly those employing deep neural networks (DNNs), are a growing area of research focusing on how to compromise the accuracy and reliability of these systems through real-world manipulations. Current work investigates various attack methods, including adversarial patches, color projections, and backdoor poisoning using physical triggers, often leveraging optimization algorithms and generative models to create stealthy and effective attacks. This research is crucial for understanding and mitigating vulnerabilities in safety-critical applications like autonomous vehicles and facial recognition, where the consequences of system failure can be severe.

Papers

October 26, 2024

Generative Adversarial Patches for Physical Attacks on Cross-Modal Pedestrian Re-Identification
Yue Su, Hao Li, Maoguo Gong
Adversarial Attack Adversarial Learning Adversarial Patch Visible Infrared Person Re Identification VI ReID Physical Attack

October 10, 2024

A Survey on Physical Adversarial Attacks against Face Recognition Systems
Mingsi Wang, Jiachen Zhou, Tianlin Li, Guozhu Meng, Kai Chen
Timely Survey Adversarial Attack Face Recognition System Description Physical Attack

August 27, 2024

SpecGuard: Specification Aware Recovery for Robotic Autonomous Vehicles from Physical Attacks
Pritam Dash, Ethan Chan, Karthik Pattabiraman
Deep Reinforcement Learning Autonomous Robot Deep RL Mission Specification Robust Recovery Physical Attack

August 17, 2024

PADetBench: Towards Benchmarking Physical Attacks against Object Detection
Jiawei Lian, Jianhong Pan, Lefan Wang, Yi Wang, Lap-Pui Chau, Shaohui Mei
Adversarial Image Physical Adversarial Benchmark Attack Physical Attack

July 27, 2024

Towards Clean-Label Backdoor Attacks in the Physical World
Thinh Dao, Cuong Chi Le, Khoa D Doan, Kok-Seng Wong
Backdoor Poisoning Attack Physical World Clean Label Backdoor Attack Physical Backdoor Attack Physical Attack

March 17, 2024

HarmPot: An Annotation Framework for Evaluating Offline Harm Potential of Social Media Text
Ritesh Kumar, Ojaswee Bhalla, Madhu Vanthi, Shehlat Maknoon Wani, Siddharth Singh
Social Medium Potential Harm Annotation System Physical Attack Offline Harm Potential

May 19, 2023

DAP: A Dynamic Adversarial Patch for Evading Person Detectors
Amira Guesmi, Ruitian Ding, Muhammad Abdullah Hanif, Ihsen Alouani, Muhammad Shafique
Adversarial Attack Generative Adversarial Network Adversarial Patch Image Patch Person Detector Physical Attack

April 16, 2023

A Random-patch based Defense Strategy Against Physical Attacks for Face Recognition Systems
JiaHao Xie, Ye Luo, Jianwei Lu
Adaptive Attack Complex Deep Face Recognition System Perturbation Attack Physical Attack

September 19, 2022

Adversarial Color Projection: A Projector-based Physical Attack to DNNs
Chengyin Hu, Weiwen Shi, Ling Tian
Deep Neural Network Adversarial Attack Physical Attack Adversarial Color Based Physical Attack

July 11, 2022

Physical Attack on Monocular Depth Estimation with Optimal Adversarial Patches
Zhiyuan Cheng, James Liang, Hongjun Choi, Guanhong Tao, Zhiwen Cao, Dongfang Liu, Xiangyu Zhang
Monocular Depth Estimation Vision Based Adversarial Patch Physical Adversarial Patch Adversarial Object Physical Attack